> I mean AD. Do you grant access to users and groups
> independently? Like:
>
> - grant 'r' access to all users from group 'GrpTeam'
> and 'rw' access only to user 'Manager' (who is a member of
> GrpTeam) to a particular directory within the repository?
>
> How do you do that? I think I missed something in the SVN book...
>
I understand now. That's significantly more complicated than my access
controls need to be. In our organization, you either have full control
of the repository or you don't have any access to it and we aren't doing
any per-directory security. If it helps, I've included one of my
location blocks so you see how I do that.
<location /AST>
DAV svn
SVNPath "some:\path\that\I\Dont\want\you\to\know"
AuthLDAPURL
ldap://myldapserver:3268/DC=myorg1,DC=myorg2,DC=org?samaccountname?sub?(
&(objectClass=*)(memberOf=CN=group-who-gets-access,OU=mydept,DC=myorg1,D
C=myorg2,DC=org))
AuthLDAPBindDN ldapsearchuser
AuthLDAPBindPassword ldapsearchuserpassword
AuthType Basic
AuthName "AST"
Require valid-user
</location>
Rick
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Thu Mar 2 13:29:36 2006