centos7下安装svn并配置apache

摘要：安装和必要模块创建项目并配置创建仓库用户和组是安装自动创建的配置文件账号权限增加仓库根目录的用户权限配置，可直接启动服务配置和模块修改的默认端

</>复制代码 
yum install -y httpd subversion mod_dav_svn

</>复制代码 
mkdir -p /web/svn/myrepo
#apache用户和组是安装httpd 自动创建的
chown -R apache:apache /web/svn/myrepo
svnadmin create /web/svn/myrepo

</>复制代码 
### This file is an example password file for svnserve.
### Its format is similar to that of svnserve.conf. As shown in the
### example below it contains one section labelled [users].
### The name and password for each user follow, one account per line.
[users]
# harry = harryssecret
# sally = sallyssecret
qikailin = x12345678
test = t12345678

</>复制代码 
### This file is an example authorization file for svnserve.
### Its format is identical to that of mod_authz_svn authorization
### files.
### As shown below each section defines authorizations for the path and
### (optional) repository specified by the section name.
### The authorizations follow. An authorization line can refer to:
###  - a single user,
###  - a group of users defined in a special [groups] section,
###  - an alias defined in a special [aliases] section,
###  - all authenticated users, using the "$authenticated" token,
###  - only anonymous users, using the "$anonymous" token,
###  - anyone, using the "*" wildcard.
###
### A match can be inverted by prefixing the rule with "~". Rules can
### grant read ("r") access, read-write ("rw") access, or no access
### ("").
[aliases]
# joe = /C=XZ/ST=Dessert/L=Snake City/O=Snake Oil, Ltd./OU=Research Institute/CN=Joe Average
[groups]
# harry_and_sally = harry,sally
# harry_sally_and_joe = harry,sally,&joe
# [/foo/bar]
# harry = rw
# &joe = r
# * =
#增加仓库根目录的用户权限
[/]
qikailin = rw
test = rw
# [repository:/baz/fuz]
# @harry_and_sally = rw
# * = r

</>复制代码 
### This file controls the configuration of the svnserve daemon, if you
### use it to allow access to this repository.  (If you only allow
### access through http: and/or file: URLs, then this file is
### irrelevant.)
### Visit http://subversion.apache.org/ for more information.
[general]
### The anon-access and auth-access options control access to the
### repository for unauthenticated (a.k.a. anonymous) users and
### authenticated users, respectively.
### Valid values are "write", "read", and "none".
### Setting the value to "none" prohibits both reading and writing;
### "read" allows read-only access, and "write" allows complete
### read/write access to the repository.
### The sample settings below are the defaults and specify that anonymous
### users have read-only access to the repository, while authenticated
### users have read and write access to the repository.
anon-access = none
auth-access = write
### The password-db option controls the location of the password
### database file.  Unless you specify a path starting with a /,
### the file"s location is relative to the directory containing
### this configuration file.
### If SASL is enabled (see below), this file will NOT be used.
### Uncomment the line below to use the default password file.
password-db = passwd
### The authz-db option controls the location of the authorization
### rules for path-based access control.  Unless you specify a path
### starting with a /, the file"s location is relative to the the
### directory containing this file.  If you don"t specify an
### authz-db, no path-based access control is done.
### Uncomment the line below to use the default authorization file.
authz-db = authz
### This option specifies the authentication realm of the repository.
### If two repositories have the same authentication realm, they should
### have the same password database, and vice versa.  The default realm
### is repository"s uuid.
realm = /web/svn/myrepo
### The force-username-case option causes svnserve to case-normalize
### usernames before comparing them against the authorization rules in the
### authz-db file configured above.  Valid values are "upper" (to upper-
### case the usernames), "lower" (to lowercase the usernames), and
### "none" (to compare usernames as-is without case conversion, which
### is the default behavior).
# force-username-case = none
[sasl]
### This option specifies whether you want to use the Cyrus SASL
### library for authentication. Default is false.
### This section will be ignored if svnserve is not built with Cyrus
### SASL support; to check, run "svnserve --version" and look for a line
### reading "Cyrus SASL authentication is available."
# use-sasl = true
### These options specify the desired strength of the security layer
### that you want SASL to provide. 0 means no encryption, 1 means
### integrity-checking only, values larger than 1 are correlated
### to the effective key length for encryption (e.g. 128 means 128-bit
### encryption). The values below are the defaults.
# min-encryption = 0
# max-encryption = 256

</>复制代码 
/usr/bin/svnserve -d --listen-port 3690 -r /web/svn/myrepo--log-file=/web/svn/myrepo/myrepo.log --pid-file=/web/svn/myrepo/myrepo.pid

</>复制代码 
vim /etc/httpd/conf/httpd.conf
#修改
Listen 80 -> Listen 8090

</>复制代码 
vim /etc/httpd/conf.d/subversion.conf

</>复制代码 
#LoadModule dav_fs /usr/lib64/httpd/modules/mod_dav_fs.so
#LoadModule dav_module /usr/lib64/httpd/modules/mod_dav.so
#LoadModule dav_svn_module /usr/lib64/httpd/modules/mod_dav_svn.so
#LoadModule authz_svn_module /usr/lib64/httpd/modules/mod_authz_svn.so
IncludeOptional /etc/httpd/conf.modules.d/00-base.conf
IncludeOptional /etc/httpd/conf.modules.d/00-dav.conf
IncludeOptional /etc/httpd/conf.modules.d/10-subversion.conf
    DAV svn
    AuthType Basic
    AuthName "DAV SVN"
    AuthUserFile /web/svn/.hd_myrepo_svnpasswd #配置授权文件
    Require valid-user
    SVNPath /web/svn/myrepo #你的svn的仓库目录

</>复制代码 
#qklin 你要创建的用户名，需要输入两次密码
#注意这里-cm 第一次需要有c参数，后续增加用户可以不带c
htpasswd -cm /web/svn/.hd_myrepo_svnpasswd qklin

</>复制代码 
#添加8090 （--permanent永久生效，没有此参数重启后失效）
firewall-cmd --zone=public --add-port=8090/tcp --permanent    
#重新载入
firewall-cmd --reload
#查看
firewall-cmd --zone= public --query-port=8090/tcp
#删除
firewall-cmd --zone= public --remove-port=8090/tcp --permanent
#查看所有打开的端口
firewall-cmd --zone=public --list-ports

</>复制代码 
systemctl enable httpd.service
systemctl start httpd