>I believe your desire is for ANY user to have read access, but ONLY an
ldap-group to have write access, correct? To configure Apache to >only
restrict write-access, use a <LimitExcept> directive instead, which would
restrict everything *except* read methods:
><LimitExcept GET PROPFIND OPTIONS REPORT>
> Require ldap-group CN=FCG LS Product
>Development,OU=U.S.,OU=Groups,DC=fcg,DC=com
></LimitExcept>
My desire is to have only the LS Product Development group have only
Read-Only access to the repository. Which, if I understand how you
explained it, makes sense. This is so confusing to me.
Perhaps it would be easier if I could just make the repository Read-Only
to everyone. However, I am not sure of the correct way to do this either
>I don't doubt you if you say the LDAP portion works, just wanted to make
sure :)
>An easy way to test is to just copy that "Require ldap-group" directive
to a "<Location>" block to require that LDAP to access a portion of >the
site, and confirm only members of the given LDAP group can access that
area.
>
My repositories are already functioning. That is how I know that the LDAP
portion works. I am about to begin to move the repositories from one
server to another. Before I begin a dump I want to make the repository
Read-Only so that no one, who currently has access, can make any changes
while I dump and move.
PATI MOSS
System Engineer Sr. Professional
CSC
------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=2409733
To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_subversion.tigris.org].
Received on 2009-10-21 13:30:34 CEST