On 2/4/07, David James <james@cs.toronto.edu> wrote:
> It might make sense to allow users to configure their log-message
> permissions separately, so as to avoid this bottleneck, without
> turning off permissions completely. Perhaps we should simply setup a
> "SVNLogMessageAuthz Off'" flag? This flag would disable authz for log
> messages, therefore allowing any user who has any access to the
> repository to also access log messages. Tom, would this flag help with
> your use case?
This seems like a good idea. For some sites, the log messages have
the possibility of being sensitive; for others, they don't. Why not let
the admins decide which kind their site is?
I guess we could go even farther and have an 'svn:use-path-authn'
revprop that, if set, means "Use the path authorizations for this
revision to decide whether or not to show this log message." But
right now we don't get a lot of requests for such fine-grained control,
whereas some people apparently do feel that their log messages
aren't sensitive enough to be worth the expense of the path-authn
checks. A repository-wide flag giving them this choice would be an
easy solution...
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sun Feb 4 20:55:31 2007