Uploaded image for project: 'Crowd Data Center'
  1. Crowd Data Center
  2. CWD-1699

Subversion authorization with nested groups not working

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Medium Medium
    • 2.1
    • 2.0.1
    • Integration - Apache/Subversion
    • None

    • Java Version:
      1.6.0_16
      Java Vendor:
      Sun Microsystems Inc.
      JVM Version:
      14.2-b01
      JVM Vendor:
      Sun Microsystems Inc.
      JVM Runtime:
      Java HotSpot(TM) 64-Bit Server VM

      Authorization in Subversion doesn't work if users are in nested groups. It works if they are directly in the "subversion" group that is mapped to the subversion application.

      We are using the dav_svn.authz file to configure access like this:

      1. Everyone has read access to the repository
      2. (unless modified below).
        [/]
      • = r
      1. Members of the subversion crowd group can
      2. read and write to the hole repository project
        [/]
        @subversion = rw

      If users belong directly to group "subversion", they get access, but if they are in a nested group inside "subversion" group, authorization fails.

            [CWD-1699] Subversion authorization with nested groups not working

            Monique Khairuliana (Inactive) made changes -
            Workflow Original: Simplified Crowd Development Workflow v2 - restricted [ 1509328 ] New: JAC Bug Workflow v3 [ 3364506 ]
            Status Original: Resolved [ 5 ] New: Closed [ 6 ]
            Owen made changes -
            Workflow Original: Simplified Crowd Development Workflow v2 [ 1391126 ] New: Simplified Crowd Development Workflow v2 - restricted [ 1509328 ]
            Owen made changes -
            Workflow Original: Crowd Development Workflow v2 [ 272061 ] New: Simplified Crowd Development Workflow v2 [ 1391126 ]
            jawong.adm made changes -
            Workflow Original: JIRA Bug Workflow v2 [ 184222 ] New: Crowd Development Workflow v2 [ 272061 ]
            Adrian Hempel [Atlassian] made changes -
            Resolution New: Fixed [ 1 ]
            Status Original: In Progress [ 3 ] New: Resolved [ 5 ]
            Adrian Hempel [Atlassian] made changes -
            Status Original: Open [ 1 ] New: In Progress [ 3 ]
            shihab made changes -
            Component/s New: Integration - Apache/Subversion [ 11872 ]
            Component/s Original: Authentication/Security [ 12726 ]
            Assignee New: Adrian Hempel [Atlassian] [ ahempel ]
            Adrian Hempel [Atlassian] made changes -
            Fix Version/s New: 2.1 [ 14496 ]

            David O'Flynn [Atlassian] added a comment -

            With Crowd 2.1, we'll be providing a REST API that correctly resolves nesting. We're also working on a version of the svn connector that will use this API and so do nesting properly.

            David O'Flynn [Atlassian] added a comment - With Crowd 2.1, we'll be providing a REST API that correctly resolves nesting. We're also working on a version of the svn connector that will use this API and so do nesting properly.

            uvoellger added a comment -

            This is very painful. Providing nested groups but supporting it correctly in neither SVN connector nor Confluence (see http://jira.atlassian.com/browse/CONF-19431) makes this feature useless.

            uvoellger added a comment - This is very painful. Providing nested groups but supporting it correctly in neither SVN connector nor Confluence (see http://jira.atlassian.com/browse/CONF-19431 ) makes this feature useless.

              ahempel Adrian Hempel [Atlassian]
              87c5f05c9ee9 Otto Chrons
              Affected customers:
              13 This affects my team
              Watchers:
              12 Start watching this issue

                Created:
                Updated:
                Resolved: