Re: Overzealous asterisk in AuthzSVNAccessFile

Hi Jeff,

I think this is similar to the issue I previously raised and have raised
as a defect in:
        http://subversion.tigris.org/issues/show_bug.cgi?id=2907

Regards,

David.

--
David Grierson
JPMorgan - IB Architecture - Source Code Management Consultant
GDP 228-5574 / DDI +44 141 228 5574 / Email david.x.grierson_at_jpmorgan.com
Alhambra House 6th floor, 45 Waterloo Street, Glasgow G2 6HS
 
"Jeff Mitchell" <jeffrey.mitchell_at_gmail.com> 
14/03/2008 17:16
To
users_at_subversion.tigris.org
cc
Subject
Overzealous asterisk in AuthzSVNAccessFile
I'm running into a problem trying to give permissions to everyone to
read-write the entire repository except for a single directory that I
want to only have specific users able to access (read or write).
My configuration file looks like this:
[groups]
allowed = tom dick harry
[/]
* = rw
[/projects/keepout]
@allowed = rw
* =
However, that keeps everyone, including people in the allowed group,
from being able to access that path.  If I remove the "* =" then
everyone can access the path.  I would think that the more specific
group permissions would override the * but that doesn't seem to be the
case.
The allowed list is fairly static; the rest of our user database is
quite dynamic.  Unfortunately, given my experience so far, the only
way I can think of how to work around this is to put all the other
usernames (over a hundred) in a second group, and keep that updated
separately from the rest of our authentication system.  Not a great
workaround.
Am I totally missing something here, or is the asterisk being overzealous?
Thanks,
Jeff
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe_at_subversion.tigris.org
For additional commands, e-mail: users-help_at_subversion.tigris.org
Generally, this communication is for informational purposes only
and it is not intended as an offer or solicitation for the purchase
or sale of any financial instrument or as an official confirmation
of any transaction. In the event you are receiving the offering
materials attached below related to your interest in hedge funds or
private equity, this communication may be intended as an offer or
solicitation for the purchase or sale of such fund(s).  All market
prices, data and other information are not warranted as to
completeness or accuracy and are subject to change without notice.
Any comments or statements made herein do not necessarily reflect
those of JPMorgan Chase & Co., its subsidiaries and affiliates.
This transmission may contain information that is privileged,
confidential, legally privileged, and/or exempt from disclosure
under applicable law. If you are not the intended recipient, you
are hereby notified that any disclosure, copying, distribution, or
use of the information contained herein (including any reliance
thereon) is STRICTLY PROHIBITED. Although this transmission and any
attachments are believed to be free of any virus or other defect
that might affect any computer system into which it is received and
opened, it is the responsibility of the recipient to ensure that it
is virus free and no responsibility is accepted by JPMorgan Chase &
Co., its subsidiaries and affiliates, as applicable, for any loss
or damage arising in any way from its use. If you received this
transmission in error, please immediately contact the sender and
destroy the material in its entirety, whether in electronic or hard
copy format. Thank you.
Please refer to http://www.jpmorgan.com/pages/disclosures for
disclosures relating to UK legal entities.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe_at_subversion.tigris.org
For additional commands, e-mail: users-help_at_subversion.tigris.org