Noel Yap wrote:
>
> --- Justin Erenkrantz <jerenkrantz@apache.org> wrote:
> > Yes, the idea is to add WebDAV ACL support. Please
> > read
> > notes/webdav-acl-notes. Comments and suggestions
> > welcomed!
>
> I did a quick read of the above file.
>
> At first glance, I would think that versioning ACLs
> would be A Bad Thing since the following could occur:
> 1. Developer d0 has full privileges on resounce r0.
> 2. Someone revokes d0's privileges on r0.
>
> If ACLs were versioned, d0 would still have access to
> older versions of r0. Or am I misunderstanding
> something? Might there be some benefit of versioned
> ACLs I don't see that'll outweigh the consequences?
There are two types of ACLs:
1. ACLs of the versioned resource: Here I think of POSIX ACLs, or even
extended attributes. These should be versioned. I do not remember having
read anything about these on this list, only about X-flags.
2. ACLs controlling access to the repository: Some time ago there was a
discussion on the list that came to the conclusion that versioning those
would probably not make much sense, except maybe for a kind of group (as
in project members) property which could be used as an identifier for
non-versioned ACLs. Or did I get that wrong?
Regards,
Stephan
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sun Oct 13 23:22:31 2002