Re: Worst Error Message?
From: Jeremy Pereira <jeremyp_at_jeremyp.net>
Date: Sun, 31 Jul 2011 21:24:09 +0100
On 30 Jul 2011, at 20:10, Les Mikesell wrote:
> On 7/30/11 1:14 PM, Jeremy Pereira wrote:
From a software-that-is-not-a-complete-pig-to-use point of view, this is nonsense. If I'm a user trying to check something in to subversion, "403 forbidden" is useless. I don't know if I've got to the wrong server, mistyped a URL or don't have access rights. If you think the error message "you do not have permission to commit to $URL_THATS_EASY_TO_FIND_IN_THE_WORKING_COPY" is a security risk, you need to think again about what security is.
>>> Is something better in the apache error log where the sysadmin who set it up wrong should be looking?
Telling somebody that they only have read access to a repository is not giving them a hint about how to work around it. "403 forbidden" is not telling somebody that they only have read access to a repository (or part of a repository). It's telling them that a web server somewhere doesn't like them. "What a web server? I thought I was using subversion" says the user.
This is an archived mail posted to the Subversion Users mailing list.