Details
-
Bug
-
Resolution: Handled by Support
-
Medium
-
None
-
1.5.1
-
Atlassian Crowd Version: 1.5.1 (Build:#341 - Oct 13, 2008)
Standalone Distribution
Java(TM) 2 Runtime Environment, Standard Edition (build 1.5.0_15-b04)
Apache 2.0.63
Subversion 1.5.0
Description
Mixed access to a Subversion repository on directory level permissions doesn't work.
I have installed the Apache Connector and it works fine.
I was also able to install Apache::CrowdAuthz for doing the authorization.
It works all fine if you do only restricted access with "require valid-user" in the configuration.
But what it needs is
- anonymous access to some directories
- restricted access to some directories based on group membership
Subversion configures that normally by using: "Satisfy Any" AND "Require valid-user" (see Example 6.3. A sample configuration for mixed authenticated/anonymous access )
Example Config File: httpd.conf
<Location / >
AuthName crowd
AuthType Basic
PerlAuthenHandler Apache::CrowdAuth
PerlSetVar CrowdAppName subversion
PerlSetVar CrowdAppPassword pwd
PerlSetVar CrowdSOAPURL http://localhost:8095/crowd/services/SecurityServer
PerlSetVar CrowdCacheEnabled off
PerlSetVar CrowdCacheLocation tmp/CrowdAuth
PerlSetVar CrowdCacheExpiry 300
PerlAuthzHandler Apache::CrowdAuthz
PerlSetVar CrowdAuthzSVNAccessFile C:/Programs/Apache2.0/conf/dav_svn.authz
DAV svn
SVNPath D:\Data\SubversionRepositories\herasaf
SVNPathAuthz on
Satisfy Any
Require valid-user
</Location>
Example Config File dav_svn.authz:
Members of the subversion-comitters group can
read to the education folder
[/education]
@subversion-comitters = r
- =
Members of the subversion-comitters group can
read to the research folder
[/research]
@subversion-comitters = r
- =
Everyone has read access to the repository
(unless modified below).
[/]
- = r
The Problem is that it always permits read access to anonymous users and doesn't ask for authentication when accessing one of the restricted folders.