Re: apache/svn security question

From: Christophe Labouisse <gabuzo_at_tigris.org>
Date: 2004-01-13 21:10:30 CET

On Tue, 13 Jan 2004 14:33:08 -0500
Rob van Oostrum <rob.vanoostrum@blastradius.com> wrote:

> Is there any way that I can give a user access to a specific directory
> in the repository without giving them read-access to everything?
> Specifically for browser access. Unless I include * = r under the [/]
> heading, giving out read rights to specific directories doesn't result
> in any actual access (at least not through a browser, which is what
> I'm looking for).

Are you sure giving permission only in the subdirectory does not work ?
I have a test repository with the following SVN access file :

[/]
moi = rw

[/Test dir]
anonymous = rw

Using the anonymous logging I'm able to browse "Test dir" while I cannot
access any other part of the repository. I cannot browse from the
repository's root but that's what I ask anyway.

Beside this I notice that a "user = " line in the svn access file
removes the authorization for this user. So I guess the following should
work:

[/]
* = r

[/dont/mess/with/my/dir]
intruder =

or may be something like

[/dont/mess/with/my/dir]
* =
friend = r

should work (well actually it works but I'm not sure this is within the
specs).

-- 
Le cinéma en Lumière : http://www.lumiere.org/
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org

Received on Tue Jan 13 21:12:00 2004

This message: [ Message body ]
Next message: Rob van Oostrum: "FW: apache/svn security question"
Previous message: kfogel_at_collab.net: "Re: Error writing to the repository after cvs2svn.py"
In reply to: Rob van Oostrum: "apache/svn security question"
Next in thread: Rob van Oostrum: "FW: apache/svn security question"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]