[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Help for adding a privacy prompt prior to checkout execution

From: Bob Zhu <bzhu_at_fortinet.com>
Date: Fri, 1 Sep 2017 10:13:39 -0700

Hi Markus,

Thank you for quick response and your suggestions.

Currently right now, our employess can only access SVN through
authentication with our LDAP server.
So authentication wise, we are fine but they upper management want's a
bit more.
Unforunately, the other suggestions you have made have been shot down
and doesn't fully meet upper management's requirements.

We definitely don't wan to do anything client side since that would be a
nightmare to manage afterwards.
Upper management essentially wants this reminder everytime they do a
checkout. Almost like a disclaimer that they have to agree to before

Are there any other suggestions from a server side perspective that can
done? Or has anyone done something like this before with SVN?


On 08/31/2017 11:38 PM, Markus Schaber wrote:
> Hi, Bob,
> From: Bob Zhu [mailto:bzhu_at_fortinet.com]
>> We need to ensure all our devs who are checking out source from SVN is
>> prompted with a privacy policy that they must agree to before the checkout
>> can continue.
> Any such kind of policy is implemented client-side, and thus can always be circumvented.
> May I suggest a different approach: Protect your SVN repository behind authentication (either username/password, or ssh, or client certificates). Then only allow access for those users once they have signed the privacy policy on a different channel (e. G. on paper, or via a web form, etc... - the web form way can be easily automated...)
> And make sure that the policy does not allow to pass the contents of a working copy to others which did not sign the agreement. :-)
> Best regards
> Markus Schaber
> CODESYS® a trademark of 3S-Smart Software Solutions GmbH
> Inspiring Automation Solutions
> 3S-Smart Software Solutions GmbH
> Dipl.-Inf. Markus Schaber | Product Development Core Technology
> Memminger Str. 151 | 87439 Kempten | Germany
> Tel. +49-831-54031-979 | Fax +49-831-54031-50
> E-Mail: m.schaber@codesys.com | Web: http://www.codesys.com | CODESYS store: http://store.codesys.com
> CODESYS forum: http://forum.codesys.com
> Managing Directors: Dipl.Inf. Dieter Hess, Dipl.Inf. Manfred Werner | Trade register: Kempten HRB 6186 | Tax ID No.: DE 167014915
> This e-mail may contain confidential and/or privileged information. If you are not the intended recipient (or have received
> this e-mail in error) please notify the sender immediately and destroy this e-mail. Any unauthorised copying, disclosure
> or distribution of the material in this e-mail is strictly forbidden.
Received on 2017-09-01 19:20:11 CEST

This is an archived mail posted to the Subversion Dev mailing list.