You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@subversion.apache.org by Georg Viehöver <vi...@sigma-c.de> on 2006/03/08 15:49:02 UTC

Authz-Authorisation with svnserve 1.30

Hello,

I would like to configure our repository such that group1 has access to everything, group2 has access only to specific sub-directories. I have the following directory tree:
src/
	xy/
		include/
			abc.h
		src/
			abc.c

group to shall not have access to src, but to the includes.

The authz-file contains this:

[repository:/]
* = r
[repository:/src/xy]
group2 = 
[repository:/src/xy/include]
group2 = r

Using this authz-file, if group 2 does a checkout with "svn co svn://server/repository", the whole module "xy" is missing. So they dont have the include. The can do "svn co svn://server/repository/src/xy/include", but since this is part of a larger system, I dont want group2 to issue specific svn co commands.

An alternative authz file would be this:

[repository:/]
* = r
[repository:/src/xy/src]
group2 =

In this case, group2 is specifically denied access to the src subdirectory. This works fine with ""svn co svn://server/repository". However, if somebody chooses to add a subdirectory named "xy/confidential_documents", group2 can automatically access this. Of course, I would like to deny access automatically.

Question: Can this be done with authz?


Georg
  

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org