Trac permissions

[ssabhcew@…]

Hi, I have this situation: We use only one repo in svn. The authentication for trac and svn is one file. For keep different subproject not to be seen by everybody, I'm using:

AuthzSVNAccessFile = /srv/svn/config/authz

And I've created groups and different permissions for different developers.

But I was surprizsd that when you log into trac, you can browse the source, that is forbidden for you in svn.

How can I made trac read the AuthzSVNAccessFile file and follow its permitions. Or should I set somehow permitions on every subfolder/project in trac configs ?

[ssabchew@…]

Well it seams that trac 'understand' only permissions by location like that

/Test @dev = rw @all = r

If you try to specify the repo like this:

[myrepo:/Test] @dev = rw @all = r

it get confused

Even in the apache config I specified:

<Location /trac> ...

PythonOption? TracEnvParentDir? /srv/trac

... </Location>

As there will be possibility for using more than one trac. And the svn config is configured for multiple repos, instead of only one (even for now we use one).
I use SVNParentPath instead SVNPath

P.S. I put a wrong mail when i made the ticket :-(

[sid]

Did you try updating to the latest version? It seems that this may not have been integrated in your version.... See also wiki:TracDev/SecurityBranch

[hyuga <hyugaricdeau@…>]

You need to point Trac to the authz file with the authz_file option in the [trac] section of your trac.ini file. At any rate, this is a configuration issue.