You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@subversion.apache.org by iv...@apache.org on 2013/01/04 12:21:49 UTC

svn commit: r1428793 - /subversion/trunk/subversion/mod_dav_svn/authz.c

Author: ivan
Date: Fri Jan  4 11:21:49 2013
New Revision: 1428793

URL: http://svn.apache.org/viewvc?rev=1428793&view=rev
Log:
Follow-up to r140184: Fix repositories list authorization check when 
SVNPathzAuthz short_circuit and AuthzSVNReposRelativeAccessFile used
together.

* subversion/mod_dav_svn/authz.c
  (dav_svn__allow_list_repos): Do not use short_circuit mode: bypass 
   provider expects R to be request to the repository to find 
   repository relative authorization file.

Modified:
    subversion/trunk/subversion/mod_dav_svn/authz.c

Modified: subversion/trunk/subversion/mod_dav_svn/authz.c
URL: http://svn.apache.org/viewvc/subversion/trunk/subversion/mod_dav_svn/authz.c?rev=1428793&r1=1428792&r2=1428793&view=diff
==============================================================================
--- subversion/trunk/subversion/mod_dav_svn/authz.c (original)
+++ subversion/trunk/subversion/mod_dav_svn/authz.c Fri Jan  4 11:21:49 2013
@@ -105,7 +105,6 @@ dav_svn__allow_list_repos(request_rec *r
   const char *uri;
   request_rec *subreq;
   svn_boolean_t allowed = FALSE;
-  authz_svn__subreq_bypass_func_t allow_read_bypass = NULL;
 
   /* Easy out:  if the admin has explicitly set 'SVNPathAuthz Off',
      then this whole callback does nothing. */
@@ -114,19 +113,8 @@ dav_svn__allow_list_repos(request_rec *r
       return TRUE;
     }
 
-  /* If bypass is specified and authz has exported the provider.
-     Otherwise, we fall through to the full version.  This should be
-     safer than allowing or disallowing all accesses if there is a
-     configuration error.
-     XXX: Is this the proper thing to do in this case? */
-  allow_read_bypass = dav_svn__get_pathauthz_bypass(r);
-  if (allow_read_bypass != NULL)
-    {
-      if (allow_read_bypass(r, "/", repos_name) == OK)
-        return TRUE;
-      else
-        return FALSE;
-    }
+  /* Do not use short_circuit mode: bypass provider expects R to be request to
+     the repository to find repository relative authorization file. */
 
   /* Build a Public Resource uri representing repository root. */
   uri =  svn_urlpath__join(dav_svn__get_root_dir(r),