No group integraton into Subversion

XMLWordPrintable

    • Type: Bug
    • Resolution: Fixed
    • Priority: Medium
    • 1.2
    • Affects Version/s: None
    • Component/s: Integration - Apache/Subversion
    • None
    • Environment:

      Linux, Apache, mod_perl, Subversion 1.4.3

      Currently it is possible to globally authenticate subversion DAV based repositories against Crowd using the Auth::Crowd module. However if you wish to maintain more fine-grained group-based access (i.e. "members of group A have read-only access to sub-tree /foo/bar", etc) you need to maintain a separate file that duplicates the users and groups that are in Crowd (i.e. AuthzSVNAccessFile). This is messy, duplicates work and is error-prone.

      There are a couple of ways forward on this:

      • Implement CWD-391 and limit access within the Apache config via <location> blocks.
      • Implement CWD-204 and provide an example script that can generate the appropriate group mappings by querying the crowd server
      • Duplicate mod_authz_svn functionality in the Auth::Crowd::Module

              Assignee:
              Justen Stepka [Atlassian]
              Reporter:
              Steve Smith (Inactive)
              Votes:
              4 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated:
                Resolved: