On 12.09.2014 09:31, Kim Gräsman wrote:
> Hello ,
>
> I've seen the discussion on rewriting transactions with svnadmin, so
> it sounds like this scenario might be less esoteric in the future.
>
> I just wanted to reiterate one thing that you might also want to think about:
>
> On Sat, Sep 6, 2014 at 9:19 AM, Kim Gräsman <kim.grasman_at_gmail.com> wrote:
>> One snag is that it seems like authorization happens before the
>> precommit hook, so we can't lock users out of Subversion without also
>> locking them out of the gated commit. Now that we're aware of this, we
>> can figure out ways of countering it.
> This is not a problem for us, but it would be nice if one could
> somehow perform authorization both before and after the precommit
> hook.
Did you mean authentication or authorization?
In any case, both happen in the server (Apache or svnserve) before the
repository code that runs the hooks is invoked, and that's not likely to
change.
However, nothing is stopping you from giving the commit robot different
access rights than normal users, and even a different (possibly private)
URL to use for commits.
-- Brane
Received on 2014-09-12 14:49:03 CEST