需求:apache+svn已部署完成,现在需要实现只允许https加密方式访问svn
1.生成证书
yum -y install mod_ssl //生成证书
openssl genrsa -out ca.key 2048
openssl req -new -key ca.key -out ca.csr
openssl x509 -req -days 36500 -in ca.csr -signkey ca.key -out ca.crt
cp -rf ca.crt /etc/pki/tls/certs/ //复制到服务器对应位置
cp ca.key /etc/pki/tls/private/
cp ca.csr /etc/pki/tls/private/
2.apache配置
vi /etc/httpd/conf.d/ssl.conf 配置文件修改如下:
<VirtualHost _default_:443>
SSLCertificateFile /etc/pki/tls/certs/ca.crt
SSLCertificateKeyFile /etc/pki/tls/private/ca.key
vi /etc/httpd/conf.d/subversion.conf (只设置svn使用https访问,不允许http访问访问)
.........
# Authorization: Authenticated users only
Require valid-user
# 添加下面这行
SSLRequireSSL ###添加一行
</Location>
systemctl restart httpd
https安装完成
#####参考网址:https://blog.csdn.net/yuanyk1222/article/details/84256727
3.测试访问
浏览器https://ip/svn/test
用户:admin/123456