Issue 71 in svnbook: Description of permissions in authz incorrect for multiple matching lines

svnbook at googlecode.com svnbook at googlecode.com
Tue Jan 26 10:53:33 CST 2010


Status: New
Owner: ----
Labels: Type-Defect Priority-Medium

New issue 71 by cammidge: Description of permissions in authz incorrect for  
multiple matching lines
http://code.google.com/p/svnbook/issues/detail?id=71

In ch06-server-configuration.xml it stands written:

"
    [groups]
    paint-developers = frank, sally, jane

    [paint:/projects/paint]
    jane = r
    @paint-developers = rw

    Another important fact is that the first matching rule is the one
    which gets applied to a user. In the prior example, even though
    Jane is a member of the paint-developers group (which has
    read/write access), the jane = r rule will be discovered and
    matched before the group rule, thus denying Jane write access. "


This does not match what is happening in the software.  The permissions
granted to a user are a combination of the permissions for matching lines.
  In this case, Jane will get read and read/write permissions, so ending up
with read/write permission.  Permissions are added by each line, and not
taken away.  All rules are considered if the user matches, irrespective of
their order.

I've attached a patch with an update to update the text above, if somebody
with appropriate powers could review it and apply it.

Also see:

A recent post on this issue:
http://svn.haxx.se/dev/archive-2010-01/0340.shtml

Older posts about this issue:
http://osdir.com/ml/version-control.subversion.book/2008-06/msg00101.html
http://svn.haxx.se/dev/archive-2009-01/0606.shtml
http://www.red-bean.com/pipermail/svnbook-dev/2009-May/005113.html

And an old bug covering this issue that was closed with an incorrect
documentation update:
http://svnbook.red-bean.com/trac/ticket/108



Attachments:
	ch06-server-configuration.diff  1.1 KB

--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings




More information about the svnbook-dev mailing list