[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Why does copy do a PROPFIND on the repo root?

From: Kenneth McKnight <kmcknight_at_vitria.com>
Date: 2005-04-07 22:30:47 CEST

I've got a complicated ACL on my Apache server, blocking access to
certain subdirectories in the svn repo based on whether the user is part
of an offshore group. I'm trying to give an offshore Release Engineer
access to create tags. When she tries to do an 'svn copy', she gets the

svn copy --username user1 http://ourserver/svn/foo/bar
svn: PROPFIND request failed on '/svn/ourserver'
svn: PROPFIND of '/svn/ourserver': authorization failed

The Apache log shows:
[Wed Apr 06 15:53:33 2005] [error] [client] Access
denied: 'user1' PROPFIND ourserver:/

It turns out this user is part of a group that does not have access to
the root of the repo, but does have access to the subdir
http://ourserver/svn/foo/release_tags. As an experiment I tried adding
her to a special group that has read-only access to the root, and sure
enough, her copy went through (of course I can't keep this in place as
offshore access must be blocked at the root level).

Here's a snippet from the Apache config file:

<Location /svn>
        DAV svn
        SVNParentPath /data1/svn

        AuthzSVNAuthoritative On
        AuthzSVNAccessFile /data1/svn/access.conf

        AuthLDAPEnabled on
        AuthLDAPAuthoritative off
        [ ... LDAP server info removed ... ]

        AuthName "Your Vitria Login: "
        AuthType Basic
        require valid-user

So why is it that the copy does a PROPFIND on the root of the repo? Any
suggestions on a solution?

ken :-)
Kenneth J. Mc Knight
Staff Release Engineer
Release Group
Vitria Technology, Inc.
945 Stewart Dr.
Sunnyvale, CA 94085-3913

Received on Thu Apr 7 22:32:45 2005

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.