[PATCH] Introduce AuthzSVNGroupsFile configuration option for mod_authz_svn

From: Evgeny Kotkov <evgeny.kotkov_at_visualsvn.com>
Date: Wed, 23 Jan 2013 19:27:21 +0400

Hi,

When AuthzSVNReposRelativeAccessFile directive is being used and
authorization rules are stored per-repository, it is usually required to
have a single set of groups for all repositories.

In other words, there can be a 'developers' group, whose members should
have access to all repositories. To avoid the duplication of the 'developers'
group definition across multiple authz files, it would be great to have a
single place to define these groups.

The attached patch adds the 'AuthzSVNGroupsFile' option to specify the
dedicated file where the group definitions are stored.

Having such an option seems to be a logical step forward since we already
have the AuthzSVNReposRelativeAccessFile option. The introduced option does
not affect the existing behavior — if it is not present, everything will
remain the same.

It might seem that the patch is pretty big, but the actual change is quite
local. Group definitions are just copied when the authz config is loaded.
When the 'AuthzSVNGroupsFile' option is used, it is prohibited to define
groups in the authz files.

All tests (local, svn, http) including the new ones pass.

Thanks and regards,
Evgeny Kotkov

text/plain attachment: authz-svn-add-groups-file-option-1.log.txt

text/plain attachment: authz-svn-add-groups-file-option-1.patch.txt

Received on 2013-01-23 16:28:18 CET

This message: [ Message body ]
Next message: Ben Reser: "Re: [PATCH] Support regex in EXPECTED ERR list"
Previous message: Julian Foad: "Merge the new apr_hash_this_{key,key_len,val} to 1.5"
Next in thread: Ivan Zhakov: "Re: [PATCH] Introduce AuthzSVNGroupsFile configuration option for mod_authz_svn"
Reply: Ivan Zhakov: "Re: [PATCH] Introduce AuthzSVNGroupsFile configuration option for mod_authz_svn"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]