Re: How to restrict access to repository directory?

From: Paul Koning <pkoning_at_equallogic.com>
Date: 2006-01-23 16:06:30 CET

>>>>> "Ron" == Ron Avriel <ravriel@hotmail.com> writes:

Ron> Hi, How can I restrict write access to a repository directory
Ron> (and its files and directories) to specific users?

Ron> I tried using svnperms.py and and commit-access-control.pl from
Ron> the pre-commit hook, but I couldn't get any of them to work
Ron> right.

Ron> For svnperms.py I configured svnperms.conf:
Ron> -------------------------------------
Ron> trunk/.* = *(add,remove,update)
Ron> trunk/restricted.* = admin(add,remove,update)
Ron> -------------------------------------

Ron> but with this configuration everyone had write accesses to
Ron> trunk/restricted.

svnperms.py says that the last match wins. In the rule you gave, an
access to trunk/restricted.* will match both lines. The first line
gives a rule for everyone. The second line overrides that ONLY for
admin. For non-admin, it doesn't give a rule. So the previous rule
is still in effect.

What you need is this for the second line:
trunk/restricted.* = *(),admin(add,remove,update)

That way your second line now says "everyone has no access -- except
admin who has full access".

By the way, I looked at both the Perl and Python based access controls
and ended up using the Python one because it seemed easier to use.

paul

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Mon Jan 23 16:19:36 2006

This message: [ Message body ]
Next message: Johannes Holzer: ""file group""
Previous message: Paul Koning: "Re: Is it possible to move repository from Linux to Windows?"
In reply to: Ron Avriel: "How to restrict access to repository directory?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]