Last updated: 11:59PM 12/08/08
At work we were looking to bind Subversion access to Active Directory. Of course with any large Active Directory installation, there is extensive use of nested groups to enable disable access to a wide variety of services around the company.
Thankfully mod_auth_ldap has a specific feature that can be enabled to support recursive group look ups.
Combining mod_auth_ldap along with <LimitExcept> enables us to create read-only access groups to the server, while allowing developers commit access.