[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

httpd.conf problem limiting access to lower levels

From: Rogers, Donald <Donald.Rogers_at_openpolytechnic.ac.nz>
Date: 2005-07-19 23:14:57 CEST

We have four Subversion repositories on a Windows 2000 server. We are using Apache 2.0.54, Subversion 1.2.1 and LDAP authentication (Active Directory). We want user groups to have different access rights at different levels of each repository.

We tried this type of set up in httpd.conf:
...
<Location /subversion/xml_dev>
  AuthName "First level"
  <Limit GET PROPFIND PUT POST DELETE PROPPATCH MKCOL COPY MOVE LOCK UNLOCK>
    require group CN=Subversion Administrator,OU=Svn Groups,DC=topnz,DC=ac,DC=nz
  </Limit>
  <Limit GET PROPFIND>
    require group CN=Subversion Editors,OU=Svn Groups,DC=topnz,DC=ac,DC=nz
  </Limit>
</Location>

<Location /subversion/xml_dev/*/*>
  AuthName "Third level"
  <Limit GET PROPFIND PUT POST DELETE PROPPATCH MKCOL COPY MOVE LOCK UNLOCK>
    require group CN=Subversion Administrator,OU=Svn Groups,DC=topnz,DC=ac,DC=nz
    require group CN=Subversion Editors,OU=Svn Groups,DC=topnz,DC=ac,DC=nz
  </Limit>
</Location>
...

The "First level" element works okay, but the "Third level" element does not work, i.e. users cannot commit to the repository. Does it not cope with the asterisk notation(/subversion/xml_dev/*/* )? There are about 30 folders in the second level and lots more in the third level, so we don't want to have to specify them all individually. Is there some way to do this?

Donald Rogers

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Tue Jul 19 23:17:06 2005

This is an archived mail posted to the Subversion Users mailing list.