[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: auth allowing access to logs only?

From: Karl Fogel <kfogel_at_red-bean.com>
Date: 2007-02-04 20:55:11 CET

On 2/4/07, David James <james@cs.toronto.edu> wrote:
> It might make sense to allow users to configure their log-message
> permissions separately, so as to avoid this bottleneck, without
> turning off permissions completely. Perhaps we should simply setup a
> "SVNLogMessageAuthz Off'" flag? This flag would disable authz for log
> messages, therefore allowing any user who has any access to the
> repository to also access log messages. Tom, would this flag help with
> your use case?

This seems like a good idea. For some sites, the log messages have
the possibility of being sensitive; for others, they don't. Why not let
the admins decide which kind their site is?

I guess we could go even farther and have an 'svn:use-path-authn'
revprop that, if set, means "Use the path authorizations for this
revision to decide whether or not to show this log message." But
right now we don't get a lot of requests for such fine-grained control,
whereas some people apparently do feel that their log messages
aren't sensitive enough to be worth the expense of the path-authn
checks. A repository-wide flag giving them this choice would be an
easy solution...

To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sun Feb 4 20:55:31 2007

This is an archived mail posted to the Subversion Dev mailing list.