You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@subversion.apache.org by cm...@apache.org on 2013/01/16 20:38:08 UTC

svn commit: r1434125 - /subversion/trunk/subversion/mod_authz_svn/INSTALL

Author: cmpilato
Date: Wed Jan 16 19:38:08 2013
New Revision: 1434125

URL: http://svn.apache.org/viewvc?rev=1434125&view=rev
Log:
* subversion/mod_authz_svn/INSTALL
  Add docs and examples for using authz on the "Collection of
  Repositories" repository listing view.

Patch by: Thomas Ã…kesson <thomas.akesson{_AT_}simonsoft.se>
          (Tweaked by me.)


Modified:
    subversion/trunk/subversion/mod_authz_svn/INSTALL

Modified: subversion/trunk/subversion/mod_authz_svn/INSTALL
URL: http://svn.apache.org/viewvc/subversion/trunk/subversion/mod_authz_svn/INSTALL?rev=1434125&r1=1434124&r2=1434125&view=diff
==============================================================================
--- subversion/trunk/subversion/mod_authz_svn/INSTALL (original)
+++ subversion/trunk/subversion/mod_authz_svn/INSTALL Wed Jan 16 19:38:08 2013
@@ -144,6 +144,43 @@ II.   Configuration
          NOTE: You should include rules in your authz file to restirct access
          to the authz file as desired.  
 
+      G. Example 7: Authenticated access to "Collection of Repositories"
+
+         The "Collection of Repositories" is filtered based on read access to
+         the root of each repository, i.e. consistent with the directory lists
+         within repositories.  If read access is restricted in repository roots,
+         it is typically desirable to require authentication for "Collection of
+         Repositories" in order to display only those repositories which the 
+         user could successfully navigate into.
+
+         This is accomplished by specifying "Satisfy All" (which is the default
+         setting):
+
+         <Location /svn>
+           DAV svn
+           SVNParentPath /path/to/reposparent
+
+           AuthType Basic
+           AuthName "Subversion repository"
+           AuthUserFile /path/to/htpasswd/file
+
+           AuthzSVNAccessFile /path/to/access/file
+           # Implicit Satisfy All
+           Require valid-user
+         </Location>
+         
+         If the same server must be able to serve paths with anonymous access,
+         it can be defined using an additional location.
+         
+         <LocationMatch "^/svn/.+">
+           Satisfy Any
+           Require valid-user
+         </LocationMatch>
+
+         The "Require" statement in the previous example is not strictly
+         needed, but has been included for clarity.
+
+
    2. Specifying permissions
 
       The file format of the access file looks like this: