On Mon, Mar 10, 2008 at 8:48 PM, Matt Smith <[EMAIL PROTECTED]> wrote:
> It *is* possible to protect SVN's simple browser access with CAS. > > It *is not* possible to protect SVN access from non-browser access, such > as the command line svn tools, or TortoiseSVN, etc. Hi Matt, Paco; I'm not sure if I'm disagreeing with the previous email or clarifying it. At any rate, this is probably off-topic. apache+svn+cas is possible, and can be secured. One of the options for running subversion is to use apache as the svn server, thereby allowing you to use any apache authentication modules. http://svnbook.red-bean.com/nightly/en/svn.serverconfig.httpd.html In this case, even "non-browser" access (GUI clients and the command line client) access the repository over HTTP(s) through apache. By requiring authentication via mod_auth_cas in apache and not running svnserve and securing the filesystem of the svn repository, the only way to access the repository is through CAS. Isaac Vetter On Mon, Mar 10, 2008 at 1:13 PM, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > > > Hi, > > > > I have a customer that wants to integrate a .net application with svn > > repository (to version xml files from .net code) > > There are also other modules that are written in java and are under cas > > server. > > > > the schema is: > > > > 1. user ==> .net app (non-web) ==> svn repository > > 2. user (browser) ==> webapp under cas > > > > For schema 2 there are no problem... > > For schema 1, i know svn run under apache and there is a module for > > cas+apache (mod_auth_cas) > > > > the question is: is possible to integrate apache+svn+cas? so only cas > > konw how to authenticate users.. > >
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
