You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@subversion.apache.org by Andrey Repin <an...@freemail.ru> on 2009/04/07 16:31:46 UTC

Re: [Solved] Access rules (AuthzSVNAccessFile) without redundancy?

Greetings, Andrey Repin!

> It is possible to have AuthzSVNAccessFile rules applied without redundant
> bloating of that file?
> I already have my users authenticated against given group in users registry

> <IfModule sspi_auth_module>
>     Allow from all

>     AuthName "Subversion repository"
>     AuthType SSPI
>     SSPIAuth On
>     SSPIAuthoritative On
>     SSPIOfferBasic On
>     SSPIOmitDomain On
>     SSPIUsernameCase lower
>     SSPIBasicPreferred On

>     # only developers may access the repository
>     Require group "DAEMON1\CVS"

>     # And they should obey to SVN user permissions file
>     <IfModule authz_svn_module>
>         AuthzSVNAccessFile "C:/home/svn/.registry"
>     </IfModule>
> </IfModule>

> But I need to make one user to have only read-only access, so i can use it
> for exports... with relative safety.
> It is possible to do without hooks, using only authorization/authentication
> mechanisms?
> I've tried

> [/]
> * = rw
> svnprojects = r

> But "* = rw" takes precedence over specific user rights :/

[/]
* = r
~svnprojects = rw

Kitties! Or kudos... whatever you prefer! To the SVNBOOK authors.


--
WBR,
 Andrey Repin (anrdaemon@freemail.ru) 07.04.2009, <20:29>

Sorry for my terrible english...

------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=1579642

To unsubscribe from this discussion, e-mail: [users-unsubscribe@subversion.tigris.org].