SVN1.6 windows权限小记

Chatopera 研发团队

于 2011-08-26 21:57:21 发布

阅读量814

点赞数

分类专栏：开源文章标签： svn windows encryption authentication access authorization

本文链接：https://blog.csdn.net/samurais/article/details/6723501

版权

开源专栏收录该内容

500 篇文章 6 订阅

订阅专栏

之前的SVN Repo不幸删掉了，现在重建，对用户权限的设置方法很多，下面记录最简单的一种。

svnserve.conf

### This file controls the configuration of the svnserve daemon, if you
### use it to allow access to this repository.  (If you only allow
### access through http: and/or file: URLs, then this file is
### irrelevant.)

### Visit http://subversion.tigris.org/ for more information.

[general]
### These options control access to the repository for unauthenticated
### and authenticated users.  Valid values are "write", "read",
### and "none".  The sample settings below are the defaults.
anon-access = none
auth-access = write
### The password-db option controls the location of the password
### database file.  Unless you specify a path starting with a /,
### the file's location is relative to the directory containing
### this configuration file.
### If SASL is enabled (see below), this file will NOT be used.
### Uncomment the line below to use the default password file.
password-db = users.conf
### The authz-db option controls the location of the authorization
### rules for path-based access control.  Unless you specify a path
### starting with a /, the file's location is relative to the the
### directory containing this file.  If you don't specify an
### authz-db, no path-based access control is done.
### Uncomment the line below to use the default authorization file.
# authz-db = authz
### This option specifies the authentication realm of the repository.
### If two repositories have the same authentication realm, they should
### have the same password database, and vice versa.  The default realm
### is repository's uuid.
realm = Hailiang IBMRTLS Repository

[sasl]
### This option specifies whether you want to use the Cyrus SASL
### library for authentication. Default is false.
### This section will be ignored if svnserve is not built with Cyrus
### SASL support; to check, run 'svnserve --version' and look for a line
### reading 'Cyrus SASL authentication is available.'
# use-sasl = true
### These options specify the desired strength of the security layer
### that you want SASL to provide. 0 means no encryption, 1 means
### integrity-checking only, values larger than 1 are correlated
### to the effective key length for encryption (e.g. 128 means 128-bit
### encryption). The values below are the defaults.
# min-encryption = 0
# max-encryption = 256

users.conf

[users] 
watson = 11111

而后复杂的一种：

　我们先打开svnserve.conf文件，进行编辑
　　　anon-access = read    
　　　auth-access = write
　　　password-db = passwd    指定用户名文件,因为该文件在当前目录下,所以可以直接写文件名
     authz-db = authz        指定权限控制文件,因为该文件在当前目录下,所以可以直接写文件名
     为了防止一切匿名访问,我们可以 把anon-access = read 改成anon-access = none

     然后再配置passwd文件,在users下设置三个用户名及其密码

    [users]
    admin = admin 
    xiaonan1 = xiaonan1
    xiaonan2 = xiaonan2

    继续配置authz文件,在groups下配置权限
    [groups]
    groupadmin = admin
    group_dev = xiaonan1
    group_test = xiaonan2


    [project1:/]
    @groupadmin = rw
    * = r
    [project1:/dev]
    @groupadmin = rw
    @group_dev = rw
    @group_test =


    [project1:/test]
    @groupadmin = rw
    @group_test = rw
    @group_dev =