centos7安装部署SVN

 

SVN介绍

• SVN是个自由、开源的版本控制系统，绝大多数开源软件都使用SVN作为代码版本管理软件。

• SVN的官方网站http://subversion.apache.org/。目前SVN在开源社区中非常流行的一款版本控制软件，它是CVS的替代产物。

SVN服务端安装

部署规划

系统版本	系统配置	IP地址	端口号	SVN版本	SVN数据目录	SVN日志目录	SVN配置文件目录
CentOS Linux release 7.2.1511				1.7.14	/data/svndata/	/data/logs/svn/	/data/svndata/ztjy/conf

安装部署

YUM安装SVN

yum install httpd httpd-devel subversion mod_dav_svn mod_auth_mysql -y

创建相关目录

创建svn数据目录

mkdir -p /data/svndata/

新建ztjy仓库

svnadmin create /data/svndata/ztjy
​
 
[root@localhost svn]$ ls -al  /data/svndata/ztjy       #查看创建的仓库目录 
total 24
drwxr-xr-x. 2 root root 4096 Feb 28 18:12 conf
drwxr-sr-x. 6 root root 4096 Feb 28 18:12 db
-r--r--r--. 1 root root    2 Feb 28 18:12 format
drwxr-xr-x. 2 root root 4096 Feb 28 18:12 hooks
drwxr-xr-x. 2 root root 4096 Feb 28 18:12 locks
-rw-r--r--. 1 root root  229 Feb 28 18:12 README.txt

• 仓库目录说明:

  hooks目录：放置hook脚步文件的目录
  ​
  locks目录：用来放置subversion的db锁文件和db_logs锁文件的目录，用来追踪存取文件库的客户端
  ​
  format目录：是一个文本文件，里边只放了一个整数，表示当前文件库配置的版本号
  ​
  conf目录：是这个仓库配置文件（仓库用户访问账户，权限）
  ​
  db目录:仓库数据目录

修改相关配置文件

配置SVN服务的配置文件svnserver.conf

​
[root@localhost conf]# vim svnserve.conf 
### This file controls the configuration of the svnserve daemon, if you
### use it to allow access to this repository.  (If you only allow
### access through http: and/or file: URLs, then this file is
### irrelevant.)
### Visit http://subversion.tigris.org/ for more information.
[general]
### These options control access to the repository for unauthenticated
### and authenticated users.  Valid values are "write", "read",
### and "none".  The sample settings below are the defaults.
anon-access = read         ##注意前边不要有空格，要顶齐
auth-access = write         ##注意前边不要有空格，要顶齐
### The password-db option controls the location of the password
### database file.  Unless you specify a path starting with a /,
### the file's location is relative to the directory containing
### this configuration file.
### If SASL is enabled (see below), this file will NOT be used.
### Uncomment the line below to use the default password file.
password-db = passwd        ##注意前边不要有空格，要顶齐
### The authz-db option controls the location of the authorization
### rules for path-based access control.  Unless you specify a path
### starting with a /, the file's location is relative to the the
### directory containing this file.  If you don't specify an
### authz-db, no path-based access control is done.
### Uncomment the line below to use the default authorization file.
authz-db = authz           
### This option specifies the authentication realm of the repository.
### If two repositories have the same authentication realm, they should
### have the same password database, and vice versa.  The default realm
### is repository's uuid.
realm = ztjy   ##这个是提示信息
[sasl]
### This option specifies whether you want to use the Cyrus SASL
### library for authentication. Default is false.
### This section will be ignored if svnserve is not built with Cyrus
### SASL support; to check, run 'svnserve --version' and look for a line
### reading 'Cyrus SASL authentication is available.'
# use-sasl = true
### These options specify the desired strength of the security layer
### that you want SASL to provide. 0 means no encryption, 1 means
### integrity-checking only, values larger than 1 are correlated
### to the effective key length for encryption (e.g. 128 means 128-bit
### encryption). The values below are the defaults.
# min-encryption = 0
# max-encryption = 256
​

配置访问用户及密码

​
[root@localhost conf]# vim passwd 
### This file is an example password file for svnserve.
### Its format is similar to that of svnserve.conf. As shown in the
### example below it contains one section labelled [users].
### The name and password for each user follow, one account per line.
[users]
awk = abc123456   # 切记'='两边的空格   密码建议设置复杂密码
sed = 123456
grep = 654321
​

配置新用户的授权文件

​
[root@localhost conf]# vim authz     
### This file is an example authorization file for svnserve.
### Its format is identical to that of mod_authz_svn authorization
### files.
### As shown below each section defines authorizations for the path and
### (optional) repository specified by the section name.
### The authorizations follow. An authorization line can refer to:
###  - a single user,
###  - a group of users defined in a special [groups] section,
###  - an alias defined in a special [aliases] section,
###  - all authenticated users, using the '$authenticated' token,
###  - only anonymous users, using the '$anonymous' token,
###  - anyone, using the '*' wildcard.
###
### A match can be inverted by prefixing the rule with '~'. Rules can
### grant read ('r') access, read-write ('rw') access, or no access
### ('').
[aliases]
[groups]
admin = awk,sed  #创建admin组，组成员为：awk,sed
user = grep     #  创建用户组，用户成员：grep
[ztjy:/]     #赋予根权限，为了便于管理和权限的控制，可以把权限细化到版本库中相应的目录
@admin = rw     ##授予admin组内用户可读可写的权限
@user = r       ## 授予user组用户只读的权限
* = r           ##授予其他的用户和用户组只读权限
​

书写注意事项

• [/],表示根目录及其一下的路径，根目录是svnserver启动时指定好的，上述实例中我们指定 为:/data/svndata([/]=/data/svndata).[/]就是表示对全部版本设置的权限

• [ztjy:/],表示对版本库ztjy设置权限；

• [ztjy:/svnadmin],表示对版本库ztjy中的svnadmin项目设置权限；

• [ztjy:/svnadmin/second],表示对版本库ztjy中的svnadmin项目的目录设置权限；

• 权限的主体可以是用户组，用户或者，用户组在前面要以@开头，表示全部用户

• 权限分为：r ,w, rw和null ,null空表示没有任何权限。

• auhtz配置文件中的每个参数，开头不能有空格，对于组要以@开头，用户不需要。

启动svn服务

/usr/bin/svnserve -d -r /data/svndata/ --listen-port 9984 --log-file /data/logs/svn/svn.log --pid-file /data/logs/svn/svn.pid  &
​