Authorization question

From: Eli Barzilay <eli_at_barzilay.org>
Date: 2007-01-20 21:27:37 CET

[This is a third post of this question -- trying to avoid filing a bug
if its bogus. Any help would be greatly appreciated.]

I'm running a user repository, and there's some weird authorization
problem. I want to let people determine the control that they want,
so I have:

  <Location /usr>
    Dav svn
    SVNPath /home/svn/usr
    SVNAutoversioning on
    SVNIndexXSLT "/svnindex.xsl"
    Allow from all
    AuthType Digest
    AuthName "Subversion"
    AuthUserFile /home/svn/etc/passwd
    AuthDigestDomain /plt/ /iplt/ /iview/ /usr/ /play/
    AuthzSVNAccessFile /home/svn/etc/authz.conf
    Require valid-user
  </Location>

which works fine, until someone wants to make a directory
world-readable. So, I figure that I'll let the authz.conf be the only
guard for unwanted reads, and changed that last line to:

  <Location /usr>
    ...
    <LimitExcept GET PROPFIND OPTIONS REPORT>
      Require valid-user
    </LimitExcept>
  </Location>

The world-readable directory works fine, but now normal per-user
control doesn't work.

Is there anything wrong in the above setup?

-- 
          ((lambda (x) (x x)) (lambda (x) (x x)))          Eli Barzilay:
                  http://www.barzilay.org/                 Maze is Life!
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org

Received on Sat Jan 20 21:30:32 2007

This message: [ Message body ]
Next message: Stephen Winnall: "Re: installing SVN after development has started"
Previous message: Martins Kemme: "Subversion tagging"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]