I am trying to install WebSVN on top of a VisualSVN install. VisualSVN is set up to use windows authentication, with users from domains CLIENT and DEV getting access to different areas of the site. Users in CLIENT are denied root access (through the SVN interface) and are given access to specific paths in the repository. Users in DEV are given access to everything. This works fine when accessing VisualSVN through its web interface or through the TortoiseSVN repo browser.
I am able to get WebSVN to run, and it authenticates that valid domain user credentials (from either of the domains) are provided before granting access. However, once valid credentials are provided, it gives access to everything, to all users.
I have tried different setup variations in the VisualSVN/conf/httpd-custom.conf file, but none of them work to solve this problem. Ideally, WebSVN would give the identical access as VisualSVN. However, I am ok with blocking all CLIENT domain users entirely from accessing WebSVN.
The current state of the conf file is:
LoadModule php5_module "c:/php/php5apache2_2.dll"
LoadModule authz_user_module bin/mod_authz_user.so
LoadModule sspi_auth_module bin/mod_auth_sspi.so
AddType application/x-httpd-php .php
AddType application/x-httpd-php .php3
PHPIniDir "C:/php"
<IfModule dir_module>
DirectoryIndex index.html index.php
</IfModule>
<Location /websvn/>
SVNListParentPath on
SVNParentPath "D:/Repositories/"
AuthName "SVN Server"
AuthType SSPI
SSPIAuth On
SSPIAuthoritative On
SSPIDomain DEV
require valid-user
</Location>
(This setup is aimed at only allowing access to members of the DEV domain, implicitly excluding the CLIENT domain - however, solutions to either approach will be welcome and accepted).
