How to reset svn password by svn user ?

[Mohsin]

Hi SVN Experts,

Hope all of you are doing well. I have one question we are running svn
server on linux environment and using Tortoise svn as a client now question
is can user have option to change his/her password of svn account or just
administrator can reset password for user ?


Cheers
Mohsin



--
View this message in context: http://subversion.1072662.n5.nabble.com/How-to-reset-svn-password-by-svn-user-tp192347.html
Sent from the Subversion Users mailing list archive at Nabble.com.

[Branko Čibej]

On 05.03.2015 03:18, Mohsin wrote:
> Hi SVN Experts,
>
> Hope all of you are doing well. I have one question we are running svn
> server on linux environment and using Tortoise svn as a client now question
> is can user have option to change his/her password of svn account or just
> administrator can reset password for user ?

Subversion itself can't change the password. Whether the user can change
it (outside of Subversion) depends on the authentication method you're
using, and that's defined by the server, not the client.

-- Brane

[Mohsin]

>Subversion itself can't change the password. Whether the user can change
>it (outside of Subversion) depends on the authentication method you're
>using, and that's defined by the server, not the client.

If some user want to change his/her password how can he /she change password
of account ?



Mohsin



--
View this message in context: http://subversion.1072662.n5.nabble.com/How-to-reset-svn-password-by-svn-user-tp192347p192349.html

[Mark Phippard]

On Mar 4, 2015, at 9:36 PM, Mohsin <mohsin...@gmail.com> wrote:

>> Subversion itself can't change the password. Whether the user can change
>> it (outside of Subversion) depends on the authentication method you're
>> using, and that's defined by the server, not the client.
>
> If some user want to change his/her password how can he /she change password
> of account ?
>

Well, as an example, if your Subversion server is setup to authenticate via Active Directory the user would change their windows password. If it is setup to authenticate against a text file with names and passwords, then someone has to edit the text file.

It depends on the authentication method you are using.

Mark

[Mohsin]

>Well, as an example, if your Subversion server is setup to authenticate via
Active Directory the user would >change their windows password. If it is
setup to authenticate against a text file with names and passwords, >then
someone has to edit the text file.
>
>It depends on the authentication method you are using.

We have configured svn with Apache web server (mod_dav,mod_dav_svn) and
using DAV method for repository access.


Moshin



--
View this message in context: http://subversion.1072662.n5.nabble.com/How-to-reset-svn-password-by-svn-user-tp192347p192351.html

[Cooke, Mark]

> >Well, as an example, if your Subversion server is setup to authenticate via
> Active Directory the user would >change their windows password. If it is
> setup to authenticate against a text file with names and passwords, >then
> someone has to edit the text file.
> >
> >It depends on the authentication method you are using.
>

> -----Original Message-----
> From: Mohsin [mailto:mohsin...@gmail.com]
> Sent: 05 March 2015 02:49
>
> We have configured svn with Apache web server (mod_dav,mod_dav_svn) and
> using DAV method for repository access.
>
> Moshin

This is not a subversion question... but we do try to be helpful round here. Please do read the answers you are given and if you do not understand, ask (rather than guess and hope). Neither mod_dav nor mod_dav_svn are involved in passwords.

Ok, so you are using apache httpd. Apache deals with user _authentication_ (who you are) whilst subversion optionally deals with _authorisation_ (what you are allowed to do). Usernames and passwords are one way of proving who you are, so this is part of _authentication_.

So, again, it depends on how you have configured _authentication_. Read the httpd docs:-

http://httpd.apache.org/docs/2.2/howto/auth.html (for version 2.2)

http://httpd.apache.org/docs/2.4/howto/auth.html (for version 2.4)

...and then you can tell us which authentication method you are using and on which platform (and version) and hopefully someone will be able to help you.

~ mark c

[Andreas Stieger]

Am 05.03.2015 03:48 schrieb Mohsin <mohsin...@gmail.com>:
>
> >Well, as an example, if your Subversion server is setup to authenticate via
> Active Directory the user would >change their windows password.  If it is
> setup to authenticate against a text file with names and passwords, >then
> someone has to edit the text file.
> >
> >It depends on the authentication method you are using.
>
>

> We have configured svn with Apache web server (mod_dav,mod_dav_svn) and
> using DAV method for repository access.

Refer to the documentation for httpd auth module you are using. You change the password the same way as you created it. This is usually named htpasswd, htpasswd2 or similar.

How to make this user self-servicable is out of scope for Subversion as it uses common and adaptable auth methods, including directory services.

Andreas

[Nico Kadel-Garcia]

Talk to your mod_dav hosting provider. There are a *gazillion* ways to
authenticate Subversion on mod_dav, many of which are grotesquely
insecure. I wonder if your provider might benefit from hopping up here
and asking some security questions if they don't already know? I'd
actually consider "securiing a Subversion service" to be on topic.

[Mohsin]

>Ok, so you are using apache httpd. Apache deals with user _authentication_
(who you are) whilst >subversion optionally deals with _authorisation_ (what
you are allowed to do). Usernames and passwords >are one way of proving who
you are, so this is part of _authentication_.
>
>So, again, it depends on how you have configured _authentication_. Read
the httpd docs:-
>
>http://httpd.apache.org/docs/2.2/howto/auth.html (for version 2.2)
>
>http://httpd.apache.org/docs/2.4/howto/auth.html (for version 2.4)
>
>...and then you can tell us which authentication method you are using and
on which platform (and >version) and hopefully someone will be able to help
you.

Thanks. Here is information which we using in our environment:

Authentication type:
mod_auth_basic

Authentication provider :
mod_authn_file

Authorization :
mod_authz_user (Require valid-user)

Subversion Version : 1.8.10


Mohsin



--
View this message in context: http://subversion.1072662.n5.nabble.com/How-to-reset-svn-password-by-svn-user-tp192347p192365.html

[Mohsin]

>Refer to the documentation for httpd auth module you are using. You change
the password the same way >as you created it. This is usually named
htpasswd, htpasswd2 or similar.
>
>How to make this user self-servicable is out of scope for Subversion as it
uses common and adaptable >auth methods, including directory services.

Basically you are trying to say user can't change password by his own ? This
is out of scope of Subversion ?


Mohsin



--
View this message in context: http://subversion.1072662.n5.nabble.com/How-to-reset-svn-password-by-svn-user-tp192347p192366.html

[jbl...@icloud.com]

> On Mar 5, 2015, at 10:07 AM, Mohsin <mohsin...@gmail.com> wrote:
>
>> Refer to the documentation for httpd auth module you are using. You change
> the password the same way >as you created it. This is usually named
> htpasswd, htpasswd2 or similar.
>>
>> How to make this user self-servicable is out of scope for Subversion as it
> uses common and adaptable >auth methods, including directory services.
>
> Basically you are trying to say user can't change password by his own ? This
> is out of scope of Subversion ?
>

Yes. There is no password change protocol as part of SubVersion. If you are using Apache as your http SubVersion access method, you can look to Submin to provide this sort of user management. Identity management and access control are really not within the scope of source code management.

http://supermind.nl/submin/

[Mohsin Abbas]

Thanks.

That's make sense. Can you guide me how can i configure submin with apache for subversion ? Submin is open source or paid ?  

Mohsn

[Andreas Stieger]

Am 05.03.2015 18:07 schrieb Mohsin <mohsin...@gmail.com>:
>
> >Refer to the documentation for httpd auth module you are using. You change
> the password the same way >as you created it. This is usually named
> htpasswd, htpasswd2 or similar.
> >
> >How to make this user self-servicable is out of scope for Subversion as it
> uses common and adaptable >auth methods, including directory services.
>
> Basically you are trying to say user can't change password by his own ? This
> is out of scope of  Subversion ?

No, but I might at this point note that you /basically/ were unable to grasp that authentication in mod_dav_svn is delegated to Apache httpd. In this case, there simply is no such thing as a "Subversion password", only one for httpd.

And for self-service password changes Subversion does not care how you do it. But it will be a feature of one of the many httpd auth methods and modules, not mod_dav_svn. You were given several pointers, but without grasping the separation that may not help you.

Andreas