Sunday, May 20, 2012

SVN - Permission Denied


I have set up a Linux Server and installed Apache and SVN and dav_svn on it. Now, when I try to upload to https://x.x.x.x:x/svn/repo with Tortoise SVN I get



Can't open file '/server/svn/repo/db/txn-current-lock': Permission denied



I have Set up my SSL correctly (I can checkout, no problems, even remotely due to Port Forwarding).



I'm guessing this has to do with the Linux Ownership of the Repository folders, How must I set this/ what are the commands? I'm using Ubuntu 9.04 Server + Apache2.


Source: Tips4all
Post by On
Tags , , ,

6 comments:

  1. UserMay 20, 2012 at 7:32 PM

    This is a common problem. You're almost certainly running into permissions issues. To solve it, make sure that the apache user has read/write access to your entire repository. To do that, chown -R apache:apache *, chmod -R 664 * for everything under your svn repository.

    Also, see here and here if you're still stuck.



    Update to answer OP's additional question in comments:

    The "664" string is an octal (base 8) representation of the permissions. There are three digits here, representing permissions for the owner, group, and everyone else (sometimes called "world"), respectively, for that file or directory.

    Notice that each base 8 digit can be represented with 3 bits (000 for '0' through 111 for '7'). Each bit means something:


    first bit: read permissions
    second bit: write permissions
    third bit: execute permissions


    For example, 764 on a file would mean that:


    the owner (first digit) has read/write/execute (7) permission
    the group (second digit) has read/execute (6) permission
    everyone else (third digit) has read (4) permission


    Hope that clears things up!

    ReplyDelete
  2. UserMay 20, 2012 at 7:32 PM

    It's permission problem. But not "clasic" read/write permissions of apache user, but selinux one.

    Apache cannot write to files labeled as httpd_sys_content_t they can be only read by apache.

    You have 2 possibilities:


    label svn repository files as httpd_sys_content_rw_t:

    chcon -R -t httpd_sys_content_rw_t /path/to/your/svn/repo

    set selinux boolean httpd_unified --> on

    setsebool -P httpd_unified=1



    I prefer 2nd possibility. You can play also with other selinux booleans connected with httpd:

    getsebool -a | grep httpd

    ReplyDelete
  3. UserMay 20, 2012 at 7:32 PM

    Can't comment yet (not enough karma), but I wanted to correct the following line:


    the group (second digit) has read/execute write (6) permission

    ReplyDelete
  4. UserMay 20, 2012 at 7:32 PM

    Try to disable SELinux by: "/usr/sbin/setenforce 0". In my case it solved the problem.

    ReplyDelete
  5. UserMay 20, 2012 at 7:32 PM

    for example on debian

    sudo gpasswd -a svn-admin www-data
    sudo chgrp -R www-data svn/
    sudo chmod -R g=rwsx svn/

    ReplyDelete
  6. UserMay 20, 2012 at 7:32 PM

    In addition to repository permissions, /tmp must also be writeable (by all)

    ReplyDelete

Subscribe to: Post Comments (Atom)