Wow… this was fun. I just figured out the way to allow Windows domain users against a Subversion repository on using the Apache SSPI authentication module… Well, I had it working before, but I finally got it working so that:
1) Windows domain users can be authenticated and,
2) Non domain users can be authenticated (using Apache's htpasswd file)
Cutting to the chase, here was a useful link: http://svn.haxx.se/users/archive-2004-07/0544.shtml
And, here is my resulting config entry in the httpd.conf file:
<location /svn> DAV svn SVNParentPath "R:\SVN Repositories" # AuthName "Subversion Repositories" Require valid-user AuthAuthoritative Off #enables multiple authorities # AuthType SSPI SSPIAuth On SSPIAuthoritative Off #SSPIAuthoritative On - Forces only SSPI auth, skips passwd file SSPIOmitDomain On SSPIDomain YOURDOMAIN SSPIOfferBasic On # AuthType Basic AuthUserFile "R:SVN Repositorieshtpasswd" # AuthzSVNAccessFile "R:SVN Repositoriessvnaccessfile" </location>
Another strange behavior I noticed was being double prompted for credientials. Once for "", the second for the actual name specified here. Ultimtately, changing the order of the items in this config section helped.Hope this saves someone elses day.
-Sean
