Re: Authz on Collection of Repositories (was: Expansion of authz policy name leak)

From: C. Michael Pilato <cmpilato_at_collab.net>
Date: Tue, 23 Oct 2012 08:23:26 -0400

On 10/23/2012 07:24 AM, Ivan Zhakov wrote:
> I'm working on the patch to list only readable repositories. There is
> already TODO comment in the code by cmpilato:
> subversion\mod_dav_svn\repos.c:3461
> [[[
> /* ### TODO: We could test for readability of the root
> directory of each repository and hide those that
> the user can't see. */
> ]]]

I, too, started looking into this, Ivan, but I realized that I was probably
about to run into a whole mess of code refactoring that I wasn't really up
for dealing with at the time. (Trying to stay as 1.8-focused as I can.)
I'm happy to review any work you do on this issue, though.

-- 
C. Michael Pilato <cmpilato_at_collab.net>
CollabNet   <>   www.collab.net   <>   Enterprise Cloud Development

application/pgp-signature attachment: OpenPGP digital signature

Received on 2012-10-23 14:24:14 CEST

This message: [ Message body ]
Next message: Ivan Zhakov: "Re: Authz on Collection of Repositories (was: Expansion of authz policy name leak)"
Previous message: roderich.schupp_at_gmail.com: "Re: Authz on Collection of Repositories (was: Expansion of authz policy name leak)"
In reply to: Ivan Zhakov: "Re: Authz on Collection of Repositories (was: Expansion of authz policy name leak)"
Next in thread: Ivan Zhakov: "Re: Authz on Collection of Repositories (was: Expansion of authz policy name leak)"
Reply: Ivan Zhakov: "Re: Authz on Collection of Repositories (was: Expansion of authz policy name leak)"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]