ÅÌÁ³¤Ê³«È¯Æüµ­ ¥«¥ì¥ó¥À¡¼
2007ǯ 1·î
Æü ·î ²Ð ¿å ÌÚ ¶â ÅÚ
« 12·î   2·î »
 123456
78910111213
14151617181920
21222324252627
28293031  
ÅÌÁ³¤Ê³«È¯Æüµ­¤Î¸¡º÷
¥á¥¤¥ó¥á¥Ë¥å¡¼
iifp group site
¤´ÍøÍѤˤ¢¤¿¤Ã¤Æ
¥â¥Ð¥¤¥ë¥µ¥¤¥È

¥â¥Ð¥¤¥ë¥µ¥¤¥È¥¢¥É¥ì¥¹
[PR]

2007ǯ1·î12Æü(¶âÍËÆü)

Apache+mod_£ó£ó£ì¤ÇSVNÀܳ¤ò¤¹¤ë

¥«¥Æ¥´¥ê¡¼: - admin @ 14»þ47ʬ44ÉÃ

Á°²ó¡¢´ðËÜǧ¾Ú¤Ë¤è¤ëHTTP·Ðͳ¤Ç¤ÎSVN¤òƳÆþ¤·¤Þ¤·¤¿¤¬¡¢¤¤¤«¤ó¤»¤ó¥¤¥ó¥¿¡¼¥Í¥Ã¥È·Ðͳ¤È¤¤¤¦¤³¤È¤Ç¥»¥­¥å¥ê¥Æ¥£¤ËÌäÂꤢ¤ë¤Î¤Ç¤Ï¤È»×¤¤¡¢HTTPS·Ðͳ¤Ç¤ÎSVNÀܳ¤ËÄ©Àï

SVN¤ÎÀßÄê¤ÏHTTP¤ÈƱ¤¸¤Ç¤¤¤¤¤Ï¤º¡£¤Ê¤Î¤Ç¡¢SVN¤ÏÁ°²ó¤Î¥Ö¥í¥°¤ò¸«¤ë¤³¤È¡ª
¤³¤³¤Ç¤Ï¡¢FedoraCore+Apache¡Ümod_ssl¤ò¹½ÃÛ¤¹¤ë¤³¤È¤Ë¤¹¤ë¡£

FedoraCore¤Ïɸ½à¡©¡©¤Ç¡¢Apache¡Ümod_ssl¤òƳÆþ¤µ¤ì¤Æ¤¤¤ë¤Ï¤º¡£¡£¡£¡£
ÀßÄê¤ÏÆäËɬÍפʤ·¡£
¤Ç¤â¡¢¤³¤³¤ÇÌäÂê¤Ê¤Î¤Ï¡¢¥Ç¥Õ¥©¥ë¥È¤ÎÀßÄê¤Ç¤Ï¡¢¾ÚÌÀ½ñ¤¬³°ÉôÀܳ¤ÎURL¤È°Û¤Ê¤ë¤¿¤á¡¢ÌäÂ꤬ȯÀ¸¤¹¤ë¡£
¤ó¤Ç¤â¤Ã¤Æ¡¢¾ÚÌÀ½ñ¤ÎºîÀ®¤¬º£²ó¤Î²ÝÂê¤Ë¤Ê¤ë¡£

¤Þ¤º¡¢°Ê²¼¤ò³Îǧ¤¹¤ë

/etc/httpd/conf.d/ssl.conf

SSLCertificateFile /etc/pki/tls/certs/localhost.crt
¤È
SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
¤¬½ñ¤¤¤Æ¤¢¤ë¹Ô¤¬¤¢¤ë¤Ï¤º

¤Ç¡¢
¤³¤ì¤ò¤½¤ì¤¾¤ì¡¢
#SSLCertificateFile /etc/pki/tls/certs/localhost.crt
SSLCertificateFile /etc/pki/tls/certs/server.crt
¤È
#SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
SSLCertificateKeyFile /etc/pki/tls/private/server.key
¤Ë½ñ¤­´¹¤¨¤ÆÊݸ¤¹¤ë¡£
¼è¤ê¹ç¤¨¤º¡¢Íý¶þ¤ÏÈ´¤­¤Ë¤·¤Æ¡¦¡¦¡¦¡¦¡¦

¼¡¤Ë
#openssl req -new -nodes -keyout /etc/pki/tls/private/server.key -out /etc/pki/tls/private/server.csr
¤ò¼Â¹Ô¤¹¤ë
¤È¼ÁÌ䤵¤ì¤ë¤Î¤Ç¡¢Åú¤¨¤ë

Country Name (2 letter code) [GB]:¹ñ
State or Province Name (full name) [Berkshire]:ÅÔ»Ô
Locality Name (eg, city) [Newbury]:»Ô¶èĮ¼
Organization Name (eg, company) [My Company Ltd]:²ñ¼Ò̾
Organizational Unit Name (eg, section) []:Éô½ð̾
Common Name (eg, your name or your server’s hostname) []:¥É¥á¥¤¥ó̾
Email Address []:¥á¡¼¥ë¥¢¥É¥ì¥¹

Please enter the following ‘extra’ attributes
to be sent with your certificate request
A challenge password []:¤Ê¤·
An optional company name []:¤Ê¤·

¤½¤Î¸å¤Ë
#openssl x509 -in /etc/pki/tls/private/server.csr -out /etc/pki/tls/certs/server.crt -req -signkey /etc/pki/tls/private/server.key -days 3650
¤ò¼Â¹Ô¤¹¤ë¡£

¼¡¤Ë¡Ê½ÅÍפǤ¹¡Ë¡ª¡ª
SSL¤Ç´ðËÜǧ¾Ú¤ò¤¹¤ë¾ì¹ç¤Ï¡¢

vi /etc/httpd/conf.d/subversion.conf

LoadModule dav_svn_module     modules/mod_dav_svn.so
LoadModule authz_svn_module   modules/mod_authz_svn.so

#
# Example configuration to enable HTTP access for a Subversion
# repository, “/home/svnroot”.  This repository must be readable
# and writable by the ‘apache’ user.
#

<Location /svn/repos>
    DAV svn
    SVNPath /home/svnroot

    # Require SSL connection for password protection.
    SSLRequireSSL

    
    AuthType Basic
    AuthName “Authorization Realm”
    AuthUserFile /home/svnroot/.htpasswd
    Require valid-user
</Location>

ÀÖ»ú¤Î¤È¤³¤í¤òɬ¤º½ñ¤­¹þ¤ó¤Ç¤¯¤À¤µ¤¤¡£
¤³¤ì¤ò½ñ¤­¹þ¤à¤ÈHTTPS·Ðͳ¤«¤é¤Î¤ß¥¢¥¯¥»¥¹¤¹¤ë¤³¤È¤¬¤Ç¤­¡¢HTTP·Ðͳ¤Ç¤Î¥¢¥¯¥»¥¹¤Ï̵¸ú¤Ë¤Ê¤ê¤Þ¤¹¡£

#service httpd restart
¤Çapache¤òºÆµ¯Æ°¤·¤Æ´°Î»

SVN¤ÎÀܳ¤ÏHTTPS://¥É¥á¥¤¥ó/¥ê¥Ý¥¸¥È¥ê̾¤Ç¹Ô¤¨¤ÐOK
¤Ç¤ÏÀܳ³Îǧ¡¦¡¦¡¦¡¦¡¦¡¦
¤ÎÁ°¤Ë¡¢
¥Õ¥¡¥¤¥ä¡¼¥¦¥©¡¼¥ë¤ÎÀßÄê¤ò³Îǧ¤·¤Ê¤¤¤È¡¦¡¦¡¦
¤ó¡¢OK¤À¤Í

¤¸¤ã¤¡¡¢Àܳ¤Ã¤È¡¢¡¢¡¢¡¢¤Õ¤à¡£¤Ä¤Ê¤¬¤Ã¤¿


TrackBacks

¤³¤Î¥³¥á¥ó¥È¤ÎRSS

TrackBack URL : http://project.iifp.biz/modules/xmaoh0/archives/2007/01/12/60/trackback/

¤³¤ÎÅê¹Æ¤Ë¤Ï¡¢¤Þ¤À¥³¥á¥ó¥È¤¬ÉÕ¤¤¤Æ¤¤¤Þ¤»¤ó

¥³¥á¥ó¥È

 
Åê¹Æ¤µ¤ì¤¿ÆâÍƤÎÃøºî¸¢¤Ï¥³¥á¥ó¥È¤ÎÅê¹Æ¼Ô¤Ëµ¢Â°¤·¤Þ¤¹¡£
Presented by office forplus © 2007