apache auth: combination of LDAP and htpasswd

apache-2.2 svn authentication ldap
11,146

Solution 1

try this:

AuthType Basic
AuthName "LDAP and file
AuthBasicProvider file ldap
AuthUserFile /path/to/htpassword/file
AuthLDAPBindDN <your bind dn>
AuthLDAPBindPassword <your password>
AuthLDAPURL "<your ldap url>"
AuthzLDAPAuthoritative off
Require valid-user
Satisfy any

Perhaps you switch AuthBasicProvider file ldap to AuthBasicProvider ldap file, depending on where you want to search first.

Solution 2

If you also need to check for the user being in a specific LDAP-group, you can use the following:

AuthType Basic
AuthName "LDAP and file"
AuthBasicProvider file ldap
AuthUserFile /path/to/htpassword/file
AuthLDAPBindDN <your bind dn>
AuthLDAPBindPassword <your password>
AuthLDAPURL "<your ldap url>"
AuthzLDAPAuthoritative off

AuthLDAPGroupAttributeIsDN off
AuthLDAPGroupAttribute memberUid
Require valid-user
Require ldap-group cn=svn,cn=groups,dc=ldapsvr,dc=example,dc=com
Share:
11,146

Related videos on Youtube

noamtm
Author by

noamtm

Senior Software Engineer. Tech Lead at Kaltura.

Updated on September 17, 2022

Comments

  • noamtm
    noamtm over 1 year

    We're using Apache with mod_svn to serve the subversion repo. Apache is hooked to an LDAP server so all users can use their domain passwords. For the build machine to be able to checkout, I want to have an extra user, but I can't add via LDAP.

    Can I create a setup where the user/pwd has to match either the LDAP server or an htpasswd file?

  • Keith
    Keith about 6 years
    FWIW, "Satisfy any" in the conf resulted in no auth at all, when I tried it. Removing "Satisfy any" yields expected/desired results, though.
  • mveroone
    mveroone over 5 years
    (I know this is 5 years old but it seems wrong) As per the documentation, all Require directoves are considered to be part of a RequireAny block if not in a block. Using this, your Require ldap-group is ignored

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How avoid to write the password in the configuration file of SVN?
SVN + SASL + ActiveDirectory: How to
How to direct Apache Basic authentication over SSL?
Apache 500 error with no entries in error.log
LDAP authentication apache 2.2
LDAP Authentication fails with 500 or 401 depending on bind for Apache2
Apache 2.4 + SVN authz authentication with mixed authenticated/anonymous access
Authenticating Apache HTTPd against multiple LDAP servers with expired accounts
can't figure out why apache LDAP auth fails
Apache LDAP Authentication: Can I bind the user without searching for the DN first?