【svn】Centos搭建svn伺服器環境

標籤：should   color   圖片   blog   進程id   ESS   ORC   starting   tin   

1.需求描述

在Centos系統中搭建svn伺服器環境

2.搭建過程

2.1 yum安裝svn

[[email protected] /]# yum install svn 

2.2 建立目錄存放svn目錄

[[email protected] /]# mkdir /usr/svn

2.3 建立測試倉庫pro

[[email protected] /]# svnadmin create /usr/svn/pro

進入到目錄/usr/svn/pro展開目錄

說明：

hooks目錄：放置hook腳步檔案的目錄

locks目錄：用來放置subversion的db鎖檔案和db_logs鎖檔案的目錄，用來追蹤存取檔案庫的用戶端

format目錄：是一個文字檔，裡邊只放了一個整數，表示當前檔案庫配置的版本號碼

conf目錄：是這個倉庫設定檔（倉庫使用者訪問賬戶，許可權）

2.4 進入到檔案夾conf,配置相關資訊

展開檔案夾conf，有以下檔案

對上述三個檔案配置內容如下：(粉紅色標記部分為修改)

vi passwd

### This file is an example password file for svnserve.
### Its format is similar to that of svnserve.conf. As shown in the
### example below it contains one section labelled [users].
### The name and password for each user follow, one account per line.

[users]
# harry = harryssecret
# sally = sallyssecret

admin =admin1
qinys = 123456

vi authz

### This file is an example authorization file for svnserve.
### Its format is identical to that of mod_authz_svn authorization
### files.
### As shown below each section defines authorizations for the path and
### (optional) repository specified by the section name.
### The authorizations follow. An authorization line can refer to:
###  - a single user,
###  - a group of users defined in a special [groups] section,
###  - an alias defined in a special [aliases] section,
###  - all authenticated users, using the ‘$authenticated‘ token,
###  - only anonymous users, using the ‘$anonymous‘ token,
###  - anyone, using the ‘*‘ wildcard.
###
### A match can be inverted by prefixing the rule with ‘~‘. Rules can
### grant read (‘r‘) access, read-write (‘rw‘) access, or no access
### (‘‘).

[aliases]
# joe = /C=XZ/ST=Dessert/L=Snake City/O=Snake Oil, Ltd./OU=Research Institute/CN=Joe Average

[groups]
# harry_and_sally = harry,sally
# harry_sally_and_joe = harry,sally,&joe

# [/foo/bar]
# harry = rw
# &joe = r
# * =

# [repository:/baz/fuz]
# @harry_and_sally = rw
# * = r
admin = admin1
user = qinys
[/]
@admin = rw
@user = rw
*=

以下是說明：

admin = admin1   建立admin組，群組成員為：admin1

user = qinys         建立使用者組，使用者成員：qinys

[/]                       賦予根許可權，為了便於管理和許可權的控制，可以把許可權細化到版本庫中相應的目錄

@admin = rw       admin組有讀寫的許可權

@user = r            user組只有讀的許可權

*=                       表示除了上面設定的許可權使用者組以外，其他所有使用者都設定空許可權，空許可權表示禁止訪問本目錄，這很重要一定要加上。

vi svnserve.conf

### The anon-access and auth-access options control access to the
### repository for unauthenticated (a.k.a. anonymous) users and
### authenticated users, respectively.
### Valid values are "write", "read", and "none".
### Setting the value to "none" prohibits both reading and writing;
### "read" allows read-only access, and "write" allows complete
### read/write access to the repository.
### The sample settings below are the defaults and specify that anonymous
### users have read-only access to the repository, while authenticated
### users have read and write access to the repository.
anon-access = none #注意前邊不要有空格，要頂齊 .匿名存取權限，可以是read,write,none,預設是read
auth-access = write #注意前邊不要有空格，要頂齊 使授權使用者有寫的許可權
### The password-db option controls the location of the password
### database file.  Unless you specify a path starting with a /,
### the file‘s location is relative to the directory containing
### this configuration file.
### If SASL is enabled (see below), this file will NOT be used.
### Uncomment the line below to use the default password file.
password-db = passwd #密碼資料庫的路徑
### The authz-db option controls the location of the authorization
### rules for path-based access control.  Unless you specify a path
### starting with a /, the file‘s location is relative to the the
### directory containing this file.  If you don‘t specify an
### authz-db, no path-based access control is done.
### Uncomment the line below to use the default authorization file.
authz-db = authz #存取控制檔案
### This option specifies the authentication realm of the repository.
### If two repositories have the same authentication realm, they should
### have the same password database, and vice versa.  The default realm
### is repository‘s uuid.
realm = My First Repository #認證命名空間，會在認證提示中顯示
### The force-username-case option causes svnserve to case-normalize
### usernames before comparing them against the authorization rules in the
### authz-db file configured above.  Valid values are "upper" (to upper-
### case the usernames), "lower" (to lowercase the usernames), and
### "none" (to compare usernames as-is without case conversion, which
### is the default behavior).
# force-username-case = none

[sasl]
### This option specifies whether you want to use the Cyrus SASL
### library for authentication. Default is false.
### This section will be ignored if svnserve is not built with Cyrus
### SASL support; to check, run ‘svnserve --version‘ and look for a line
### reading ‘Cyrus SASL authentication is available.‘
# use-sasl = true
### These options specify the desired strength of the security layer
### that you want SASL to provide. 0 means no encryption, 1 means
### integrity-checking only, values larger than 1 are correlated
### to the effective key length for encryption (e.g. 128 means 128-bit
### encryption). The values below are the defaults.
# min-encryption = 0
# max-encryption = 256

2.5 啟動svn

[[email protected] /]# svnserve -d -r /usr/svn/

2.6查看啟動情況

ps -ef | grep svn

停止svn，使用命令：kill –9 20181 即可20181為進程ID

2.7 windows用戶端串連

用戶端：https://tortoisesvn.net/downloads.html

根據本地系統選擇版本下載即可

下載完成後安裝，安裝完成後到D盤根目錄下右鍵

點擊【OK】

出現這個問題的原因是由於防火請問題造成

那麼我們如何處理呢？我們為svn指定連接埠，然後在指定地區開放此連接埠

執行以下命令

firewall-cmd --permanent --zone=public --add-port=3690/tcp

接著就開啟防火請並查看狀態

systemctl start firewalld

systemctl status firewalld

再添加3690連接埠

firewall-cmd --permanent --zone=public --add-port=3690/tcp

接著重啟防火牆

firewall-cmd --reload

【svn】Centos搭建svn伺服器環境