Bug 468893 - Subversion authorization failure when doing commit over http
Summary: Subversion authorization failure when doing commit over http
Keywords:
Status: CLOSED NOTABUG
Alias: None
Product: Fedora
Classification: Fedora
Component: subversion
Version: 9
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Joe Orton
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2008-10-28 17:34 UTC by Tadej Janež
Modified: 2008-10-28 19:40 UTC (History)
2 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2008-10-28 19:40:53 UTC
Type: ---
Embargoed:


Attachments (Terms of Use)

Description Tadej Janež 2008-10-28 17:34:57 UTC
Description of problem:
I cannot use Subversion client provided by Fedora 9 (1.4.6 or 1.5.2 from updates-testing) to commit to a Subversion repository over http.

Version-Release number of selected component (if applicable):
subversion-1.5.2-1.fc9.i386
subversion-1.4.6-7.i386

How reproducible:


Steps to Reproduce:
1. svn co http://www.ailab.si/svn/misc/xpero
2. vim test.txt
3. svn commit
  
Actual results:
Authentication realm: <http://www.ailab.si:80> trac
Password for 'tadej': 
Authentication realm: <http://www.ailab.si:80> trac
Username: tadej
Password for 'tadej': 
Authentication realm: <http://www.ailab.si:80> trac
Username: tadej
Password for 'tadej': 
svn: Commit failed (details follow):
svn: MKACTIVITY of '/svn/misc/!svn/act/5370601c-4f64-4d95-bfcd-e70b76b0e46a': authorization failed (http://www.ailab.si)
svn: Your commit message was left in a temporary file:
svn:    '/home/tadej/work/ailab/svn/xpero/svn-commit.tmp'

Expected results:
Commit would succeed.

Additional info:
The SVN repository is running on a Windows server. The following is from an Apache httpd.conf file:
<Location /svn>
   DAV svn
   SVNParentPath C:/svn/repositories

   # our access control policy
   AuthzSVNAccessFile C:/svn/conf/users-access-file.txt
   
   #try anonymous access first, resort to real
   #authentication if necessary.
   Satisfy Any

   AuthType Digest
   AuthName "trac"
   AuthDigestDomain /orange/trac

   AuthDigestProvider file
   AuthUserFile /trac/orange/users.htdigest
   Require valid-user
</Location>

Comment 1 Joe Orton 2008-10-28 19:40:53 UTC
This configuration is incorrect:

   AuthDigestDomain /orange/trac

the digest domain does not include the path being protected.  Remove the directive, or use

   AuthDigestDomain /svn

for example.  See:

http://shop.clarins.com/manual/mod/mod_auth_digest.html#authdigestdomain


Note You need to log in before you can comment on or make changes to this bug.