You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@subversion.apache.org by cm...@apache.org on 2013/01/16 20:38:08 UTC
svn commit: r1434125 - /subversion/trunk/subversion/mod_authz_svn/INSTALL
Author: cmpilato
Date: Wed Jan 16 19:38:08 2013
New Revision: 1434125
URL: http://svn.apache.org/viewvc?rev=1434125&view=rev
Log:
* subversion/mod_authz_svn/INSTALL
Add docs and examples for using authz on the "Collection of
Repositories" repository listing view.
Patch by: Thomas Ã…kesson <thomas.akesson{_AT_}simonsoft.se>
(Tweaked by me.)
Modified:
subversion/trunk/subversion/mod_authz_svn/INSTALL
Modified: subversion/trunk/subversion/mod_authz_svn/INSTALL
URL: http://svn.apache.org/viewvc/subversion/trunk/subversion/mod_authz_svn/INSTALL?rev=1434125&r1=1434124&r2=1434125&view=diff
==============================================================================
--- subversion/trunk/subversion/mod_authz_svn/INSTALL (original)
+++ subversion/trunk/subversion/mod_authz_svn/INSTALL Wed Jan 16 19:38:08 2013
@@ -144,6 +144,43 @@ II. Configuration
NOTE: You should include rules in your authz file to restirct access
to the authz file as desired.
+ G. Example 7: Authenticated access to "Collection of Repositories"
+
+ The "Collection of Repositories" is filtered based on read access to
+ the root of each repository, i.e. consistent with the directory lists
+ within repositories. If read access is restricted in repository roots,
+ it is typically desirable to require authentication for "Collection of
+ Repositories" in order to display only those repositories which the
+ user could successfully navigate into.
+
+ This is accomplished by specifying "Satisfy All" (which is the default
+ setting):
+
+ <Location /svn>
+ DAV svn
+ SVNParentPath /path/to/reposparent
+
+ AuthType Basic
+ AuthName "Subversion repository"
+ AuthUserFile /path/to/htpasswd/file
+
+ AuthzSVNAccessFile /path/to/access/file
+ # Implicit Satisfy All
+ Require valid-user
+ </Location>
+
+ If the same server must be able to serve paths with anonymous access,
+ it can be defined using an additional location.
+
+ <LocationMatch "^/svn/.+">
+ Satisfy Any
+ Require valid-user
+ </LocationMatch>
+
+ The "Require" statement in the previous example is not strictly
+ needed, but has been included for clarity.
+
+
2. Specifying permissions
The file format of the access file looks like this: