[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Combining public and private paths

From: Victor Sudakov <sudakov_at_sibptus.tomsk.ru>
Date: Fri, 11 Feb 2011 09:30:24 +0600

The problem is probably in the following. When anon-access is other
than "none", svnserve does not request authentication for some
important operations like "svn log", and I have found no way to force
it to request authentication. This effectively breaks path based
authorization.

I have found some tricky solutions for the http access method (like
defining two aliases for the same repository), but none for the
svnserve method. Any help?

Victor Sudakov wrote:
>
> I am trying to setup the following policy: a private repository with
> some public paths. Is such configuration supported at all?
>
> The following configuration:
>
> ========== conf/svnserve.conf:
> anon-access = read
> auth-access = write
> authz-db = authz
>
> ========== conf/authz:
> [/]
> @noc = rw
>
> [/foo]
> $anonymous = r
> $authenticated = rw
>
> does not work. A valid user from the noc group receives the following reply:
>
> $ svn diff -c2237 www.txt
> svn: Unreadable path encountered; access denied
>
> If I change "anon-access = read" to "anon-access = none", it begins to
> work for the valid user, but there is no anonymous access to anyone
> even to svn://myserver/foo despite the "$anonymous = r" clause.
>
> What am I doing wrong?
>
> --
> Victor Sudakov, VAS4-RIPE, VAS47-RIPN
> sip:sudakov_at_sibptus.tomsk.ru

-- 
Victor Sudakov,  VAS4-RIPE, VAS47-RIPN
sip:sudakov_at_sibptus.tomsk.ru
Received on 2011-02-11 04:31:05 CET

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.