[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

RE: path based authorization issue

From: Todd C. Gleason <tgleason_at_impac.com>
Date: Thu, 30 Jul 2009 10:04:24 -0700

> -----Original Message-----
> From: Schroeder, Hartmut [mailto:Hartmut.Schroeder_at_plath.de]
> Sent: Thursday, July 30, 2009 9:36 AM
> To: users_at_subversion.tigris.org
> Subject: path based authorization issue
>
> Hi,
> A path based authorization configuration problem.
> I have a rules file with content as follows:
>
> # -------------------------------------------------
> [groups]
> test = harry, sally
>
> [/]
> * = rw
>
> [/trunk/org/secure]
> @test =
> # -------------------------------------------------
>
> I would expect that harry and sally have access to all but not
> to 'secure'.
> But: The result is, everyone has access to /trunk/org/secure.
> In comparison, the following example runs as expected:
>
> # -------------------------------------------------
> [/]
> * = rw
>
> [/trunk/org/secure]
> * =
> # -------------------------------------------------
>
> I'm running Subversion 1.5.5, Apache 2.0.63 on Windows XP Prof.
>
>
> Any hint?

Have you tried using

[/]
$authenticated = rw

instead of

[/]
* = rw

?

I wonder if right now those users are falling back to gaining access as
non-authenticated (anonymous) users.
Another thing you could try might involve some variant of using ~@test
to allow access to everyone other than the test group. So maybe

[/trunk/org/secure]
* =
   (or $authenticated = )
~@test = rw

See also http://svn.haxx.se/users/archive-2009-06/0804.shtml .

------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=2377051

To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_subversion.tigris.org].
Received on 2009-07-30 19:06:34 CEST

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.