On Thu, Dec 03, 2009 at 03:50:55PM +0100, Markus Oberlassnig wrote: > we need to integrate certificate based login to subversion, subclipse > and tortoise. Is it possible to configure svn, so that a user (client) > can be authorized by a certificate (X509 and / or PKCS11) without > additional login. When yes, how can this be done? When no, can you > give me hints, how to develop this feature or who can develop this > feature?
You can use SSL client certs with an SVN repos accessed via https, see the "ssl-client-cert-file" config option, described in the book: http://svnbook.red-bean.com/en/1.1/ch07.html > We also need to read the client certificate from a smart card. Is it > correct that we can use opensc for this feature? Yes. Set "ssl-pkcs11-provider = opensc" in ~/.subversion/servers (either in the [global] section or a server-specific group) Regards, Joe
