Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #mount /subversion as a separated partition to ease backup and restore
- #when setting up the server, debugging is a good option
- LogLevel debug
- # Enable separated Subversion logging
- CustomLog /subversion/logs/svn_logfile "%t %u %{SVN-ACTION}e" env=SVN-ACTION
- #specify here root ca cert of ldap server
- LDAPTrustedGlobalCert CA_BASE64 /etc/yourcompany/root.pem
- LDAPVerifyServerCert On
- LDAPTrustedMode SSL
- #Force SSL site access only
- <VirtualHost *:80>
- ServerName svn.yourcompany.net
- UseCanonicalName Off
- ServerAdmin administrator@yourcompany.net
- DocumentRoot /subversion/Repositories
- Redirectmatch permanent (.*) https://svn.yourcompany.net$1
- </VirtualHost>
- <VirtualHost *:443>
- ServerName svn.yourcompany.net
- ServerAdmin administrator@yourcompany.net
- DocumentRoot /subversion/Repositories
- SSLEngine on
- SSLCertificateFile /etc/yourcompany/svn.yourcompany.net.crt
- SSLCertificateKeyFile /etc/yourcompany/keys/svn.yourcompany.net.key
- SSLCertificateChainFile /etc/yourcompany/root.pem
- #RedirectMatch ^(/Repositories)$ $1/
- <Location "/">
- # Enable Subversion
- DAV svn
- # Directory containing all repository for this path
- SVNParentPath /subversion/Repositories
- # List repositories colleciton
- SVNListParentPath On
- # Enable WebDAV automatic versioning
- SVNAutoversioning On
- # Repository Display Name
- SVNReposName "SVN Server"
- # Do basic password authentication in the clear
- AuthType Basic
- # The name of the protected area or "realm"
- AuthName "<http://svn.yourcompany.net>"
- # Make LDAP the authentication mechanism
- AuthBasicProvider ldap
- # Make LDAP authentication is final
- # Option removed on apache 2.4.x
- #AuthzLDAPAuthoritative on
- # Active Directory requires an authenticating DN to access records
- # Take note we need the distinguished name, not sAMAccountName
- AuthLDAPBindDN "CN=svnserver ldap login,CN=Users,DC=yourcompany,DC=com"
- # This is the password for the AuthLDAPBindDN user in Active Directory
- AuthLDAPBindPassword yoursecretpassword
- # The LDAP query URL
- # use port 3268/3269 to access global catalog
- # AuthLDAPURL "ldap://dc01.yourcompany.com:3268/DC=yourcompany,DC=com?sAMAccountName?sub?(objectClass=user)"
- AuthLDAPURL "ldaps://dc01.yourcompany.com:3269/DC=yourcompany,DC=com?sAMAccountName?sub?(objectClass=user)"
- # Require a valid user
- Require valid-user
- # Authorization file
- #AuthzSVNAccessFile /subversion/ACL/repos.acl
- </Location>
- </VirtualHost>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement