CVSWEBNT - CVSWeb for Apache and Microsoft IIS on Windows

http://www.devguy.com/fp/cfgmgmt/cvs/cvswebIIS.htm

This code is based on the feature-rich cvsweb by Henner Zeller.  Modifications for IIS were incorporated by Arthur Barrett.  This distribution is based on Henner's cvsweb 1.93.  Visit the cvswebnt home to see cvswebnt in action and to check for newer versions.

Alternative - ViewCVS

• ViewCVS for Windows

Machine Requirements when running on IIS

• Windows NT4 SP4 or later, Server or Workstation, with NT4 option pack
• Windows 2000 Server or Professional with IIS 5

CVSWeb also runs on Microsoft Personal Web Server.  These instructions might not properly set up such a server, however.

Apache Installation

See here

IIS Installation

Note:  if you change the SYSTEM path, it will only take effect after a reboot.

1. Make sure to install a version of CVSNT other than builds 34-39.
2. Install IIS (on NT4, via NT Option Pack 4) on the computer that has the raw CVS repository files.  This machine is named tiger in these instructions.  You can use network shares, so the files don't necessarily have to reside on the IIS machine, but you will undoubtedly run into file access permissions hell.
3. These instructions assume that the IIS wwwroot folder is located at c:\inetpub\wwwroot.  Change these instructions to match the actual path of your wwwroot.
4. Copy all executable files from the CVSNT program files directory to a directory in your PATH
5. Extract the diff distribution to a directory in your PATH
6. If you wish to allow anonymous access,
   • Set the LockDir option and give the users IUSR_ and IWAM_ "Full control" permissions to the lock folder and its subfolders e.g., c:\locks
   • If you don't set a a locks directory, you must give the users IUSR_ and IWAM_ "Full control" permissions to all files and folders in the CVS repository
   • Give the users IUSR_ and IWAM_ "Full control" over c:\winnt\temp or where ever the system TEMP and TMP environment variables are pointing 
   • Give the users IUSR_ and IWAM_ "execute" permissions to cvs.exe and "read" permissions to the folders that it's contained in
   • Give the users IUSR_ and IWAM_ "execute" permissions to the files you extracted in step 3 (e.g., rcs.exe) and "read" permissions to the folders that it's contained in
   • Make sure the users IUSR_ and IWAM_ have at least "read" and "list contents" for all files and folders in the CVS repository
7. Install Active Perl to c:\perl
   • For Windows NT, install build 522 (warning: build 616 doesn't work properly on NT)
   • For Windows 2000 you may install a later build.  For example, build 617 seems to work fine on Windows 2000
   • You may install Perl to any folder you like, but you will have to change the paths referenced in these instructions -- you must select "custom install."
8. Install the Compress::Zlib module.  This is optional (yet recommended anyway, since it avoids running an external process) unless you have gzip.exe in your path.  If you use ActivePerl, this can be done by insalling "PPM" and running from the command line:
   ppm
install Compress::Zlib
9. Extract all files from the cvsweb distribution to c:\inetpub\wwwroot\cgi-bin\cvsweb (use folder names!)
10. Move the the folder c:\inetpub\wwwroot\cgi-bin\cvsweb\icons to c:\inetpub\wwwroot\icons
11. Copy your company logo to c:\inetpub\wwwroot\icons\apache_pb.gif 
12. Follow the instructions listed in the cvsweb readme file, which are summarized as follows.  There are more instructions in the readme, these are the basics:
    1. Set %CVSROOT folders in c:\inetpub\wwwroot\cgi-bin\cvsweb\cvsweb.conf.  You must use a local path name, you can't use :cvsnt: or :pserver: or :local:.  Use forward slashes instead of backslashes. 
%CVSROOT = (
             'Development' => 'c:/cvs/na',
             'Admin' => 'c:/cvs/admin'
);
And also change the next line which specifies the default repository name to use.
    2. Modify c:\inetpub\wwwroot\cgi-bin\cvsweb\cvsweb.conf and alter the line
       #$ENV{'PATH'} = '/usr/local/bin';
Remove the leading # and enter a semicolon-delimited list of folders that contain cvs.exe and rcs.exe (use forward slashes instead of backslashes).
$ENV{'PATH'} .= 'c:/cvsbin;c:/rcsbin';
    3. An alternative to (c) is to add the locations of cvs.exe and rcs.exe to the SYSTEM path and reboot (you must reboot for this to take effect)
    4. Modify c:\inetpub\wwwroot\cgi-bin\cvsweb\cvsweb.cgi.  Look for the line $config = early on in the file and change it to (use forward slashes instead of backslashes):
       $config = $ENV{'CVSWEB_CONFIG'} || 'c:/inetpub/wwwroot/cgi-bin/cvsweb/cvsweb.conf';
    5. As an alternative to (e), set the SYSTEM environment variable CVSWEB_CONFIG to c:/inetpub/wwwroot/cgi-bin/cvsweb/cvsweb.conf (use forward slashes!) and reboot (you must reboot for this to take effect)
13. Run Internet Services Manager
14. Right-click on Default Web Site and click Properties
15. Click "Home Directory"
16. Click the Configuration.. button
17. Click Add
    • Executable:  C:\Perl\bin\perlis.dll
    • Extension: cgi
    • Check "script engine"
    • Uncheck "check that file exists"
18. In Internet Services Manager, right-click on cgi-bin/cvsweb and select Properties
19. Under Application Settings, click the Create button
20. For "Execute Permissions", choose "Scripts and Executables"
21. For "Application Protection", select "Low (IIS Process)"
22. If you performed all the steps correctly, http://tiger/cgi-bin/cvsweb/cvsweb.cgi/ should display the root folder of the CVS repository.  If you omit the trailing slash you will get a page that says "Moved."

Authenticating Users on IIS

Instead of leaving CVSWeb and ViewCVS wide open to the public, you can have IIS authenticate users.  IIS's integration with Windows domain security makes IIS advantageous over Apache.  This method can also be used with NTFS permissions to control access to specific modules and folders.

1. This applies to CVSWeb only.  If some users have read-only file access, you must change your CVS setup to specify the LockDir option.  For example, if the repository is at c:/cvs, put the locks in c:/locks and give the users IUSR_ and IWAM_ "Full control" over the lock folder e.g., c:/locks
2. Give all CVSWeb or ViewCVS users "full" control over c:\winnt\temp
3. Run Internet Services Manager
4. Navigate to the cvsweb folder in the cgi-bin folder
5. Right-click on the cvsweb or viewcvs directory
6. Click properties
7. Click the "Directory Security" tab
8. In the Anonymous Access box, click edit
9. Un-check Anonymous
10. Check "Integrated Windows authentication" if your users are connected to the NT domain; otherwise check Basic authentication (you can check both)
11. Click OK to close all the open dialog boxes
12. If you experience problems, set the Application Protection setting for the cgi-bin/cvsweb or cgi-bin/viewcvs application is "Low (IIS Process)."
13. If you use basic authentication or if you want to protect your CVS files from packet sniffers, you should use https to encrypt data
    • Run Internet Services Manager
    • Right-click on "Default Web Site"
    • Choose Properties
    • Click the "Directory Security" tab
    • Click on the Server Certificate... button

Browsing Multiple Repositories via CVSWeb

cvsweb can work with multiple repositories as long as the web server machine has access to the raw repository files.  Refer to the documentation that ships with cvsweb.

What Does Annotate Do?

The annotate command (also in WinCVS 1.3) displays the selected revision, much like "download" does.  Annotate displays the latest version that is responsible for each line.  This feature is handy for seeing "who did what" to a particular revision. Click here for an example.

Known Issues

1. Annotate doesn't work when option is specified
   
   This is a known issue if you have the LockDir option specified as part of your CVS repository configuration.  This may be fixed in the latest version of cvswebnt.

Troubleshooting (IIS)

1. If you experience problems, set the Application Protection setting for the application in cgi-bin to "Low (IIS Process)"
2. Error: Failed to spawn GNU rlog
   
   Change the application protection setting to "Low (IIS Process)" -- see above.  After doing this you may still have this problem because, as far I know, rlog doesn't work with filenames that contain spaces.  If this continues to be a problem, copy all of the RCS executables to c:/winnt/system32.
3. Problems authenticating users in IIS If "anonymous" is turned off, all users need permissions to "log on" to the IIS server.

   Go to Start/ Programs/ AdministrativeTools/ LocalSecurityPolicy
   
   Open the item:
   
   LocalPolicies/ UserRightsAssignment/ AccessThisComputerFromTheNetwork

   Make sure that the checkboxes are filled in both for the 'Local Policy Setting' and 'Effective Policy Setting' for the users and groups that need access to CVSWeb.

4. When asking for diffs, the message - No viewable Change - This is the same as "Failed to spawn GNU rlog" (see #1 above)

   Or, you're attempting to diff a binary file.

5. IIS Lockdown Wizard
   
       The page cannot be found
       ...
       HTTP 404 File not found
    
   Change the following line from 0 to 1 in URLSCAN.INI:

       AllowDotInPath=1             ; if 1, allow dots that are not file extensions

   and restart IIS.