0
我想通過apache在Windows服務器上設置git。我正在使用msysgit版本1.7.7.1-preview20111027。我已經完成了大部分工作,但是推動HTTP和通過Active Directory進行身份驗證是一個問題。Active Directory LDAP身份驗證Git Windows Server 2008
這裏是我的httpd.conf:
與ltDirectory />
&NBSP&NBSP和從所有
&LT /目錄>
&ltDirectoryÇNBSP&nbspAllow:/ GitRepos>
&NBSP&NBSP&NBSP&nbspAuthName 「Git倉庫」
&NBSP&NBSP&NBSP&nbspAuthType基本
&nbsp&nbsp&nbspAuthBasicProvider ldap
&nbsp&nbsp&nbspAuthzLDAPAuthorit ative上
&NBSP&NBSP&NBSP&nbspAuthLDAPUrl LDAP:???//服務器/ DC =域,DC = COM sAMAccountName賦子(objectClass的= *)
&NBSP&NBSP&NBSP&nbspAuthLDAPBindDN 「CN =用戶,OU = someunit,DC =域,DC = COM」
&NBSP&NBSP&NBSP&nbspAuthLDAPBindPassword密碼
&NBSP&NBSP&NBSP&nbspAuthLDAPGroupAttributeIsDN關閉
&NBSP&NBSP&NBSP&nbspAuthLDAPGroupAttribute構件
&NBSP&NBSP&NBSP&nbspRequire LDAP的組CN =廣告組,OU = 1單元,OU = UNIT2,DC =域,DC = COM
&NBSP&NBSP&NBSP&nbspSatisfy任何
&LT /目錄>
SETENV GIT_PROJECT_ROOT C:/ GitRepos
SETENV GIT_HTTP_EXPORT_ALL
#SETENV REMOTE_USER $ REDIRECT_REMOTE_USER
ScriptAliasMatch \
&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP「^ /(* /(HEAD |(X?)。 \
&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbsp&nbspinfo/refs | \
&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&nbspobjects /(方式/ [^ /] + | \
&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP [0-9A-F] {2}/[0-9A-F] {38} | \
&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&nbsppack/PACK- [O- 9a-f] {40} \。(pack | idx))| \
&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&nbspgit-(上傳|接收)單一包裝))$」 \
&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP&NBSP 「C:/ Program Files文件(x86)的/git/libexec/git-core/git-http-backend.exe/$1」
&ltLocationMatch 「^/* /混帳接收包$」>
&NBSP&NBSP&NBSP&nbspAuthName 「Git倉庫」
&NBSP&NBSP&NBSP&nbspAuthType基本
&NBSP&NBSP&NBSP&nbspAuthBasicProvider LDAP
&NBSP&NBSP&NBSP&nbspAuthzLDAPAuthoritative上
&NBSP&NBSP&NBSP&N bspAuthLDAPUrl ldap:// server/DC = domain,DC = com?sAMAccountName?sub?(objectClass的= *)
&NBSP&NBSP&NBSP&nbspAuthLDAPBindDN 「CN =用戶,OU = someunit,DC =域,DC = COM」
&NBSP&NBSP&NBSP&nbspAuthLDAPBindPassword密碼
&NBSP&NBSP&NBSP&nbspAuthLDAPGroupAttributeIsDN關閉
&NBSP&NBSP&NBSP&nbspAuthLDAPGroupAttribute構件
&NBSP&NBSP&NBSP&nbspRequire LDAP的組CN =廣告組,OU = 1單元,OU = 1單元,DC =域,DC = COM
&NBSP&NBSP&NBSP&nbspSatisfy任何
&LT/LocationMatch>
如果我去掉:
#SETENV REMOTE_ USER $ REDIRECT_REMOTE_USER我可以推送http,但用戶可以輸入任何內容以獲取密碼,並且ldap授權不會將存儲庫限制爲只有一個Active Directory組。
是我的設置不正確的?