Hi,<br><br>If I understand the issue right, if everything else is setup right, all you need is the line<br>Require valid-user in your .conf file.<br><br>A (could be) useful note, rather than using basic auth, for ease of administration, it might be worth using the NIS password authentication. A google search on this should get you to an example. Basically it uses
<br>the perl module Apache::AuthenNIS. Hopefully someone could comment on the strength of this method.<br><br>Regards,<br>Amar<br><br><br><div><span class="gmail_quote">On 1/13/07, <b class="gmail_sendername">D. Stimits</b>
<<a href="mailto:firstname.lastname@example.org">email@example.com</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">I'm working on a subversion repository on CentOS
4.4, and finally got<br>past some of the SElinux problems. Now it is able to be read from over a<br>web browser on https, and it properly asks for a user name and pass via<br>basic auth (non-SSL can't reach that URL).
<br><br>Here's the oddball problem: Using a command line client, it allows total<br>access without caring about user name/pass. It requires user name and<br>pass only from a web browser, but not from the svn client. Here's the
<br>config:<br><br><Location /svn><br> Options Indexes MultiViews<br> AllowOverride None<br> Order deny,allow<br> DAV svn<br> SVNParentPath /var/www/svn<br> SSLRequireSSL<br> AuthType Basic<br> AuthName "Subversion Repository"
<br> AuthUserFile /etc/passwd-httpd<br> AuthGroupFile /etc/group-httpd<br> Require group devel<br></Location><br><br><br>Has anyone here ever set up an svn repository under apache mod_dav, to<br>require a password? How did you get the svn client to prompt for user
<br>name and password? I even deleted all the temp files from<br>~/.subversion/auth/svn.ssl.server, and all working copies, so there is<br>no chance of it having memorized a name and pass (and in fact the user<br>name I'm using on the remote machine is different than the name on the
<br>server). If I can block access to anyone not having a proper login<br>name/pass, it'll be ready for use (at the moment IP tables blocks all IP<br>addresses except for mine).<br><br>D. Stimits, stimits AT comcast DOT net
<br>_______________________________________________<br>Web Page: <a href="http://lug.boulder.co.us">http://lug.boulder.co.us</a><br>Mailing List: <a href="http://lists.lug.boulder.co.us/mailman/listinfo/lug">http://lists.lug.boulder.co.us/mailman/listinfo/lug
</a><br>Join us on IRC: <a href="http://lug.boulder.co.us">lug.boulder.co.us</a> port=6667 channel=#colug<br></blockquote></div><br>