SCMLife.com

 找回密码
 立即注册

QQ登录

只需一步,快速开始

扫一扫,访问微社区

查看: 15815|回复: 1

[求助] svn: Authentication error from server: SASL(-13): user not found: no secret in d

[复制链接]
发表于 2011-6-6 10:12:37 | 显示全部楼层 |阅读模式
本帖最后由 ths0516 于 2011-6-6 10:23 编辑 3 G  a5 k& q6 `) O" O
& c; c4 _: p; T' s: ]# E  _* G
错误信息为
6 G- A& \9 O5 F" m; I, e& [svn: Authentication error from server: SASL(-13): user not found: no secret in database
6 |) X3 k6 D; H. R3 U2 b! c9 {参考% S6 h; O# M, Q' Q' N( G
http://scaner.blog.com/2011/03/23/svnserve-windows-ad%E9%9B%86%E6%88%90/
2 N" L1 l5 E, d  C4 O现在的报错信息是我仅仅配置了 svnserve.conf,不知道如何配置svn.conf
& @; v2 g2 y5 U  N* O查找资料,有人说需要建立svn.conf来实现sasl的认证!
9 ^# F7 ?$ {% T& u+ _& p+ w1、不清楚svn.conf的具体位置
- ]. ~8 D3 O! m2、如果想实现域认证,怎么处理- z' y) z# |8 w2 S

- Q- U$ K/ f* K( J7 V已经实现了svn.conf来实现sasl的认证,svn.conf的格式为,我把文件的路径放在了 /usr/lib/sasl2/下,内容:. o0 e( Z7 a, I) |9 H& `4 H0 R
pwcheck_method: auxprop: ^0 C7 V( b( {, j/ z7 g
auxprop_plugin: sasldb
4 c' ^6 |) P) w# fsasldb_path: /testsvn/repos/conf/svn_sasldb
4 U- p! A0 t1 F* V; n; emech_list: DIGEST-MD50 W' t2 v: C$ u" y8 g( y
参考:http://svnbook.red-bean.com/en/1.5/svn.serverconfig.svnserve.html#svn.serverconfig.svnserve.sasl) [5 r8 Q% Z, i0 Z) q
但这仅仅是实现svn+sasl,我也可以实现如果手动添加svn用户。
6 Y, g2 n& G% I4 r- ~# g. \saslpasswd2 -c -f /testsvn/repos/conf/svn_sasldb -u svn_realm test-svn* ?! ?$ z5 C2 d+ P+ u; C# Q
手动添加SVN用户可以实现sasl访问,好象不是我要实现WINDOWS域认证: t, i" G, L4 {! W) y
svn.conf参考
7 P2 C9 k& W& m7 b8 Hhttp://www.svnforum.org/threads/36297-SVN-with-LDAP-via-SASL
0 K! k, ?1 f* H& C* K完成了LDAP via SASL 的验证,测试sudo testsaslauthd -u user -p passwd 也没有问题!, X0 W: g1 {1 k
SVN新建立的测试库,svnserve.conf的配置文件为:
% y: `+ p+ }+ R8 {# ^0 o9 g  E3 m7 [& C  n0 \( Z
### This file controls the configuration of the svnserve daemon, if you
1 x5 [2 z4 K+ F- V) I/ ?- V" J### use it to allow access to this repository.  (If you only allow
8 s8 s- u; K2 U$ h. M### access through http: and/or file: URLs, then this file is
' E! D' k+ x# M" v### irrelevant.)
0 a( d& I% o2 V4 d/ t### Visit http://subversion.tigris.org/ for more information.7 V# E7 a$ V" A& V  ?/ i
[general]
- E7 D/ N1 p+ M/ @& j### These options control access to the repository for unauthenticated  `* v" E& g- Q$ D3 ^9 @7 ~: Q
### and authenticated users.  Valid values are "write", "read",% z& w. x" q3 @" g; Q
### and "none".  The sample settings below are the defaults./ @5 g2 L+ x+ y# Y# }2 [' w% `
# anon-access = read9 b. f4 i1 K. N. i  Z
# auth-access = write
9 U1 u- ]& l$ s/ a/ n### The password-db option controls the location of the password; _% k$ g( a+ C  Y
### database file.  Unless you specify a path starting with a /,2 P1 v1 a0 K( E4 n# p
### the file's location is relative to the directory containing2 z- z& b6 `3 `+ p# V
### this configuration file.. E1 T$ S% O9 Y
### If SASL is enabled (see below), this file will NOT be used.1 y0 e4 D: k& T0 O; Y" F
### Uncomment the line below to use the default password file.
' J" ^* R6 z5 O3 y5 {, s) Q# s# password-db = passwd
) Y- W- h6 B; _. a( ?### The authz-db option controls the location of the authorization7 P% M, `# B3 f0 ~% |- Q
### rules for path-based access control.  Unless you specify a path7 `* X9 E6 d+ c; t' y1 z
### starting with a /, the file's location is relative to the the
: Z1 E- ], x2 s& B4 F% O### directory containing this file.  If you don't specify an; H% z1 Y1 t- D$ d' K3 U/ b" q" `. r/ v
### authz-db, no path-based access control is done.
4 M( j$ f1 g, X9 ]' p" O### Uncomment the line below to use the default authorization file.! o4 T" r# A& x/ V5 {
# authz-db = authz* J2 {* h" z0 D8 L1 b! s
### This option specifies the authentication realm of the repository.  {7 {5 k! _7 R
### If two repositories have the same authentication realm, they should
  `4 l9 l; B" j2 h### have the same password database, and vice versa.  The default realm
  y' P* ^/ i0 u# H4 V; ^" o  h### is repository's uuid.
4 u4 x8 j& e) Mrealm = svn_realm
. i3 |9 s9 i2 I4 z% m4 m[sasl]" x& Z/ D& j* s( f! Y
### This option specifies whether you want to use the Cyrus SASL8 i, R2 i4 E9 ~: b! H  j+ u
### library for authentication. Default is false.6 C  ]: D+ v3 Y; z3 F3 ~
### This section will be ignored if svnserve is not built with Cyrus
( C% M0 N+ s6 q+ O2 e### SASL support; to check, run 'svnserve --version' and look for a line" C1 e* s/ b0 U8 ~4 t3 i( u
### reading 'Cyrus SASL authentication is available.'- n$ V' Z% k" E; n/ R! b
# use-sasl = true
- T5 {. E0 r  @: E6 E8 h% cuse-sasl = true
" {0 ?2 m& p$ ]### These options specify the desired strength of the security layer+ s7 |& T. e' ?6 d' j
### that you want SASL to provide. 0 means no encryption, 1 means$ d& m) R+ ^/ T+ }. i( e, t# ?
### integrity-checking only, values larger than 1 are correlated
  O/ q  w* M; f0 }8 j. k$ @### to the effective key length for encryption (e.g. 128 means 128-bit
0 _2 D/ t& ]0 w. k### encryption). The values below are the defaults.
' d: M4 x! y" J6 A: b/ g# min-encryption = 0' m' Q% n; ?4 K% |0 O" {. t
min-encryption = 128$ R0 ?5 \7 b2 p* W8 x9 u- B  m
# max-encryption = 256
7 }8 F; u. o+ G& @# qmax-encryption = 256; l4 p; }3 p) P( E

- l. J. [* z9 `" l& E1 W  H/ F) T
0 v  W/ e+ y: m7 A; q4 R! A# X$ z% g1 o5 ?# L7 p, I% E

& ]3 `" p, ^1 OSVNlog:
  H! ]5 I" u% J3 @1 |7 j/ \# g0 L5067 2011-06-06T02:18:19.164499Z 127.0.0.1 - - ERR /build/buildd/subversion-1.6.6dfsg/subversion/libsvn_ra_svn/streams.c 149 210002 Network connection closed unexpectedly8 S$ `5 b7 K. r, {

5 M9 \1 N- j- a* ^1 h$ I+ x
 楼主| 发表于 2011-6-11 23:02:19 | 显示全部楼层
回复 支持 反对

使用道具 举报

您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

关闭

SCMLife推荐上一条 /4 下一条

QQ|小黑屋|手机版|无图版|SCMLife.com ( 京ICP备06056490号-1 )

GMT+8, 2018-7-20 12:40 , Processed in 0.062419 second(s), 6 queries , Gzip On, MemCache On.

Powered by SCMLife X3.4 Licensed

© 2001-2017 JoyShare.

快速回复 返回顶部 返回列表