servers (8316B)
1 ### This file specifies server-specific parameters, 2 ### including HTTP proxy information, HTTP timeout settings, 3 ### and authentication settings. 4 ### 5 ### The currently defined server options are: 6 ### http-proxy-host Proxy host for HTTP connection 7 ### http-proxy-port Port number of proxy host service 8 ### http-proxy-username Username for auth to proxy service 9 ### http-proxy-password Password for auth to proxy service 10 ### http-proxy-exceptions List of sites that do not use proxy 11 ### http-timeout Timeout for HTTP requests in seconds 12 ### http-compression Whether to compress HTTP requests 13 ### http-max-connections Maximum number of parallel server 14 ### connections to use for any given 15 ### HTTP operation. 16 ### http-chunked-requests Whether to use chunked transfer 17 ### encoding for HTTP requests body. 18 ### neon-debug-mask Debug mask for Neon HTTP library 19 ### ssl-authority-files List of files, each of a trusted CA 20 ### ssl-trust-default-ca Trust the system 'default' CAs 21 ### ssl-client-cert-file PKCS#12 format client certificate file 22 ### ssl-client-cert-password Client Key password, if needed. 23 ### ssl-pkcs11-provider Name of PKCS#11 provider to use. 24 ### http-library Which library to use for http/https 25 ### connections. 26 ### http-bulk-updates Whether to request bulk update 27 ### responses or to fetch each file 28 ### in an individual request. 29 ### store-passwords Specifies whether passwords used 30 ### to authenticate against a 31 ### Subversion server may be cached 32 ### to disk in any way. 33 ### store-plaintext-passwords Specifies whether passwords may 34 ### be cached on disk unencrypted. 35 ### store-ssl-client-cert-pp Specifies whether passphrase used 36 ### to authenticate against a client 37 ### certificate may be cached to disk 38 ### in any way 39 ### store-ssl-client-cert-pp-plaintext 40 ### Specifies whether client cert 41 ### passphrases may be cached on disk 42 ### unencrypted (i.e., as plaintext). 43 ### store-auth-creds Specifies whether any auth info 44 ### (passwords, server certs, etc.) 45 ### may be cached to disk. 46 ### username Specifies the default username. 47 ### 48 ### Set store-passwords to 'no' to avoid storing passwords on disk 49 ### in any way, including in password stores. It defaults to 50 ### 'yes', but Subversion will never save your password to disk in 51 ### plaintext unless explicitly configured to do so. 52 ### Note that this option only prevents saving of *new* passwords; 53 ### it doesn't invalidate existing passwords. (To do that, remove 54 ### the cache files by hand as described in the Subversion book.) 55 ### 56 ### Set store-plaintext-passwords to 'no' to avoid storing 57 ### passwords in unencrypted form in the auth/ area of your config 58 ### directory. Set it to 'yes' to allow Subversion to store 59 ### unencrypted passwords in the auth/ area. The default is 60 ### 'ask', which means that Subversion will ask you before 61 ### saving a password to disk in unencrypted form. Note that 62 ### this option has no effect if either 'store-passwords' or 63 ### 'store-auth-creds' is set to 'no'. 64 ### 65 ### Set store-ssl-client-cert-pp to 'no' to avoid storing ssl 66 ### client certificate passphrases in the auth/ area of your 67 ### config directory. It defaults to 'yes', but Subversion will 68 ### never save your passphrase to disk in plaintext unless 69 ### explicitly configured to do so. 70 ### 71 ### Note store-ssl-client-cert-pp only prevents the saving of *new* 72 ### passphrases; it doesn't invalidate existing passphrases. To do 73 ### that, remove the cache files by hand as described in the 74 ### Subversion book at http://svnbook.red-bean.com/nightly/en/\ 75 ### svn.serverconfig.netmodel.html\ 76 ### #svn.serverconfig.netmodel.credcache 77 ### 78 ### Set store-ssl-client-cert-pp-plaintext to 'no' to avoid storing 79 ### passphrases in unencrypted form in the auth/ area of your 80 ### config directory. Set it to 'yes' to allow Subversion to 81 ### store unencrypted passphrases in the auth/ area. The default 82 ### is 'ask', which means that Subversion will prompt before 83 ### saving a passphrase to disk in unencrypted form. Note that 84 ### this option has no effect if either 'store-auth-creds' or 85 ### 'store-ssl-client-cert-pp' is set to 'no'. 86 ### 87 ### Set store-auth-creds to 'no' to avoid storing any Subversion 88 ### credentials in the auth/ area of your config directory. 89 ### Note that this includes SSL server certificates. 90 ### It defaults to 'yes'. Note that this option only prevents 91 ### saving of *new* credentials; it doesn't invalidate existing 92 ### caches. (To do that, remove the cache files by hand.) 93 ### 94 ### HTTP timeouts, if given, are specified in seconds. A timeout 95 ### of 0, i.e. zero, causes a builtin default to be used. 96 ### 97 ### Most users will not need to explicitly set the http-library 98 ### option, but valid values for the option include: 99 ### 'serf': Serf-based module (Subversion 1.5 - present) 100 ### 'neon': Neon-based module (Subversion 1.0 - 1.7) 101 ### Availability of these modules may depend on your specific 102 ### Subversion distribution. 103 ### 104 ### The commented-out examples below are intended only to 105 ### demonstrate how to use this file; any resemblance to actual 106 ### servers, living or dead, is entirely coincidental. 107 108 ### In the 'groups' section, the URL of the repository you're 109 ### trying to access is matched against the patterns on the right. 110 ### If a match is found, the server options are taken from the 111 ### section with the corresponding name on the left. 112 113 [groups] 114 # group1 = *.collab.net 115 # othergroup = repository.blarggitywhoomph.com 116 # thirdgroup = *.example.com 117 118 ### Information for the first group: 119 # [group1] 120 # http-proxy-host = proxy1.some-domain-name.com 121 # http-proxy-port = 80 122 # http-proxy-username = blah 123 # http-proxy-password = doubleblah 124 # http-timeout = 60 125 # neon-debug-mask = 130 126 # store-plaintext-passwords = no 127 # username = harry 128 129 ### Information for the second group: 130 # [othergroup] 131 # http-proxy-host = proxy2.some-domain-name.com 132 # http-proxy-port = 9000 133 # No username and password for the proxy, so use the defaults below. 134 135 ### You can set default parameters in the 'global' section. 136 ### These parameters apply if no corresponding parameter is set in 137 ### a specifically matched group as shown above. Thus, if you go 138 ### through the same proxy server to reach every site on the 139 ### Internet, you probably just want to put that server's 140 ### information in the 'global' section and not bother with 141 ### 'groups' or any other sections. 142 ### 143 ### Most people might want to configure password caching 144 ### parameters here, but you can also configure them per server 145 ### group (per-group settings override global settings). 146 ### 147 ### If you go through a proxy for all but a few sites, you can 148 ### list those exceptions under 'http-proxy-exceptions'. This only 149 ### overrides defaults, not explicitly matched server names. 150 ### 151 ### 'ssl-authority-files' is a semicolon-delimited list of files, 152 ### each pointing to a PEM-encoded Certificate Authority (CA) 153 ### SSL certificate. See details above for overriding security 154 ### due to SSL. 155 [global] 156 # http-proxy-exceptions = *.exception.com, www.internal-site.org 157 # http-proxy-host = defaultproxy.whatever.com 158 # http-proxy-port = 7000 159 # http-proxy-username = defaultusername 160 # http-proxy-password = defaultpassword 161 # http-compression = no 162 # No http-timeout, so just use the builtin default. 163 # No neon-debug-mask, so neon debugging is disabled. 164 # ssl-authority-files = /path/to/CAcert.pem;/path/to/CAcert2.pem 165 # 166 # Password / passphrase caching parameters: 167 # store-passwords = no 168 # store-ssl-client-cert-pp = no 169 store-plaintext-passwords = yes 170 # store-ssl-client-cert-pp-plaintext = no