authz's inverted group access rules are only effective for users mentioned in authz
From: Pavel Goran <inbox-17_at_pvgoran.name>
Date: Tue, 27 Nov 2018 00:32:50 +0700
Hello mailing list,
I'm migrating a repository from an ancient Subversion installation:
svn, version 1.6.17 (r1128011)
to a recent version:
svn, version 1.11.0 (r1845130)
And I'm encountering a regression in handling of the authz file by svnserve.
Steps to reproduce:
# mkdir -p /data/svn
# cd /data/svn
# svnadmin create myrepo
# cat >>myrepo/conf/svnserve.conf <<'END'
# cat >>myrepo/conf/passwd <<'END'
# cat >>myrepo/conf/authz <<'END'
# svnserve -r /data/svn -d
# svn --username myuser --password mypassword --no-auth-cache ls svn://localhost/myrepo
The user "myuser" is not included in group "readonly", so I expect the rule
This setup worked fine in the old installation (version 1.6.17). Also, it
# in authz, [groups] section
or use it in any access rule (even if the rule specifies no access):
# in authz, [/] section
I looked at the sources (subversion/libsvn_repos/authz_parse.c), and my
Possibly correction of this problem could involve adding the new field
P.S. I'm not subscribed to the mailing list; please CC me directly when
This is an archived mail posted to the Subversion Dev mailing list.