Private Certificates for using SVN over HTTPS

[mrpackethead]

 Being very keen to get Version control going ( and please Altium, SVN is about 3 years behind Git, but anyway thats a different rant ),  I set up a SVN server.   Because we all work remotely, and SVN over SSH means keys and stuff,  I really wanted to use HTTPS..

Seems that you can't use private no signed certificates.. Doesn't even prompt you to allow you.

I'm going to see if i can install private certificates, hopefully its using the system stuff, and not something proprietary to Altium,

[mrpackethead]

If you install the cert, via your web browser it will work.

However, other stuff breaks.

[jeremy]

Perhaps try using the open source svn command line utility? That way you can ensure the ssl stuff is set up properly.

Another option could be to VPN to the server and just have a plain http server running on localhost only. Vpns are well supported on the OS level nowadays

[miguelvp]

Being very keen to get Version control going ( and please Altium, SVN is about 3 years behind Git, but anyway thats a different rant ),  I set up a SVN server.   Because we all work remotely, and SVN over SSH means keys and stuff,  I really wanted to use HTTPS..

Seems that you can't use private no signed certificates.. Doesn't even prompt you to allow you.

I'm going to see if i can install private certificates, hopefully its using the system stuff, and not something proprietary to Altium,

I don't see why jumping into what is current will make it better, also https will use ssl as well (well tls now but same difference)
On certificates, when the program process the certificate to validate it, the programmer can ignore different parameters like the time issued and expiration, common names and among those there is a ignore CA (certificate authority) This is what self-signed certificates do.

So if they programmed it to respect the CA so that the system knows it's that the data is really coming from and going to the right server, so if someone redirected you to another server to steal your data the handshake will fail (man in the middle attack). So they are really providing you with security so no external entity can steal your data.

So you might need to get a valid certificate from VeriSign or your preferred CA. Hmm seems like VeriSign was bought by Symantec.

Edit: or maybe there is a way to disable to check for the CA within SVN, not sure.

Edit: maybe this link will help
http://www.microhowto.info/howto/configure_subversion_to_trust_a_given_ssl_certificate.html

[mrpackethead]

Certificate issue is resolved.. You don't need to use a CA signed cert, you can use a self signed one.

Browse to the URL of the site with Internet Exploder running as administrator  ( https://yoursite.com ), you'll get a certificate error.    Click on the certificate and you'll be able to install it as a CA.      Once you've done that,  Altium ( which obviously is using some OS stuff rather than its own code, forutatly ), will trust that cert.     

My SVN server is running on Linux, Apache and SVN.. I had to create a new certificate for it, this is so the certificate name matches the host name.  All those things are easy.

However.. Now i've got a new problem, and its not authenticating properly..      Using SVN from the command line, it all works just fine... but that kind of defeats the purpose, of doing this..

Theres virtually no references in google to using SVN and Altium.

[mrpackethead]

Oh, i've tried using both the suppled SVN, and using tortoise SVN.    My Server is running subversion 1.8.9