[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: How to allow anonymous browsing SVNParentPath but restrict access to the repos within(plain text)

From: Martin J. Stumpf <mjs_at_jhu.edu>
Date: Mon, 03 Aug 2009 09:34:48 -0400

Chen (?) Jun (?) wrote:
> Hi, I'd like to ask a question here.
>
> I've been using Apache to serve SVN content for quite some years, but I
> got a question recently and can not find an answer from the svn redbean
> book.
>
>
<snip>
> [/]
> * = r
>
> [repos1:/]
> usera = rw
>
> [repos2:/]
> userb = rw
>
> Goal 1 OK, but Goal 2 not. Anonymous can browse+read repos1 and repos2.
>
>
>
> Case 2: I compose D:/SvnReps/Isyslib/svn-authz-file
>
> [repos1:/]
> usera = rw
>
> [repos2:/]
> userb = rw
>
> Goal 2 is OK but Goal 1 not.
>
> When a web client browses http://localhost/svnreps/Isyslib/ ,
> * If no username/passwd is provided, the client gets HTTP error 401
> Authorization Required.
> * If valid username of usera is provided, the client gets HTTP error 403
> Forbidden.
> Could someone teach me how to accomplish both goals?
>
Since you start out with [/] * = r you need to disallow anonymous read
on each repo before giving more specific permissions. Like this:

[repos1:/]
* =
usera = rw

[repos2:/]
* =
userb = rw

Hope this helps,

-Martin

------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=2379531

To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_subversion.tigris.org].
Received on 2009-08-03 15:35:10 CEST

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.