SVN Repository 생성 및 관리

리눅스에서 svn Repository 생성

1. 저장소 생성

2. 계정 생성

3. 그룹 설정 & 권한 설정

4. svnserve.conf 파일 설정

1. 저장소 생성

콘솔로 저장소를 생성해보겠다.

svnadmin 유틸에 서브 커멘드인 create를 이용하여 생성한다.

svnadmin create 경로

mkdir test2
svnadmin create ./test2

 

정상적으로 저장소가 생성되었다면 아래와같은 파일들이 생성된다.

-rw-r--r-- 1 root root  229 2015-08-24 09:53 README.txt
drwxr-xr-x 2 root root 4096 2015-08-24 10:15 conf
drwxr-sr-x 6 root root 4096 2015-08-24 09:53 db
-r--r--r-- 1 root root    2 2015-08-24 09:53 format
drwxr-xr-x 2 root root 4096 2015-08-24 09:53 hooks
drwxr-xr-x 2 root root 4096 2015-08-24 09:53 locks

 

2. 계정 생성

-rw-r--r-- 1 root root  229 2015-08-24 09:53 README.txt
drwxr-xr-x 2 root root 4096 2015-08-24 10:15 conf
drwxr-sr-x 6 root root 4096 2015-08-24 09:53 db
-r--r--r-- 1 root root    2 2015-08-24 09:53 format
drwxr-xr-x 2 root root 4096 2015-08-24 09:53 hooks
drwxr-xr-x 2 root root 4096 2015-08-24 09:53 locks
[root@test ecsees]# cd conf
[root@test conf]# ll
합계 12
-rw-r--r-- 1 root root 1080 2015-08-24 09:53 authz
-rw-r--r-- 1 root root  369 2015-08-24 09:58 passwd
-rw-r--r-- 1 root root 2272 2015-08-24 10:08 svnserve.conf
[root@test conf]# vi passwd

conf 폴더로 들어간뒤 계정을 생성하겠다

계정 관련 파일은 passwd 파일이다.

vi로 passwd 파일을 수정해보자.

### This file is an example password file for svnserve.
### Its format is similar to that of svnserve.conf. As shown in the
### example below it contains one section labelled [users].
### The name and password for each user follow, one account per line.

[users]
harry = harryssecret
sally = sallyssecret

 

저런식으로 id = password 형식으로 입력해 주면 되는데 

위처럼 입력하게 되면 admin, hjs, guest1, guest2 계정이 생성된다.

3. 그룹 설정 & 권한 설정

권한과 그룹에 관련된 파일은 authz 파일이다.

vi 편집기로 열어 본다.

 

[root@test conf]# ll
합계 12
-rw-r--r-- 1 root root 1080 2015-08-24 09:53 authz
-rw-r--r-- 1 root root  369 2015-08-24 09:58 passwd
-rw-r--r-- 1 root root 2272 2015-08-24 10:08 svnserve.conf
[root@test conf]# vi authz

### This file is an example authorization file for svnserve.
### Its format is identical to that of mod_authz_svn authorization
### files.
### As shown below each section defines authorizations for the path and
### (optional) repository specified by the section name.
### The authorizations follow. An authorization line can refer to:
###  - a single user,
###  - a group of users defined in a special [groups] section,
###  - an alias defined in a special [aliases] section,
###  - all authenticated users, using the '$authenticated' token,
###  - only anonymous users, using the '$anonymous' token,
###  - anyone, using the '*' wildcard.
###
### A match can be inverted by prefixing the rule with '~'. Rules can
### grant read ('r') access, read-write ('rw') access, or no access
### ('').

[aliases]
 joe = /C=XZ/ST=Dessert/L=Snake City/O=Snake Oil, Ltd./OU=Research Institute/CN=Joe Average

[groups]
harry_and_sally = harry,sally
harry_sally_and_joe = harry,sally,&joe

[/foo/bar]
harry = rw
&joe = r
* =

[repository:/baz/fuz]
@harry_and_sally = rw
* = r

그룹을 설정하는 방법은

그룹명 = 아이디1, 아이디2... 

권한 설정하는 부분은 

저장소 별로 설정을 할수가 있는데 [/] 할경우 루트 권한을 이야기 한다.

@그룹명 = rw 

아이디 = rw 이런식으로 줄수 있다.

r = read

w = write

4. svnserve.conf 파일 설정

vi 로 svnserve.conf 파일을 연뒤 아래처럼 주석을 풀어 주자.

### This file controls the configuration of the svnserve daemon, if you
### use it to allow access to this repository.  (If you only allow
### access through http: and/or file: URLs, then this file is
### irrelevant.)

### Visit http://subversion.tigris.org/ for more information.

[general]
### These options control access to the repository for unauthenticated
### and authenticated users.  Valid values are "write", "read",
### and "none".  The sample settings below are the defaults.
anon-access = none
auth-access = write
### The password-db option controls the location of the password
### database file.  Unless you specify a path starting with a /,
### the file's location is relative to the directory containing
### this configuration file.
### If SASL is enabled (see below), this file will NOT be used.
### Uncomment the line below to use the default password file.
password-db = passwd
### The authz-db option controls the location of the authorization
### rules for path-based access control.  Unless you specify a path
### starting with a /, the file's location is relative to the the
### directory containing this file.  If you don't specify an
### authz-db, no path-based access control is done.
### Uncomment the line below to use the default authorization file.
#authz-db = authz
### This option specifies the authentication realm of the repository.
### If two repositories have the same authentication realm, they should
### have the same password database, and vice versa.  The default realm
### is repository's uuid.
# realm = My First Repository

[sasl]
### This option specifies whether you want to use the Cyrus SASL
### library for authentication. Default is false.
### This section will be ignored if svnserve is not built with Cyrus
### SASL support; to check, run 'svnserve --version' and look for a line
### reading 'Cyrus SASL authentication is available.'
# use-sasl = true
### These options specify the desired strength of the security layer
### that you want SASL to provide. 0 means no encryption, 1 means
### integrity-checking only, values larger than 1 are correlated
### to the effective key length for encryption (e.g. 128 means 128-bit
### encryption). The values below are the defaults.
# min-encryption = 0
# max-encryption = 256

 

설명

- anon-access = none => 비인증 계정 : 접근 권한 없음

- auth-access = write => 인증 계정 :  쓰기 권한

- password-db = passwd => 인증 계정 정보

- authz-db = authz => 인증 계정의 저장소 권한 설정 파일

- realm = My First Repository => 인증할 때 보여주는 간단한 저장소 설명이다.(생략 가능)

 

 

권한

- none : 없음, read : 읽기, write : 쓰기

출처 : http://blog.naver.com/hjs4827/220302780173