subversion on 12.04 Returns 500 Internal Server Error

Assuming the document roots and access rights are correct:

...
   RedirectMatch ^/(.*)$ https://s01svn02.sencore.com/$1
</VirtualHost>

<VirtualHost *:443>
   ServerName code.sencore.com
...

The https server name is not s01svn02.sencore.com but code.sencore.com?

Could you also check if ldap://ldap.sencore.com:389/ is accessible from the machine itself?

Also, the logs from apache might give some more insight.

Chris

ldap.sencore.com is accessible from the machine. When I have those options enabled it does prompt me for a username and password and if I type in an incorrect password it does not accept the credentials, but when I type in the correct credentials I receive this error. I have checked the apache logs and there is nothing in there.

Thanks

Jim

We do not use LDAP here, only DAV as svn interface:

    <Location /svn>
        DAV svn
        SVNParentPath /var/svn

        Order Deny,Allow
        Allow from All

        AuthType Basic
        AuthName "Subversion Repository"
        AuthUserFile /etc/apache2/svn.passwd
        Require valid-user
    </Location>

The AuthUserFile contains the users in following form:

name:passwordhash
name:passwordhash
name:passwordhash

For your situation: i'm not too experienced with LDAP but I wonder if the password file (AuthUserFile) is needed when using LDAP.

Assuming the authentication succeeds, is the AuthzSVNAccessFile /var/svnrepos/svn-access-policy.txt readable for www-data? Because this will most likely be the next step after retrieving the user details.

Maybe ErrorLog and ErrorLevel can be raised more in the apache config?

Chris

We have this configuration working on 10.04 and I am not seeing this issue. Yes the file is readable to www-data
-rw-rwSr-- 1 www-data www-data 5871 Mar 28 16:44 svn-access-policy.txt
I am thinking it has something to do with the svn-access-policy.txt file but I am unsure what could be wrong. We also have tried the ErrorLog and ErrorLevel and we were still unable to see anything in the apache log files.

Thanks

Jim

So I tried just commenting the svn-access-policy.txt file and it still works. So it has to be an issue with accessing this file. Here is my config file currently.
     AuthType Basic
     AuthName "Subversion"
     AuthBasicProvider ldap
     AuthLDAPURL ldap://ldap.sencore.com:389/DC=sencore,DC=com?sAMAccountName?sub?(objectClass=*)
     AuthLDAPBindDN "CN=svnreader,DC=sencore,DC=com"
     AuthLDAPBindPassword sen0130

# AuthzSVNAccessFile /var/svnrepos/svn-access-policy.txt
# AuthUserFile /var/svnrepos/svn-auth-file.txt
# Require valid-user
     Allow from all
   </Location>

Could you try to sudo su - www-data and cat the file, just to make sure?

Also, the repository files themselves should be accessible to www-data.

Have you defined any groups in the svn-access-policy files? I remember to see this post (on active directory but the rest should be the same:

http://www.jejik.com/articles/2007/06/apache_and_subversion_authentication_with_microsoft_active_directory/

Chris

PS: I have the feeling I am only asking for the obvious. As it seems you have been quite thorough on this matter already :-)

(btw: I would change the password on ldap asap, the password is still in the previous post?)

This is just a test servers anyways. No harm but thanks for the warning.

I did try the following sudo su - www-data and cat the file and that was successful. I have tried taking myself out from the file and I do get access denied like I would expect. So it seems like it is reading the file. Just something is getting broken after that.

So either: the way you specified your name in the file is not (entirely) correct or the access to the svn repos is different using the ldap credentials?

I'm all out of ideas!

Chris

Active Directory can be a nasty thing :)

Glad to see it has been resolved!

Chris

Thanks opello, that solved my question.