svn-阿里云上搭svn+钩子函数设置_阿里云效添加钩子-CSDN博客

本文链接：https://blog.csdn.net/lpbstart/article/details/103781040

总是忘了阿里云服务器结合Svn的坑在哪…一遍遍的踩…
也忘了记博客~
给自己和各位做个笔记，直接上代码了抓稳吧。

1.在要安装的位置来个yum安装，我好像是在根目录/下创建的，

yum install subversion

2.再来创建个仓库地址，可以叫test，可以叫xxx自己定。
走一个例子驾驶项目哈，svn下创一个仓库

svnadmin create /svn/driving

创完愿意的话看看里面东西，有：权限、配置、钩子…等
3.我认为去那目录 /svn/ 下面编辑比较方便，无非就是
(1)配置访问根目录地址、
(2)配置用户及密码
(3)配置权限

vim driving/conf/svnserve.conf

算了，再给各位附上一个配置更详细
(1)配置svnserver.conf文件的

### This file controls the configuration of the svnserve daemon, if you
### use it to allow access to this repository.  (If you only allow
### access through http: and/or file: URLs, then this file is
### irrelevant.)

### Visit http://subversion.apache.org/ for more information.
[general]
### The anon-access and auth-access options control access to the
### repository for unauthenticated (a.k.a. anonymous) users and
### authenticated users, respectively.
### Valid values are "write", "read", and "none".
### Setting the value to "none" prohibits both reading and writing;
### "read" allows read-only access, and "write" allows complete 
### read/write access to the repository.
### The sample settings below are the defaults and specify that anonymous
### users have read-only access to the repository, while authenticated
### users have read and write access to the repository.
anon-access = none
auth-access = write
### The password-db option controls the location of the password
### database file.  Unless you specify a path starting with a /,
### the file's location is relative to the directory containing
### this configuration file.
### If SASL is enabled (see below), this file will NOT be used.
### Uncomment the line below to use the default password file.
password-db = passwd
### The authz-db option controls the location of the authorization
### rules for path-based access control.  Unless you specify a path
### starting with a /, the file's location is relative to the the
### directory containing this file.  If you don't specify an
### authz-db, no path-based access control is done.
### Uncomment the line below to use the default authorization file.
authz-db = authz
### This option specifies the authentication realm of the repository.
### If two repositories have the same authentication realm, they should
### have the same password database, and vice versa.  The default realm
### is repository's uuid.
realm = /svn/driving
### The force-username-case option causes svnserve to case-normalize
### usernames before comparing them against the authorization rules in the
### authz-db file configured above.  Valid values are "upper" (to upper-
### case the usernames), "lower" (to lowercase the usernames), and
### "none" (to compare usernames as-is without case conversion, which
### is the default behavior).
# force-username-case = none
[sasl]
### This option specifies whether you want to use the Cyrus SASL
### library for authentication. Default is false.
### This section will be ignored if svnserve is not built with Cyrus
### SASL support; to check, run 'svnserve --version' and look for a line
### reading 'Cyrus SASL authentication is available.'
# use-sasl = true
### These options specify the desired strength of the security layer
### that you want SASL to provide. 0 means no encryption, 1 means
### integrity-checking only, values larger than 1 are correlated
### to the effective key length for encryption (e.g. 128 means 128-bit
### encryption). The values below are the defaults.
# min-encryption = 0
# max-encryption = 256

(2)配置passwd文件的

vim driving/conf/passwd

### This file is an example password file for svnserve.
### Its format is similar to that of svnserve.conf. As shown in the
### example below it contains one section labelled [users].
### The name and password for each user follow, one account per line.
[users]
# harry = harryssecret
# sally = sallyssecret
admin1 = a123456
admin2 = a123456
lpb = lpb123456
asdasdsuting = asdasdt123456
asdasdlxg = asdasdlxg123456
asdasdlipeng = asdasdlp123456
asdasdyanglu = asdasdyl123456

(3)配置authz文件的

vim driving/conf/authz

### This file is an example authorization file for svnserve.
### Its format is identical to that of mod_authz_svn authorization
### files.
### As shown below each section defines authorizations for the path and
### (optional) repository specified by the section name.
### The authorizations follow. An authorization line can refer to:
###  - a single user,
###  - a group of users defined in a special [groups] section,
###  - an alias defined in a special [aliases] section,
###  - all authenticated users, using the '$authenticated' token,
###  - only anonymous users, using the '$anonymous' token,
###  - anyone, using the '*' wildcard.
###
### A match can be inverted by prefixing the rule with '~'. Rules can
### grant read ('r') access, read-write ('rw') access, or no access
### ('').

[aliases]
# joe = /C=XZ/ST=Dessert/L=Snake City/O=Snake Oil, Ltd./OU=Research Institute/CN=Joe Average

[groups]
# harry_and_sally = harry,sally
# harry_sally_and_joe = harry,sally,&joe
# 分组:开发者、观察者、其他
developer = admin1,lpb
observer = admin2
other_staffs = suting,lxg,lipeng,yanglu
[driving:/]
#lpb = rw
#lpb1 = r
@developer = rw
@other_staffs = rw
@observer = r
* =
#[driving:/yx-ui]
#@developer = rw
#@other_staffs = rw
#@observer = r
#* = 

# [/foo/bar]
# harry = rw
# &joe = r
# * =
#
# [repository:/baz/fuz]
# @harry_and_sally = rw
# * = r

#admin = lpb
#user = lpb1
#[/]
#lpb = rw
#lpb1 = r

那些注释部分的可以参考配置具体目录权限，需要根据自己公司使用状态去调整
此时我给的是一个权限组的，使用管理较方便

svnserve -d -r /svn/

配置完这是三个基本配置文件一般来说就重启一下服务器上的Svn，不要急先别重启，看看自己的服务器如果是阿里云服务器的或者百度云服务器的防火墙端口开设，不然后面你会总发现自己的客户端连不上服务器。
来~ 代码也给你备好了，由于现在防火墙都是较新的：
看看自己的防火墙在哪…如果不知道，咱测一下就知道了：
vi 扫一下就知道了…
这会儿喝了酒写博客有点蒙.(1) 或 (2) 要么(1)和(2) 哈哈，2好像是阿里的firewall，总之开放防火墙端口后，重启
(1)

vi /etc/sysconfig/iptables
vi /etc/sysconfig/iptables-config 
systemctl restart iptables.service
-A INPUT -p tcp -m state --state NEW -m tcp --dport 3690 -j ACCEPT
systemctl restart firewalld

(2)

firewall-cmd --zone=public --add-port=3690/tcp --permanent

firewall-cmd --reload

firewall-cmd --zone=public --query-port=3690/tcp systemctl restart

firewalld

4.此时不要急，一口气把钩子函数也做了，不然太麻烦，每次还得在服务端更新提交
这个post提交的东西放在hooks里面，复制一份较post-commit省了后缀

cp /svn/driving/hook/post-commit.tmpl post-commit

vim 直接编辑post-commit完事，代码也整好了，复制粘贴咔咔的且支持中文

vim /svn/driving/hook/post-commit

#!/bin/bash
export LANG=en_US.UTF-8
SVN=/usr/bin/svn            #这里配置的是svn安装bin目录下的svn文件
WEB=/home/www/wwwroot/driving/      #要更新的目录，确认这个目录的存在也给一下权限
$SVN update $WEB --username admin1 --password a123456
chown -R www:www  $WEB
#export LANG=en_US.UTF-8
#SVN=/usr/bin/svn            #这里配置的是svn安装bin目录下的svn文件
#WEB=/home/www/wwwroot/xxxx      #要更新的目录
#$SVN update $WEB --username admin1 --password a123456
#chown -R www:www  $WEB

提示：vim 编辑过的文件一定记得保存退出…
这会儿钩子函数也设置完事了，给钩子文件、web目录、这个svn目录下的这个driving目录都给个权限 777就行哈…方便可能安全差，你可以复杂点的给设置组权限等等
(1) chmod 777 -R /svn/driving/hooks/post-commit
(或1) chmod a+x /svn/driving/hooks/post-commit
(2) chmod 777 -R /svn/driving/driving
chmod a+x /svn/driving/hooks/post-commit
关掉你的Svnserve服务