Performance & Feature comparison of access control: SVNAuthz or hook-script

[Reinhard Brandstädter <re...@jku.at>]

Hello,

For a long time I'm using and administrating subversion repositories with 
access control handled by mod_dav_svn and SVNAuthzFile.
I'm aware that there's a lot of work for mod_dav_svn to do to check 
permissions.
Thus i was looking at a solution with hook scripts to maybe gain a performance 
and feature boost.

Currently I'm looking at these points:

1.) SVNAuthz doesn't allow wildcards in repository paths (or even better 
regular expressions).
It's not possible to specify:
[/tags/**/limited]
@group =
to disable access in any tags "limited" directory

2.) SVNAuthz is the only possible solution to limit read access to specific 
directories.

To overcome 1.) I could use a post commit script that checks the permissions 
(svnperms.py is such an example) but this can't solve 2.) so I will have to 
use SVNAuthz only, or a combination of both (which is a pain to administer 
because there are two locations to configure access)

How much is the performance impact of authorization with mod_dav_svn?
Here I've got a repository with lot's of directories and deep paths, not so 
many files. But i guess the directories are the problem as it's per-directory 
access control.

Tanks for any ideas on this,
Reinhard

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org