subversion-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ray Rashif <schivmeis...@gmail.com>
Subject [svn-policy] Anonymous read in toplevel but deny read deeper
Date Fri, 01 Oct 2010 11:25:32 GMT
Hi all

I have something like the following:

[groups]
admin = joe
contrib = susan, mark
devs = andy, jane

[/]
* = r

[/trunk]
@admin = rw

[/trunk/contrib]
@contrib = rw
@devs = rw

[/trunk/dev]
* =
@contrib =
@devs = rw

Unfortunately, authentication does not work, and anyone can read
'/trunk/dev' and I guess that is due to '* = r' in toplevel.
Strangely, it works for groups, the only change being:

[/]
@contrib = r

And nothing for '*' anywhere, that would prevent anyone in the group
'contrib' to pull '/trunk/dev' in a full checkout. But this then locks
out anonymous read-only full checkouts (I can have '* = r' for each
dir except 'dev'), which I do not want.

Thanks beforehand!


--
GPG/PGP ID: B42DDCAD

Mime
View raw message