How To Install Apache Subversion On Windows

Step by Footstep Installation Of Subversion Over Apache/SSL Authenticating through Active Directory (SSPI) December, 2007

The following is a step past step installation of Subversion over Apache and SSL authenticating through an Agile Directory server or local server accounts. BTW, I'm past no ways an Apache guru and so please leave a comment if I'm missing annihilation. And thank you to a agglomeration of people who I cant retrieve who posted info on the web that helped in compiling these steps! :)

Install the latest CollabNet Win32 distribution found here.
1. Make sure that merely the Apache (MOD_DAV_SVN) component is checked.
2. Set the Apache configuration. You can prepare an arbitrary http port for now; information technology volition change when SSL is setup. Also recollect to check the "Install Apache ... as a Windows Service" checkbox. The other two options should be fix accordingly.
Create a test repository
1. Open up a command prompt and run the following control from the CollabNet installation binder (C:\Program Files\CollabNet Subversion Server\) to create a exam repository:
  svnadmin create d:\temp\Repos\mysweetapp
Test Connectivity
1. Offset the Apache service; it should be called Apache2.
2. Browse to the test repository at http://localhost:1984/mysweetapp with a Subversion client and create a folder to verify that everything is setup correctly.
Install and Configure the SSPI module
1. Download the SSPI module from here. You will want to friction match the major and minor Apache build with the version number abaft the SSPI module version number. For case mod_auth_sspi-1.0.4- 2.0 .58.nada would be for Apache two.0 .x and mod_auth_sspi-1.0.4- 2.2 .2.aught would be for Apache 2.two .x (Thanks to Dan Switzer for pointing this out, I totally missed that!). Later on unzipping the contents if the zip, copy the mod_auth_sspi.so (In the bin folder) into the Apache modules folder (C:\Programme Files\CollabNet Subversion Server\httpd\modules).
2. Open the httpd.conf file in the Apache configuration folder (C:\Program Files\CollabNet Subversion Server\httpd\conf)
3. Add the following line to (Or uncomment information technology in) the Apache configuration file (httpd.conf) in the LoadModule section:
  LoadModule sspi_auth_module modules/mod_auth_sspi.and so
4. Add together the following settings, under "# Active Directory Auth", to the location section. Be sure to specify the SSPIDomain which can be an AD domain or the local server proper noun. If it is the local server name the local user accounts will exist used to authenticate. You can use this option if there is no AD server.
  
            DAV svn
            SVNParentPath D:/Temp/Repos
            # Active Directory Auth
            AuthName "SVN Server"
            AuthType SSPI
            SSPIAuth On
            SSPIAuthoritative On
            SSPIDomain localhost
            SSPIOfferBasic on
            Crave valid-user
5. Restart the Apache2 service later on the httpd.conf file has been saved.
6. Perform the test noted in step #3 to test connectivity, this fourth dimension logging in with a user from the domain specified to a higher place.
7. Annotation that in TortoiseSVN you can check the "Save Authentication" checkbox to avoid having to repeatedly enter your credentials:
Configure SSL
1. Create the Certificate
  1. Create an OpenSSL configuration file under the Apache bin folder (C:\Program Files\CollabNet Subversion Server\httpd\bin) called openssl.conf and gear up its contents every bit follows:
         [ v3_ca ]
         subjectKeyIdentifier = hash
         authorityKeyIdentifier = keyid:always,issuer:always
         basicConstraints = CA:true
         [ req ]
         default_bits = 1024
         default_keyfile = svnserver.fundamental
         distinguished_name = req_distinguished_name
         attributes = req_attributes
         x509_extensions = v3_ca
         string_mask = nombstr
         [ req_distinguished_name ]
         commonName = Mutual Proper noun
         commonName_default = My Server Name
         [ req_attributes ]
  2. Open a command prompt in the Apache bin folder (C:\Program Files\CollabNet Subversion Server\httpd\bin).
  3. Run the following command to generate the private cardinal and certificate asking files. Exist sure to enter the ip address or DNS proper name of the server when prompted for the common name. Also remember the laissez passer phrase you entered as it volition exist required for the following stride. This volition create a svnserver.csr and svnserver.key file in the Apache bin folder.
    openssl req -config openssl.conf -new -out svnserver.csr
  4. Remove the passphrase from the private key with the following command. Enter the passphrase you lot specified in the last step.
    openssl rsa -in svnserver.key -out svnserver.key
  5. Create the self signed certificate with the post-obit command. The following command sets the document expiration to twenty years.
    openssl x509 -in svnserver.csr -out svnserver.cert -req -signkey svnserver.cardinal -days 7300
  6. Delete the svnserver.csr in the Apache bin binder.
  7. Copy the svnserver.key and svnserver.cert from the Apache bin folder to the Apache conf folder.
2. Open the httpd.conf file in the Apache configuration folder (C:\Plan Files\CollabNet Subversion Server\httpd\conf).
3. Change the mind port to 443:
  Listen 443
4. Change the server name to include the SSL port, 443:
  ServerName localhost:443
5. Uncomment or add the load module directive for mod_ssl:
  LoadModule ssl_module modules/mod_ssl.so
6. Create or overwrite the following IfModule section so that information technology appears equally follows:
  
              SSLEngine on
              SSLRandomSeed startup   builtin
              SSLRandomSeed connect   builtin
              SSLPassPhraseDialog     builtin
              SSLSessionCache         dbm:logs/ssl_scache
              SSLSessionCacheTimeout 300
              SSLMutex                default
              SSLCertificateFile      conf\svnserver.cert
              SSLCertificateKeyFile   conf\svnserver.primal
7. Restart the Apache2 service.
8. Browse to https://localhost/mysweetapp and create a binder to exam the configuration.
9. Note that in TortoiseSVN you tin permanently take the document when this dialog appears. It is warning you lot that the issuer is not a trusted root authorisation.