[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Read-Only Access

From: Patricia A Moss <pmoss4_at_csc.com>
Date: Wed, 21 Oct 2009 07:29:33 -0400

>I believe your desire is for ANY user to have read access, but ONLY an
ldap-group to have write access, correct? To configure Apache to >only
restrict write-access, use a <LimitExcept> directive instead, which would
restrict everything *except* read methods:
><LimitExcept GET PROPFIND OPTIONS REPORT>
> Require ldap-group CN=FCG LS Product
>Development,OU=U.S.,OU=Groups,DC=fcg,DC=com
></LimitExcept>

My desire is to have only the LS Product Development group have only
Read-Only access to the repository. Which, if I understand how you
explained it, makes sense. This is so confusing to me.
Perhaps it would be easier if I could just make the repository Read-Only
to everyone. However, I am not sure of the correct way to do this either

>I don't doubt you if you say the LDAP portion works, just wanted to make
sure :)
>An easy way to test is to just copy that "Require ldap-group" directive
to a "<Location>" block to require that LDAP to access a portion of >the
site, and confirm only members of the given LDAP group can access that
area.
>
My repositories are already functioning. That is how I know that the LDAP
portion works. I am about to begin to move the repositories from one
server to another. Before I begin a dump I want to make the repository
Read-Only so that no one, who currently has access, can make any changes
while I dump and move.

PATI MOSS
System Engineer Sr. Professional
CSC

------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=2409733

To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_subversion.tigris.org].
Received on 2009-10-21 13:30:34 CEST

This is an archived mail posted to the Subversion Users mailing list.