SVN介绍
SVN是个自由、开源的版本控制系统,绝大多数开源软件都使用SVN作为代码版本管理软件。
SVN的官方网站http://subversion.apache.org/。目前SVN在开源社区中非常流行的一款版本控制软件,它是CVS的替代产物。
SVN服务端安装
部署规划
系统版本 系统配置 IP地址 端口号 SVN版本 SVN数据目录 SVN日志目录 SVN配置文件目录
CentOS Linux release 7.2.1511 1.7.14 /data/svndata/ /data/logs/svn/ /data/svndata/ztjy/conf
安装部署
YUM安装SVN
yum install httpd httpd-devel subversion mod_dav_svn mod_auth_mysql -y
创建相关目录
创建svn数据目录
mkdir -p /data/svndata/
新建ztjy仓库
svnadmin create /data/svndata/ztjy
[root@localhost svn]$ ls -al /data/svndata/ztjy #查看创建的仓库目录
total 24
drwxr-xr-x. 2 root root 4096 Feb 28 18:12 conf
drwxr-sr-x. 6 root root 4096 Feb 28 18:12 db
-r--r--r--. 1 root root 2 Feb 28 18:12 format
drwxr-xr-x. 2 root root 4096 Feb 28 18:12 hooks
drwxr-xr-x. 2 root root 4096 Feb 28 18:12 locks
-rw-r--r--. 1 root root 229 Feb 28 18:12 README.txt
仓库目录说明:
hooks目录:放置hook脚步文件的目录
locks目录:用来放置subversion的db锁文件和db_logs锁文件的目录,用来追踪存取文件库的客户端
format目录:是一个文本文件,里边只放了一个整数,表示当前文件库配置的版本号
conf目录:是这个仓库配置文件(仓库用户访问账户,权限)
db目录:仓库数据目录
修改相关配置文件
配置SVN服务的配置文件svnserver.conf
[root@localhost conf]# vim svnserve.conf ### This file controls the configuration of the svnserve daemon, if you ### use it to allow access to this repository. (If you only allow ### access through http: and/or file: URLs, then this file is ### irrelevant.) ### Visit http://subversion.tigris.org/ for more information. [general] ### These options control access to the repository for unauthenticated ### and authenticated users. Valid values are "write", "read", ### and "none". The sample settings below are the defaults. anon-access = read ##注意前边不要有空格,要顶齐 auth-access = write ##注意前边不要有空格,要顶齐 ### The password-db option controls the location of the password ### database file. Unless you specify a path starting with a /, ### the file's location is relative to the directory containing ### this configuration file. ### If SASL is enabled (see below), this file will NOT be used. ### Uncomment the line below to use the default password file. password-db = passwd ##注意前边不要有空格,要顶齐 ### The authz-db option controls the location of the authorization ### rules for path-based access control. Unless you specify a path ### starting with a /, the file's location is relative to the the ### directory containing this file. If you don't specify an ### authz-db, no path-based access control is done. ### Uncomment the line below to use the default authorization file. authz-db = authz ### This option specifies the authentication realm of the repository. ### If two repositories have the same authentication realm, they should ### have the same password database, and vice versa. The default realm ### is repository's uuid. realm = ztjy ##这个是提示信息 [sasl] ### This option specifies whether you want to use the Cyrus SASL ### library for authentication. Default is false. ### This section will be ignored if svnserve is not built with Cyrus ### SASL support; to check, run 'svnserve --version' and look for a line ### reading 'Cyrus SASL authentication is available.' # use-sasl = true ### These options specify the desired strength of the security layer ### that you want SASL to provide. 0 means no encryption, 1 means ### integrity-checking only, values larger than 1 are correlated ### to the effective key length for encryption (e.g. 128 means 128-bit ### encryption). The values below are the defaults. # min-encryption = 0 # max-encryption = 256 配置访问用户及密码
[root@localhost conf]# vim passwd
### This file is an example password file for svnserve. ### Its format is similar to that of svnserve.conf. As shown in the ### example below it contains one section labelled [users]. ### The name and password for each user follow, one account per line. [users] awk = abc123456 # 切记'='两边的空格 密码建议设置复杂密码 sed = 123456 grep = 654321
配置新用户的授权文件
[root@localhost conf]# vim authz
### This file is an example authorization file for svnserve.
### Its format is identical to that of mod_authz_svn authorization
### files.
### As shown below each section defines authorizations for the path and
### (optional) repository specified by the section name.
### The authorizations follow. An authorization line can refer to:
### - a single user,
### - a group of users defined in a special [groups] section,
### - an alias defined in a special [aliases] section,
### - all authenticated users, using the '$authenticated' token,
### - only anonymous users, using the '$anonymous' token,
### - anyone, using the '*' wildcard.
###
### A match can be inverted by prefixing the rule with '~'. Rules can
### grant read ('r') access, read-write ('rw') access, or no access
### ('').
[aliases]
[groups]
admin = awk,sed #创建admin组,组成员为:awk,sed
user = grep # 创建用户组,用户成员:grep
[ztjy:/] #赋予根权限,为了便于管理和权限的控制,可以把权限细化到版本库中相应的目录
@admin = rw ##授予admin组内用户可读可写的权限
@user = r ## 授予user组用户只读的权限
* = r ##授予其他的用户和用户组只读权限书写注意事项
[/],表示根目录及其一下的路径,根目录是svnserver启动时指定好的,上述实例中我们指定 为:/data/svndata([/]=/data/svndata).[/]就是表示对全部版本设置的权限
[ztjy:/],表示对版本库ztjy设置权限;
[ztjy:/svnadmin],表示对版本库ztjy中的svnadmin项目设置权限;
[ztjy:/svnadmin/second],表示对版本库ztjy中的svnadmin项目的目录设置权限;
权限的主体可以是用户组,用户或者,用户组在前面要以@开头,表示全部用户
权限分为:r ,w, rw和null ,null空表示没有任何权限。
auhtz配置文件中的每个参数,开头不能有空格,对于组要以@开头,用户不需要。
启动svn服务
/usr/bin/svnserve -d -r /data/svndata/ --listen-port 9984 --log-file /data/logs/svn/svn.log --pid-file /data/logs/svn/svn.pid &
