cas + apache + svn

[Isaac Vetter]

On Mon, Mar 10, 2008 at 8:48 PM, Matt Smith <matt at forsetti.com> wrote:

> It *is* possible to protect SVN's simple browser access with CAS.
>
> It *is not* possible to protect SVN access from non-browser access, such
> as the command line svn tools, or TortoiseSVN, etc.


Hi Matt, Paco;

I'm not sure if I'm disagreeing with the previous email or clarifying it. At
any rate, this is probably off-topic.

apache+svn+cas is possible, and can be secured.

One of the options for running subversion is to use apache as the svn
server, thereby allowing you to use any apache authentication modules.
http://svnbook.red-bean.com/nightly/en/svn.serverconfig.httpd.html

In this case, even "non-browser" access (GUI clients and the command line
client) access the repository over HTTP(s) through apache.

By requiring authentication via mod_auth_cas in apache and not running
svnserve and securing the filesystem of the svn repository, the only way to
access the repository is through CAS.

Isaac Vetter

On Mon, Mar 10, 2008 at 1:13 PM, m.garuti at quix.it <m.garuti at quix.it> wrote:
>
> > Hi,
> >
> > I have a customer that wants to integrate a .net application with svn
> > repository (to version xml files from .net code)
> > There are also other modules that are written in java and are under cas
> > server.
> >
> > the schema is:
> >
> > 1. user ==> .net app (non-web) ==> svn repository
> > 2. user (browser) ==>  webapp under cas
> >
> > For schema 2 there are no problem...
> > For schema 1, i know svn run under apache and there is a module for
> > cas+apache (mod_auth_cas)
> >
> > the question is: is possible to integrate apache+svn+cas? so only cas
> > konw how to authenticate users..
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20080310/868dad18/attachment.html