You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@subversion.apache.org by Sir Deets <si...@yahoo.com> on 2006/05/04 21:08:23 UTC

Restricting Access to a Local Subversion Repository

I am setting up a local FSFS subversion repository
that multiple users will be accessing via the file://
url. 

Under this scheme, how can I restrict access of
certain branches of the repository to certain users? 

I am really stumped, and would appreciate any help.

Thanks!

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org

Re: Restricting Access to a Local Subversion Repository

Posted by Ryan Schmidt <su...@ryandesign.com>.

On May 5, 2006, at 02:46, Andy Levy wrote:

>> I am setting up a local FSFS subversion repository
>> that multiple users will be accessing via the file://
>> url.
>>
>> Under this scheme, how can I restrict access of
>> certain branches of the repository to certain users?
>
> Only via a pre-commit hook script.
>
> The file:// access offers no security options comparable to what you
> can do with svnserve or apache.  Check out svnperms.py - but be aware
> that if users have filesystem access to the location that stores this
> script and its config file, you're insecure anyway.

Users require filesystem access to the repository files to use the  
file:// protocol. Therefore, even if svnperms.py or similar were  
installed, any user could copy the entire repository elsewhere,  
remove the script in their local copy, and access anything.

If you need access restrictions, do not use the file:// protocol. It  
is intended for a single developer, or for testing purposes.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org

Re: Restricting Access to a Local Subversion Repository

Posted by Andy Levy <an...@gmail.com>.

On 5/4/06, Sir Deets <si...@yahoo.com> wrote:
> I am setting up a local FSFS subversion repository
> that multiple users will be accessing via the file://
> url.
>
> Under this scheme, how can I restrict access of
> certain branches of the repository to certain users?

Only via a pre-commit hook script.

The file:// access offers no security options comparable to what you
can do with svnserve or apache.  Check out svnperms.py - but be aware
that if users have filesystem access to the location that stores this
script and its config file, you're insecure anyway.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org