[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Commit bot without password

From: Branko Čibej <brane_at_wandisco.com>
Date: Fri, 12 Sep 2014 14:48:09 +0200

On 12.09.2014 09:31, Kim Gräsman wrote:
> Hello ,
>
> I've seen the discussion on rewriting transactions with svnadmin, so
> it sounds like this scenario might be less esoteric in the future.
>
> I just wanted to reiterate one thing that you might also want to think about:
>
> On Sat, Sep 6, 2014 at 9:19 AM, Kim Gräsman <kim.grasman_at_gmail.com> wrote:
>> One snag is that it seems like authorization happens before the
>> precommit hook, so we can't lock users out of Subversion without also
>> locking them out of the gated commit. Now that we're aware of this, we
>> can figure out ways of countering it.
> This is not a problem for us, but it would be nice if one could
> somehow perform authorization both before and after the precommit
> hook.

Did you mean authentication or authorization?

In any case, both happen in the server (Apache or svnserve) before the
repository code that runs the hooks is invoked, and that's not likely to
change.

However, nothing is stopping you from giving the commit robot different
access rights than normal users, and even a different (possibly private)
URL to use for commits.

-- Brane
Received on 2014-09-12 14:49:03 CEST

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.