SCMLife.com

 找回密码
 立即注册

QQ登录

只需一步,快速开始

扫一扫,访问微社区

查看: 16222|回复: 1

[求助] svn: Authentication error from server: SASL(-13): user not found: no secret in d

[复制链接]
发表于 2011-6-6 10:12:37 | 显示全部楼层 |阅读模式
本帖最后由 ths0516 于 2011-6-6 10:23 编辑 $ F/ L3 A" r8 k7 u- J
, G( J4 z, p+ @. [, a& z
错误信息为
  \7 ?  R$ T, m8 `6 }( gsvn: Authentication error from server: SASL(-13): user not found: no secret in database
5 z$ @6 Y2 ?0 B$ {7 S. ~参考
5 S. V) ^! k( l0 p+ j7 nhttp://scaner.blog.com/2011/03/23/svnserve-windows-ad%E9%9B%86%E6%88%90/
, b3 a5 ]. D: q/ W" {现在的报错信息是我仅仅配置了 svnserve.conf,不知道如何配置svn.conf
2 {$ n9 v7 v3 x1 c查找资料,有人说需要建立svn.conf来实现sasl的认证!5 [$ P" `- d( x
1、不清楚svn.conf的具体位置) E, {2 K5 g4 v- k, i8 s0 j
2、如果想实现域认证,怎么处理
& `# r& @6 t' \" |1 Z) Q! D% o( S+ H' t7 [# f. T  E. b' o
已经实现了svn.conf来实现sasl的认证,svn.conf的格式为,我把文件的路径放在了 /usr/lib/sasl2/下,内容:
, q" w2 R+ h1 X* n( u; wpwcheck_method: auxprop3 ]' b- S& w9 \- y
auxprop_plugin: sasldb5 U" @, P5 v9 O( M
sasldb_path: /testsvn/repos/conf/svn_sasldb/ h& o$ ~# M- G, T# l: j4 e
mech_list: DIGEST-MD53 d9 A# z4 W$ f9 T" t6 \
参考:http://svnbook.red-bean.com/en/1.5/svn.serverconfig.svnserve.html#svn.serverconfig.svnserve.sasl1 u8 ^* j# L- f  b
但这仅仅是实现svn+sasl,我也可以实现如果手动添加svn用户。2 B1 n; K" C3 Y' d0 T3 |6 n
saslpasswd2 -c -f /testsvn/repos/conf/svn_sasldb -u svn_realm test-svn8 V+ {$ y$ {( e. I4 `/ h
手动添加SVN用户可以实现sasl访问,好象不是我要实现WINDOWS域认证& t( W* a% G& v5 P  o2 b
svn.conf参考
7 h# k, d9 T) i; J" r; q  }) Shttp://www.svnforum.org/threads/36297-SVN-with-LDAP-via-SASL2 I1 }% O0 C, U: ~
完成了LDAP via SASL 的验证,测试sudo testsaslauthd -u user -p passwd 也没有问题!! d$ g  K5 P) ]  ~# N4 k, Z% G
SVN新建立的测试库,svnserve.conf的配置文件为:
. L8 p( e4 k8 Y) @0 P9 p( _* c. o( Q0 K" p+ [6 r
### This file controls the configuration of the svnserve daemon, if you
3 s/ O! n1 d  H" y4 D### use it to allow access to this repository.  (If you only allow  O2 Z! c$ z; R5 u3 l: n6 A  u5 f# i7 h
### access through http: and/or file: URLs, then this file is
' ~4 |' G; a2 X### irrelevant.)3 L* E% [/ a, _/ a. N  |
### Visit http://subversion.tigris.org/ for more information.
6 k% f6 \" J5 V3 P8 [/ e- t[general]
2 B) q' V- K5 p### These options control access to the repository for unauthenticated
3 ?/ @7 [) ]# V5 S* c0 y9 G### and authenticated users.  Valid values are "write", "read",
5 C# L4 K, e/ g2 j! _& F8 v0 r### and "none".  The sample settings below are the defaults./ M/ G8 k1 l3 \' ~
# anon-access = read; u, M0 S. {* s( g( N9 R8 q
# auth-access = write4 `" j$ i6 P* w- a
### The password-db option controls the location of the password* s* _9 P; K, }
### database file.  Unless you specify a path starting with a /,
1 L0 [9 m* B$ W2 y  W- v; ~7 m### the file's location is relative to the directory containing
, t8 w) d. x/ U: l0 O" n0 {: ~+ `### this configuration file.
4 q8 c; I6 e7 E/ j### If SASL is enabled (see below), this file will NOT be used.2 _; c0 c$ g' l$ X) g& \
### Uncomment the line below to use the default password file., v+ g* B$ Z# X% U4 S: N& I7 s
# password-db = passwd
+ m1 S( f; \# z( S6 S4 r### The authz-db option controls the location of the authorization' v4 `* e3 J- U
### rules for path-based access control.  Unless you specify a path
# F, f! F, J( L; r5 ^### starting with a /, the file's location is relative to the the
- [& \9 A5 A/ ]### directory containing this file.  If you don't specify an# D$ h3 C6 Z. Y( v
### authz-db, no path-based access control is done.- z/ Z* }- k$ f, p) y* W
### Uncomment the line below to use the default authorization file.4 C) W: D# T2 {7 a* g% O% l" t7 g
# authz-db = authz
# q% F6 e+ m+ T: x( w### This option specifies the authentication realm of the repository., H1 ]  l8 g$ L- V5 w
### If two repositories have the same authentication realm, they should
& X( Z. E0 P* ]0 z: E5 [### have the same password database, and vice versa.  The default realm
0 s7 l5 \; c# n: K### is repository's uuid.
$ n7 W1 o6 i$ Crealm = svn_realm
0 E9 m9 {( R' @; h  p, }; e; i  M0 r[sasl]
) N4 p  Z$ U2 r### This option specifies whether you want to use the Cyrus SASL# H( R& b' s; f2 L3 {+ U! N) t
### library for authentication. Default is false.6 {4 h+ J4 ~, H  c
### This section will be ignored if svnserve is not built with Cyrus
4 K# L* S4 o. J- R' c### SASL support; to check, run 'svnserve --version' and look for a line9 `, M8 [1 c% g+ T  X
### reading 'Cyrus SASL authentication is available.'# S+ {) M6 q% X# i) Y- ~- a1 p. p
# use-sasl = true* ^1 I  F; c' \5 ?4 |# B- [! B- N' E
use-sasl = true
/ l& Z! J5 `5 g4 ^6 d* y7 y### These options specify the desired strength of the security layer
+ \1 ~/ h% u6 W3 f1 {### that you want SASL to provide. 0 means no encryption, 1 means
. ~: K0 _) ?/ K### integrity-checking only, values larger than 1 are correlated7 A! J9 p2 Z' K3 z, O0 ]0 F$ p
### to the effective key length for encryption (e.g. 128 means 128-bit  z" E; ^  _% `3 N: ~4 e+ S
### encryption). The values below are the defaults.
4 N5 }8 `# u. A# m8 b7 `# min-encryption = 0# O; t2 \( N/ N, q1 Y
min-encryption = 128/ c& i$ y$ K4 ~# H6 ~$ @: @" `  L" Q( y
# max-encryption = 256
' b# ]9 H; {+ O; e+ [1 ?% |& i( }max-encryption = 256
" [3 C& F8 H$ y3 E
7 U0 @+ u  n$ L* Z5 `* y. V4 m
! V% |1 d$ ?6 k/ ]# J9 o% a4 s1 I6 v2 U" K, K! G" j3 X

; l3 P- w' l8 d. j( \! s6 QSVNlog:
/ q1 J7 ]+ o  Z& a3 z4 y5067 2011-06-06T02:18:19.164499Z 127.0.0.1 - - ERR /build/buildd/subversion-1.6.6dfsg/subversion/libsvn_ra_svn/streams.c 149 210002 Network connection closed unexpectedly
' S0 [+ q' w# B) U5 Z& ]( f3 O6 {) ]. m. D2 W$ G: \5 W7 z! @1 r
 楼主| 发表于 2011-6-11 23:02:19 | 显示全部楼层
回复 支持 反对

使用道具 举报

您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

关闭

SCMLife推荐上一条 /4 下一条

QQ|小黑屋|手机版|无图版|SCMLife.com ( 京ICP备06056490号-1 )

GMT+8, 2018-10-19 20:18 , Processed in 0.107997 second(s), 6 queries , Gzip On, MemCache On.

Powered by SCMLife X3.4 Licensed

© 2001-2017 JoyShare.

快速回复 返回顶部 返回列表