Re: Feature request: Hide restricted directories when using path-based authorization

From: C. Michael Pilato <cmpilato_at_collab.net>
Date: Wed, 07 Oct 2009 09:19:38 -0400

Shaun Pinney wrote:
> Hello SVN devs!
>
> When using path-based authorization to restrict users access to certain
> directories, we'd like to completely hide top-level folders and their
> contents. However, clearing a user's read permission for a folder only
> hides the folder's contents - the top-level folder itself is still viewable
> even when read access has not been granted.

It's not so much the case that folder permissions only apply to their
contents by design. It's just that certain Subversion subcommands leak the
names of unreadable objects. Read the section "KNOWN LEAKAGE OF UNREADABLE
PATHS" in http://svn.collab.net/repos/svn/trunk/notes/authz_policy.txt for
more details.

-- 
C. Michael Pilato <cmpilato_at_collab.net>
CollabNet   <>   www.collab.net   <>   Distributed Development On Demand
------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=462&dsMessageId=2404513

application/pgp-signature attachment: OpenPGP digital signature

Received on 2009-10-07 15:20:00 CEST

This message: [ Message body ]
Next message: Franz Weller: ""svn diff -c" on a merged revision shows wrong parent rev"
Previous message: Hyrum K. Wright: "Re: Warnings [was: svn commit: r39805 - in trunk/subversion: svnlook tests/cmdline]"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]