Uploaded image for project: 'Crowd Data Center'
  1. Crowd Data Center
  2. CWD-392

No group integraton into Subversion

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Medium
    • 1.2
    • None
    • Integration - Apache/Subversion
    • None

    • Linux, Apache, mod_perl, Subversion 1.4.3

    Description

      Currently it is possible to globally authenticate subversion DAV based repositories against Crowd using the Auth::Crowd module. However if you wish to maintain more fine-grained group-based access (i.e. "members of group A have read-only access to sub-tree /foo/bar", etc) you need to maintain a separate file that duplicates the users and groups that are in Crowd (i.e. AuthzSVNAccessFile). This is messy, duplicates work and is error-prone.

      There are a couple of ways forward on this:

      • Implement CWD-391 and limit access within the Apache config via <location> blocks.
      • Implement CWD-204 and provide an example script that can generate the appropriate group mappings by querying the crowd server
      • Duplicate mod_authz_svn functionality in the Auth::Crowd::Module

      Attachments

        Issue Links

          is cloned from

          Suggestion - CWD-391 Apache module should be able to limit access based on group

          • Closed

          Activity

            People

              justen.stepka@atlassian.com Justen Stepka [Atlassian]
              ssmith Steve Smith (Inactive)
              Votes:
              4 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: