Re: newbie vs access control

From: Robin Becker <robin_at_reportlab.com>
Date: 2004-05-05 20:33:39 CEST

Seth Falcon wrote:

.......

>
> My understanding is that:
>
> - Authentication can be handled either by authz_svn or any Apache module
> that can "fake" BasicAuth.
>
> - Access control is handled by authz_svn. Groups are defined in the
> AuthzSVNAccessFile and BasicAuth groups do not get used. The
> AuthzSVNAccessFile can define default access policies.
>

but the Apache BasicUsers do or am I mistaken in that too?

>
>>Secondly is there any way to control access within a repository using
>>apache Location & Rewrite?
>
>
> No, that's what authz_svn is for. On the surface, using Location and
> LocationMatch directives with Apache auth will appear to work, but it
> won't be secure. The reason, IIRC, is that svn uses mangled URLs to do
> the WEBDAV stuff and those URLs won't match your Location directives.
> Otherwise, there wouldn't really be a point of the authzsvn module ;-)
>
> + seth

I guess that's why I asked; thanks :)

-- 
Robin Becker
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org

Received on Wed May 5 20:34:09 2004

This message: [ Message body ]
Next message: Seth Falcon: "Re: newbie vs access control"
Previous message: Seth Falcon: "Re: newbie vs access control"
In reply to: Seth Falcon: "Re: newbie vs access control"
Next in thread: Seth Falcon: "Re: newbie vs access control"
Reply: Seth Falcon: "Re: newbie vs access control"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]