On Wed, Mar 31, 2010 at 12:40:13PM -0700, Aaron Turner wrote: > On Wed, Mar 31, 2010 at 12:23 PM, Lee Kaufman > <lee.kauf...@transmetric.com> wrote: > > I have been set the task of setting up SVN and connecting Authentication and > > Authorization to our MS Active Directory system. The SVN is now running on > > a Debian Linux server. I have successfully set up Authenticated to > > authenticate users who have access to the SVN system based on a Security > > Group in our AD. > > > > The next task is where I am encountering the difficulty is in Authorizing > > individual users to read and write to the individual repositories. From > > what I have seen I need I to do this I need a AuthzSVNAccessFile file. > > However I have not been able to find any documentation on how to accomplish > > this using AD groups. Below is a simple example. > > Last time I checked, you can't do authorization via LDAP/AD. Just > authentication. Hence the lack of documentation on the subject.
Various wrapper scripts exist which generate an authz rules file from data pulled from LDAP/AD directories. I agree that it would be nice to have built-in support for this in mod_authz_svn though. Stefan
