svn方式很简单,svnadmin create之后svnserve启动就可以访问,用svn+ssh方式需要使用serve的tunel即隧道方式,即在登录时启动一个隧道将请求作为svn方式。
这个方式好像很难找到资料,百度上的真是大多是互相copy,几乎都不验证,费了老半天劲才搞明白如何做。
其中有几点要注意:
1. svn+ssh,需要添加一个linux系统用户,能登录系统的。
2. 用ssh-keygen生成密钥后,需要改为authorized_keys,并且指定command为svnserve的隧道。
3.在checkout时和svn方式不一样,,“svn co svn://192.168.11.222/repos”,而后者是“svn co svn+ssh://linuxuser@192.168.11.222/svnroot/repos”,一定要加上路径,否则会说找不到这个repository.
4.新建一个svn用户,在auth里指定权限,在passwd里指定密码,用svn方式就可以访问;同时它可以作为ssh方式的隧道。
5. 新建一个系统用户,在.ssh/authorized_keys指定隧道。
6.需要将svn用户和系统用户都添加到auth里面,否则会说Authorized failed。
以下是详细步骤:
除了“ssh-keygen -t rsa -b 1024”生成密钥那里需要敲几个回车,其他地方都可以直接执行。
echo “for CentOS5.5 x86_64bit”echo “refer to: “
##################################################################################################################################################################### install apache-svn module.sudo yum install -y subversion# 安装subversion时会安装svn服务器端
# start svnserver, specifies the svnroot.sudo mkdir /svnrootsudo chmod 777 /svnroot
# create reposcd /svnroot/svnadmin create repos
# disable anoncd /svnroot/repos/confcat << END > svnserve.conf[general]anon-access = noneauth-access = writepassword-db = passwdauthz-db = authz[sasl]# use-sasl = true# min-encryption = 0# max-encryption = 256END
# add authcd /svnroot/repos/conf# add to the end of file.cat << END > authz[aliases]# joe = /C=XZ/ST=Dessert/L=Snake City/O=Snake Oil, Ltd./OU=Research Institute/CN=Joe Average
[groups]# harry_and_sally = harry,sally# [repository:/baz/fuz]# @harry_and_sally = rw
[/]# svnuser is not a system user, just a user in svn, whose password stored in ./passwd.svnuser=rwEND
# add user to svncd /svnroot/repos/confcat << END > passwd[users]svnuser=svnuser_passwordEND
# start serversvnserve -d -r /svnroot
# client checkoutcd;rm -rf repossvn co svn://192.168.11.222/repos
# support svn+ssh.##################################################################################################################################################################### add user linuxusersudo useradd linuxuser# set password to linuxuser_passwordprintf “linuxuser_password\nlinuxuser_password”|sudo passwd linuxuser
# generate public/private key.sudo su linuxuser# press enter 3times.cd;mkdir .sshcd .sshssh-keygen -t rsa -b 1024# generate tunnelrm -f authorized_keys# you may need to modify the svnroot and svnuser if need.echo -n ‘command=”/usr/bin/svnserve -t -r /svnroot –tunnel-user=svnuser”‘ >> authorized_keysecho -n ‘,no-port-forwarding,no-pty,no-agent-forwarding,no-X11-forwarding’ >> authorized_keysecho -n ‘ ‘ >> authorized_keyscat id_rsa.pub >> authorized_keysexit
# we must add the svnuser and linuxuser to the svn authcd /svnroot/repos/confcat << END > authz[aliases]# joe = /C=XZ/ST=Dessert/L=Snake City/O=Snake Oil, Ltd./OU=Research Institute/CN=Joe Average
[groups]# harry_and_sally = harry,sally# [repository:/baz/fuz]# @harry_and_sally = rw
[/]# svnuser is not a system user, just a user in svn, whose password stored in ./passwd.svnuser=rw# we must add the linux user also.linuxuser=rwEND
# chechoutcd;rm -rf repossvn co svn+ssh://linuxuser@192.168.11.222/svnroot/repos
困难与折磨对于人来说,是一把打向坯料的锤,