[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: newbie vs access control

From: Robin Becker <robin_at_reportlab.com>
Date: 2004-05-05 20:33:39 CEST

Seth Falcon wrote:


> My understanding is that:
> - Authentication can be handled either by authz_svn or any Apache module
> that can "fake" BasicAuth.
> - Access control is handled by authz_svn. Groups are defined in the
> AuthzSVNAccessFile and BasicAuth groups do not get used. The
> AuthzSVNAccessFile can define default access policies.

but the Apache BasicUsers do or am I mistaken in that too?

>>Secondly is there any way to control access within a repository using
>>apache Location & Rewrite?
> No, that's what authz_svn is for. On the surface, using Location and
> LocationMatch directives with Apache auth will appear to work, but it
> won't be secure. The reason, IIRC, is that svn uses mangled URLs to do
> the WEBDAV stuff and those URLs won't match your Location directives.
> Otherwise, there wouldn't really be a point of the authzsvn module ;-)
> + seth

I guess that's why I asked; thanks :)

Robin Becker
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Wed May 5 20:34:09 2004

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.