Re: Read access for a member of two authz groups with different permissions

From: Philip Martin <philip.martin_at_wandisco.com>
Date: Wed, 21 Nov 2012 18:25:13 +0000

"Oscarsen, Anders" <anders.oscarsen_at_logica.com> writes:

> With this authz file:
>
> #---------------------------------------
> [groups]
> group0 = user1
> group1 = user1
> group2 =
>
> [/]
> @group0 = r
>
> [/folder1]
> @group1 = w
>
> [/folder2]
> @group2 = w
>
> #---------------------------------------
>
> user1 has:
> * read access to / and /folder2
> * no read access to /folder1.

No. This

[/]
@group0 = r

gives blanket read access to everything under / for members of group1,
including /folder1, /folder2, /foo and /bar. This

[/folder1]
@group1 = w

adds write access to /folder1 for members of group1, it doesn't remove
any access from anybody. If you want to remove access you need to
specify the removal explicitly in some way, perhaps:

  [/folder1]
  * =
  @group1 = rw

-- 
Certified & Supported Apache Subversion Downloads:
http://www.wandisco.com/subversion/download

Received on 2012-11-21 19:25:51 CET

This message: [ Message body ]
Next message: net_robber: "version can not be svnsync"
Previous message: Daniel Shahaf: "Re: Read access for a member of two authz groups with different permissions"
In reply to: Oscarsen, Anders: "Read access for a member of two authz groups with different permissions"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]