Webdav on Details... https://www.deepreflect.net/tags/webdav/ Recent content in Webdav on Details... Hugo en-US Copyright © 2003 - 2026 Leonardo Rizzi Tue, 30 Jun 2026 03:28:29 +0200 Configuring subversion access over HTTP/DAV https://www.deepreflect.net/2009/03/29/configuring-subversion-access-over-httpdav/ Sun, 29 Mar 2009 12:53:15 +0000 http://blog.deepreflect.net/?p=446 <ul> <li>Creating the repository</li> </ul> <p>If you have not created any Subversion repositories yet, you can create one with svnadmin:</p> <p><code># svnadmin create ~/my-repository</code></p> <p>Adding mod_dav_svn to your httpd</p> <p><code># a2enmod mod\_dav\_svn</code></p> <p>If you plan to use fine-grained permissions, load mod_authz_svn.so as well:</p> <p><code># a2enmod mod_authz_svn</code></p> <ul> <li>Configuring access to repositories</li> </ul> <p>HTTP access to your repositories is defined using a <code>&lt;Location&gt;</code> section in your httpd.conf.</p> <div class="highlight"><pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;-webkit-text-size-adjust:none;"><code class="language-fallback" data-lang="fallback"><span style="display:flex;"><span>&lt;Location /myproject&gt; </span></span><span style="display:flex;"><span>DAV svn </span></span><span style="display:flex;"><span>SVNPath /home/myself/myrepos/myproject </span></span><span style="display:flex;"><span>AuthType Basic </span></span><span style="display:flex;"><span>AuthName &#34;My project&#34; </span></span><span style="display:flex;"><span>AuthUserFile /home/myself/private/myproject.pw </span></span><span style="display:flex;"><span>Order deny,allow </span></span><span style="display:flex;"><span>&lt;LimitExcept GET PROPFIND OPTIONS REPORT&gt; </span></span><span style="display:flex;"><span>Require valid-user </span></span><span style="display:flex;"><span>&lt;/LimitExcept&gt; </span></span><span style="display:flex;"><span>&lt;/Location&gt; </span></span></code></pre></div><p>This entry would grant read-only access to everyone and write access to every user AuthUserFile. You can use the htpasswd utility to create or update this file, as described here.</p>
  • Creating the repository

    • If you have not created any Subversion repositories yet, you can create one with svnadmin:

    # svnadmin create ~/my-repository

    Adding mod_dav_svn to your httpd

    # a2enmod mod\_dav\_svn

    If you plan to use fine-grained permissions, load mod_authz_svn.so as well:

    # a2enmod mod_authz_svn

    • Configuring access to repositories

    HTTP access to your repositories is defined using a <Location> section in your httpd.conf.

    <Location /myproject>
DAV svn
SVNPath /home/myself/myrepos/myproject
AuthType Basic
AuthName "My project"
AuthUserFile /home/myself/private/myproject.pw
Order deny,allow
<LimitExcept GET PROPFIND OPTIONS REPORT>
Require valid-user
</LimitExcept>
</Location>

    This entry would grant read-only access to everyone and write access to every user AuthUserFile. You can use the htpasswd utility to create or update this file, as described here.

    The next entry grants read/write access to users in the AuthUserFile, and no access to anyone else.

    <Location /myproject>
DAV svn
SVNPath /home/myself/myrepos/myproject
AuthType Basic
AuthName "My project"
AuthUserFile /home/myself/private/myproject.pw
Order deny,allow
Require valid-user
</Location>

    The previous examples all define access on a per-repository basis. It is also possible to grant access from specific users to specific areas of the repository, using fine-grained permissions.

    • Testing the repository

    Using either a remote Subversion client or the standard svn command from your shell, you can generate your working copy of the repository with the checkout command. If you are accessing public data over a read-only account, you can use a standard http URL:

    # svn co http://your-domain/myproject/

    If you are accessing private data or using a read/write account, make sure to use an https URL:

    # svn co https://your-domain/myproject/

    The contents of public repositories are also accessible from a web browser. Keep in mind that search engines will try to index any public data, so you may want to use a robots.txt file.

    • Using fine-grained permissions (optional)

    You can allow or deny specific users read/write privileges on specific items within a repository using AuthzSVNAccessFile. If you use this directive, make sure the mod_authz_svn module is loaded.

    <Location /repos>
DAV svn
SVNPath /home/myself/myrepos

# Access Control via the authz module.
AuthzSVNAccessFile /home/myself/private/myrepos.acl
# Anonymous access is allowed. Prompt as needed.
Satisfy Any
Require valid-user
AuthType Basic
AuthName "My subversion repositories"
AuthUserFile /home/myself/private/myrepos.pw
</Location>

    The file specified in AuthzSVNAccessFile is a plain text file which defines fine-grained access lists. Note that all path names specified are relative to the SVNPath.

    #
# Allow anonymous read access to everything by default.
#
[/]
\* = r

#
# Grant alice and bob write access to all of /myproject1/.
#
[/myproject]
\* = r
leo = rw
temp = rw

#
# Grant carol and charlie write access to only /myproject/foo
#
[/myproject/foo]
leo= rw
temp = rw
    ]]>