we used a configuration like (with more subdirectories for different
user groups):
<Location /svnrep>
DAV svn
SVNPath /home/svn/svnrep
SSLRequireSSL
AuthType Basic
AuthName "svn user"
AuthUserFile /usr/secret/passwords
AuthGroupFile /usr/secret/groups
Require group internal-developer
</Location>
<Location /svnrep/trunk/projects/proj1>
DAV svn
SVNPath /home/svn/svnrep
SSLRequireSSL
AuthType Basic
AuthName "svn user"
AuthUserFile /usr/secret/passwords
AuthGroupFile /usr/secret/groups
Require group proj1-grp
</Location>
the effect was, that mod_dav showed
/svnrep/trunk/projects/proj1/trunk/projects/proj1/correct-dir, and
moving correct-dir up to /svnrep/trunk/projects/proj1 showed it also
in the root (svnrep).
all the users were in all groups.
the more stable solution seems to be a configuration with:
<Location /svn>
DAV svn
SVNParentPath /usr/svn
SSLRequireSSL
AuthType Basic
AuthName "svn user"
AuthUserFile /usr/secret/passwords
AuthGroupFile /usr/secret/groups
Require valid-user
</Location>
<Location /svn/rep1>
Require group all-developpers
</Location>
<Location /svn/rep1/trunk/projects/proj1>
Require group proj1-grp
</Location>
if i'm right here, may i suggest 2 things:
- a rewrite (throw out unimportant confusing stuff,
and extending by this) of the access control part
of the book.
- a clean handling of the first (errenuous?) configuration.
-s
__________________________________________________
Do you Yahoo!?
Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
http://mailplus.yahoo.com
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Fri Jan 17 13:32:58 2003