You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@subversion.apache.org by Dolf Andringa <da...@proigia.nl> on 2011/11/24 14:07:57 UTC

Apache and subversion per directory authorizations with different group source.

Dear people,

I have setup Apache 2.2 and subversion. I'm using an Apache module for
authentication and authzsvnaccess to define groups an manage per directory
authorizations for them. But this requires me to define the groups and
memberships in the authzsvnaccess file.
I already have setup a different authorization source in Apache for other
sites/directories (mod-auth-mysql).
Is it possible to use the authzsvnaccess file for defining which users and
groups have what access to which directory, but refer to the group names as
defined in the other authorization module? Right now I need to manage group
memberships both in a database and in the authzsvnaccess file, while I need
to maintain the usernames and password only in the database.
Cheers,

Dolf andringa.

Re: Apache and subversion per directory authorizations with different group source.

Posted by Jan Keirse <ja...@tvh.com>.

2011/11/24 Dolf Andringa <da...@proigia.nl>
>
> Dear people,
>
> I have setup Apache 2.2 and subversion. I'm using an Apache module for authentication and authzsvnaccess to define groups an manage per directory authorizations for them. But this requires me to define the groups and memberships in the authzsvnaccess file.
> I already have setup a different authorization source in Apache for other sites/directories (mod-auth-mysql).
> Is it possible to use the authzsvnaccess file for defining which users and groups have what access to which directory, but refer to the group names as defined in the other authorization module? Right now I need to manage group memberships both in a database and in the authzsvnaccess file, while I need to maintain the usernames and password only in the database.He only solution today is to write a piece of code that exports the groups

As far as I know the only solution available today is to write a tiny
application that exports the groups from the mysql database and builds
an authz file based on that. If you know a little coding (in any
language that can connect to mysql) that shouldn't be very difficult.
The groups a user belongs to are not passed to the authz module. All
it knows is the username.