Subversion安装笔记

christ

实现要求：
1、通过http访问
2、匿名用户不允许访问
实现环境：
1、rhel5.3
2、Apache/2.2.3
3、subversion 1.5.5
    系统自带的版本是1.4.2，不喜欢老版本，从以下网址下载1.5.5 相关软件包
    http://the.earth.li/pub/subversion/summersoft.fay.ar.us/pub/subversion/latest/rhel5/i386/
  mod_dav_svn-1.5.5-1.i386.rpm
  neon-0.27.2-1.i386.rpm
  neon-devel-0.27.2-1.i386.rpm
  subversion-1.5.5-1.i386.rpm
  subversion-devel-1.5.5-1.i386.rpm
  subversion-perl-1.5.5-1.i386.rpm
  subversion-python-1.5.5-1.i386.rpm
  subversion-tools-1.5.5-1.i386.rpm
安装步骤：
1、安装apache
   在安装系统时候已经安装上去,如果没安装请安装，安装方法这里不在介绍
2、安装subversion 相关包
   安装软件包：subversion-1.5.5-1.i386.rpm（subversion主程序包）及其依赖包
   安装软件包：mod_dav_svn-1.5.5-1.i386.rpm（Apache 的 subversion模块）
3、创建版本库
      
  mkdir /svnroot
  svnadmin create /svnroot/svn
4、修改配置文件 /svnroot/svn/conf/svnserve.conf
  在[general]段增加以下内容
  anon-access = read
  auth-access = read
  auth-access = write
  password-db = passwd
  authz-db = authz
修改后的文件为：
### This file controls the configuration of the svnserve daemon, if you
### use it to allow access to this repository.  (If you only allow
### access through http: and/or file: URLs, then this file is
### irrelevant.)
### Visit http://subversion.tigris.org/ for more information.
[general]
### These options control access to the repository for unauthenticated
### and authenticated users.  Valid values are "write", "read",
### and "none".  The sample settings below are the defaults.
anon-access = read
auth-access = read
auth-access = write
# anon-access = read
# auth-access = write
### The password-db option controls the location of the password
### database file.  Unless you specify a path starting with a /,
### the file's location is relative to the directory containing
### this configuration file.
### If SASL is enabled (see below), this file will NOT be used.
### Uncomment the line below to use the default password file.
password-db = passwd
# password-db = passwd
### The authz-db option controls the location of the authorization
### rules for path-based access control.  Unless you specify a path
### starting with a /, the file's location is relative to the the
### directory containing this file.  If you don't specify an
### authz-db, no path-based access control is done.
### Uncomment the line below to use the default authorization file.
authz-db = authz
# authz-db = authz
### This option specifies the authentication realm of the repository.
### If two repositories have the same authentication realm, they should
### have the same password database, and vice versa.  The default realm
### is repository's uuid.
# realm = My First Repository
[sasl]
### This option specifies whether you want to use the Cyrus SASL
### library for authentication. Default is false.
### This section will be ignored if svnserve is not built with Cyrus
### SASL support; to check, run 'svnserve --version' and look for a line
### reading 'Cyrus SASL authentication is available.'
# use-sasl = true
### These options specify the desired strength of the security layer
### that you want SASL to provide. 0 means no encryption, 1 means
### integrity-checking only, values larger than 1 are correlated
### to the effective key length for encryption (e.g. 128 means 128-bit
### encryption). The values below are the defaults.
# min-encryption = 0
# max-encryption = 256
5、修改用户列表配置文件 /svnroot/svn/conf/passwd
[users]
user1 = 111111
user2 = 222222
# harry = harryssecret
# sally = sallyssecret
6、修改访问权限文件 /svnroot/svn/conf/authz
### This file is an example authorization file for svnserve.
### Its format is identical to that of mod_authz_svn authorization
### files.
### As shown below each section defines authorizations for the path and
### (optional) repository specified by the section name.
### The authorizations follow. An authorization line can refer to:
###  - a single user,
###  - a group of users defined in a special [groups] section,
###  - an alias defined in a special [aliases] section,
###  - all authenticated users, using the '$authenticated' token,
###  - only anonymous users, using the '$anonymous' token,
###  - anyone, using the '*' wildcard.
###
### A match can be inverted by prefixing the rule with '~'. Rules can
### grant read ('r') access, read-write ('rw') access, or no access
### ('').
[aliases]
# joe = /C=XZ/ST=Dessert/L=Snake City/O=Snake Oil, Ltd./OU=Research Institute/CN=Joe Average
[groups]
admin = user1,user2
# harry_and_sally = harry,sally
# harry_sally_and_joe = harry,sally,&joe
# [/foo/bar]
# harry = rw
# &joe = r
# * =
# [repository:/baz/fuz]
# @harry_and_sally = rw
# * = r
[/]
@admin = rw
7、生成http用户认证文件
  htpasswd -cb /svnroot/svn/conf/httpauthuser user1 111111
  htpasswd -b /svnroot/svn/conf/httpauthuser user2 222222
8、修改Apache相应配置 /etc/httpd/conf.d/subversion.conf
# Needed to do Subversion Apache server.
LoadModule dav_svn_module     modules/mod_dav_svn.so
# Only needed if you decide to do "per-directory" access control.
LoadModule authz_svn_module   modules/mod_authz_svn.so
#
# Example location directive.
#
#Location /svn/repos>
#   DAV svn
#   SVNPath /home/svnroot
#
#   # Limit write permission to list of valid users.
#   LimitExcept GET PROPFIND OPTIONS REPORT>
#      # Require SSL connection for password protection.
#      # SSLRequireSSL
#
#      AuthType Basic
#      AuthName "Authorization Realm"
#      AuthUserFile /absolute/path/to/passwdfile
#      Require valid-user
#   /LimitExcept>
#/Location>
Location /svnroot>
   DAV svn
   #SVNPath /svnroot/svn
   SVNParentPath /svnroot
        AuthzSVNAccessFile /svnroot/svn/conf/authz
        Satisfy Any
        Require valid-user
   # Limit write permission to list of valid users.
   LimitExcept GET PROPFIND OPTIONS REPORT>
      # Require SSL connection for password protection.
      # SSLRequireSSL
      AuthType Basic
      AuthName "Please input you name and you password"
      AuthUserFile /svnroot/svn/conf/httpauthuser
      Require valid-user
   /LimitExcept>
/Location>
9、测试是否正常
  启动apache服务器
  用浏览器或者TortoiseSVN访问http://IP/svnroot/svn
  查看是否正常


本文来自ChinaUnix博客，如果查看原文请点：http://blog.chinaunix.net/u/3514/showart_1832777.html