From users-return-5238-daniel=haxx.se@subversion.apache.org Fri Oct 8 02:20:11 2010 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on giant.haxx.se X-Spam-Level: X-Spam-Status: No, score=-1.5 required=3.0 tests=BAYES_00,FREEMAIL_FROM, T_DKIM_INVALID,T_RP_MATCHES_RCVD,T_TO_NO_BRKTS_FREEMAIL autolearn=ham version=3.3.1 Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by giant.haxx.se (8.14.3/8.14.3/Debian-9.1) with SMTP id o980KAKE023949 for ; Fri, 8 Oct 2010 02:20:10 +0200 Received: (qmail 48086 invoked by uid 500); 8 Oct 2010 00:19:59 -0000 Mailing-List: contact users-help@subversion.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@subversion.apache.org Received: (qmail 48079 invoked by uid 99); 8 Oct 2010 00:19:59 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 08 Oct 2010 00:19:59 +0000 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests=FREEMAIL_FROM,RCVD_IN_DNSWL_NONE,SPF_PASS,T_TO_NO_BRKTS_FREEMAIL Received-SPF: pass (nike.apache.org: domain of nkadel@gmail.com designates 209.85.216.178 as permitted sender) Received: from [209.85.216.178] (HELO mail-qy0-f178.google.com) (209.85.216.178) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 08 Oct 2010 00:19:53 +0000 Received: by qyk4 with SMTP id 4so81045qyk.16 for ; Thu, 07 Oct 2010 17:19:32 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=96De/QobkKrTHHpl4J4nLp9kg3aAfjVk93R14lD9594=; b=er6z1S2zgq59/TIb2pS9Ucel8Ame13fviCgsVuDWOphcvRSXPj4j79Y/IuAjuhebIN 37I1ReoU0x4YuQmmZZAmIvioOgatV7VxpFX4G71qRTY2HVJjtIWPslGaxVlgZuW1NPXd sMa1WSH/iGuIlxTF33NoQkiLQcPjr2ynI9CLI= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=SwnNJ1rcOnTa/NDWboblDJ8pu3ch363gU616QXP4MmZZD/iwT/gMndXeCEnYysDBW2 ua1Pdp9JezHPTd8Ln1La1To+alRVnqowKzehe6YezHRdqQwc1a5C5l8BmzSmGQ7JwSpa yI7gKSmOtfPFL4ldWHCXDhY66D3vEQpc8sHzA= MIME-Version: 1.0 Received: by 10.229.237.129 with SMTP id ko1mr1391724qcb.4.1286497172369; Thu, 07 Oct 2010 17:19:32 -0700 (PDT) Received: by 10.220.128.197 with HTTP; Thu, 7 Oct 2010 17:19:32 -0700 (PDT) In-Reply-To: <4CADF2BB.5010106@it-sudparis.eu> References: <4CAC8E54.3090206@it-sudparis.eu> <4CADF2BB.5010106@it-sudparis.eu> Date: Thu, 7 Oct 2010 20:19:32 -0400 Message-ID: Subject: Re: svn Farm From: Nico Kadel-Garcia To: jehan.procaccia@it-sudparis.eu Cc: Siva Kumar , users@subversion.apache.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable X-Virus-Checked: Checked by ClamAV on apache.org X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.3.5 (giant.haxx.se [80.67.6.50]); Fri, 08 Oct 2010 02:20:11 +0200 (CEST) X-Friend: Nope On Thu, Oct 7, 2010 at 12:18 PM, jehan procaccia wrote: > =A0Le 06/10/2010 17:06, Siva Kumar a =E9crit : >>> >>> I need to provide svn service to many small groups of students. >>> I'am looking for a tool that would help industrialize managment of >>> repositories. >>> I don't want to issue hundreds of "svn create", "vi authz" , edit ssh >>> keys >>> for svn+ssh access etc ... >>> Are there such =A0tools already existing =A0? >> >> Subversion Edge(http://www.open.collab.net/go/csvne2_r2a/) might fit you= r >> bill. > > good point ! > I've installed and run it, looks good. > but now I need to find a way to link my ldap users to svn roles/authz , I > still can't find how to do that wihout creating csvn local accounts for a= ll > my users :-( ... !? Unless you can guarantee that they will not use Linux or UNIX based clients, don't even consider this. The problem is that the Linux and UNIX clients, by default, continue to store passwords in clear text. They whinge about it now before storing it, but it's still an issue. Is there any reason you use 'svn' access, rather than HTTPS? The mod_dav_svn module works well, even though I detest the clear text password problem. There remains no good GUI or published toolkit for svn+ssh access configuration. This is one of Subversion's profound deficits, combined with the password issues with the Linux/UNIX clients. Various companies and groups have internal kits, including Sourceforge, but I've never seen their tools published.