You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@subversion.apache.org by Apache subversion Wiki <co...@subversion.apache.org> on 2012/11/05 23:44:09 UTC

[Subversion Wiki] Trivial Update of "Inheritable-Ignores-AutoProps" by DanielShahaf

Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Subversion Wiki" for change notification.

The "Inheritable-Ignores-AutoProps" page has been changed by DanielShahaf:
http://wiki.apache.org/subversion/Inheritable-Ignores-AutoProps?action=diff&rev1=12&rev2=13

Comment:
clients capability reports are untrusted

  
  The configuration dictated by the "svn:auto-props" and "svn:global-ignores" properties can at best be only a suggestion to the client. Older clients will obviously not understand the meaning of these properties and as open source software it is relatively easy for a malicious user to modify a client to ignore these special properties.  Given this reality, server-side enforcement of desired behaviors (where possible, and often via hook scripts) is still strongly recommended.
  
- The new "ephemeral transaction properties" feature (see http://subversion.tigris.org/issues/show_bug.cgi?id=4124) provide a simple way for servers to disallow commits from clients which don't understand svn:auto-props. Thus there is no new capability string required for this feature.
+ The new "ephemeral transaction properties" feature (see http://subversion.tigris.org/issues/show_bug.cgi?id=4124) provide a simple way for servers to disallow commits from clients which don't claim to understand svn:auto-props. Thus there is no new capability string required for this feature.
  }}}
  === Auto-Props Format ===
  The values of the svn:auto-props property are as per the existing run-time configuration auto-props, they contain "any number of key-value pairs in the format ''PATTERN'' = ''PROPNAME''=''VALUE''[;''PROPNAME''=''VALUE''...], where ''PATTERN'' is a file pattern that matches one or more filenames and the rest of the line is a semicolon-delimited set of property assignments. (If you need to use a semicolon in your property's name or value, you can escape it by doubling it.)")<<FootNote(Thank you 'Version Control with Subversion' book, http://svnbook.red-bean.com/en/1.7/svn-book.html#svn.advanced.confarea)>>