[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

RE: Restricting access to old revisions of a project?

From: Chris Evans <chris.evans_at_gresearch.co.uk>
Date: Sat, 4 Feb 2012 17:00:48 +0000

Thanks for the suggestions. I was hoping it would be possible at the Apache level rather than hacking dump files.

Do you think it would be possible with some Apache module to inspect the SVN transactions and determine the revision being checked out? Or am I likely to get nowhere?

> -----Original Message-----
> From: Nico Kadel-Garcia [mailto:nkadel_at_gmail.com]
> Sent: 03 February 2012 18:05
> To: Ryan Schmidt
> Cc: Chris Evans; users_at_subversion.apache.org
> Subject: Re: Restricting access to old revisions of a project?
>
> On Fri, Feb 3, 2012 at 12:47 PM, Ryan Schmidt <subversion-
> 2012a_at_ryandesign.com> wrote:
> >
> > On Feb 3, 2012, at 06:14, Chris Evans wrote:
> >
> >> I've had a request to restrict access to revisions of certain SVN
> projects in a repository older than a set revision number. My repo is
> accessed via Apache HTTPS. Has anybody had any experience of this or
> would know where to start? I'm guessing it could be possible in the httpd
> config to deny access if the http request contains the revision, but I'm
> not sure what modules or config would allow this. Any help would be
> greatly appreciated.
> >
> > Sorry, this is not a feature Subversion offers.
>
> The simplest method is to do an export/import to a new repository. and
> start your history from scratch with that new repository. Leaving a
> README.txt in place that points to the old versions would allow
> authorized personnel to obtain the old erversions.
>
> This *would* break your change history, and does nothing for any svnsync
> maintained repositories people may have had. Related issues have come up
> before with large binary objects accidentally stored in Subversion, and
> confidential data accidentally stored in source control.

--------------
GR Software & Research Limited believes the information provided herein is reliable. While every care has been taken to ensure accuracy, the information is furnished to the recipients with no warranty as to the completeness and accuracy of its contents and on condition that any errors or omissions shall not be made the basis of any claim, demand or cause of action.
The information in this email is intended only for the named recipient.  If you are not the intended recipient please notify us immediately and do not copy, distribute or take action based on this e-mail.
All messages sent to and from this e-mail address will be logged by GR Software & Research Limited and are subject to archival storage, monitoring, review and disclosure.
Gloucester Research is the trading name of GR Software & Research Limited, 5th Floor, Whittington House, 19-30 Alfred Place, London WC1E 7EA.
GR Software & Research Limited is a company registered in England and Wales with company number 04267560.
--------------
Received on 2012-02-04 18:01:28 CET

This is an archived mail posted to the Subversion Users mailing list.