Re: non-canonical paths in authz sections

From: C. Michael Pilato <cmpilato_at_collab.net>
Date: 2007-06-05 21:01:27 CEST

David Glasser wrote:
> It appears that if you accidentally put a trailing slash in a section
> header in an authz file, like
>
> [/some/path/]
>
> it will never be matched. (At least, that's what a bit of testing and
> source diving reveals; there might be some cases where it does.) This
> happens for any sort of non-canonical path, but trailing slashes are
> the easiest to do by accident.
>
> This is really confusing and should be fixed.
>
> Is the correct fix to allow authz file writers to write non-canonical
> paths and canonicalize them when they're matched against, or to throw
> an error if a non-canonical path is specified?

Bummer thing about an error in this situation is that the folks who see the
error might not be able to fix it (users vs. admins). Besides,
canonicalizing the paths automatically seems the more user-friendly thing to do.

-- 
C. Michael Pilato <cmpilato@collab.net>
CollabNet   <>   www.collab.net   <>   Distributed Development On Demand

application/pgp-signature attachment: OpenPGP digital signature

Received on Tue Jun 5 21:01:46 2007

This message: [ Message body ]
Next message: Ben Collins-Sussman: "Re: Revision number syntax in merge notifications."
Previous message: Karl Fogel: "Re: Revision number syntax in merge notifications."
In reply to: David Glasser: "non-canonical paths in authz sections"
Next in thread: David Glasser: "Re: non-canonical paths in authz sections"
Reply: David Glasser: "Re: non-canonical paths in authz sections"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]