Modify ↓
Opened 12 years ago
Closed 7 years ago
#10727 closed defect (wontfix)
AuthzSourcePolicy differs from mod_dav_svn for the anonymous user
| Reported by: | Owned by: | ||
|---|---|---|---|
| Priority: | low | Milestone: | |
| Component: | version control/browser | Version: | 0.12.2 |
| Severity: | normal | Keywords: | svnauthz, authzsourcepolicy |
| Cc: | Adrian.Pop@… | Branch: | |
| Release Notes: | |||
| API Changes: | |||
| Internal Changes: | |||
Description
Consider this authz file:
[groups] role22 = anonymous role4 = someuser role21 = @role21,@role4 role59 = goodguy [name:/] @role21 = r @role59 = rw [name:/branches/somesecret] @role21 = @role59 = rw
In this case the anonymous user should be denied access to /branches/somesecret in the browser but is not.
If i replace anonymous with $anonymous, then it works fine.
However mod_dav_svn works with anonymous without $ in front.
Attachments (0)
Change History (5)
comment:1 by , 12 years ago
comment:2 by , 12 years ago
| Keywords: | svnauthz verify added |
|---|
comment:3 by , 11 years ago
| Milestone: | → undecided |
|---|
All the tickets for {20} from last year have probably been seen multiple times by now, yet are still to be triaged…
comment:4 by , 11 years ago
| Keywords: | authzsourcepolicy added |
|---|
comment:5 by , 7 years ago
| Keywords: | verify removed |
|---|---|
| Milestone: | undecided |
| Resolution: | → wontfix |
| Status: | new → closed |
anonymous and authenticated are reversed in Trac. Authenticated user shouldn't be named anonymous in Trac.
Note:
See TracTickets
for help on using tickets.
Duh, I made an error. It should be of course: