Colleagues, I use subversion-1.7.2 with cyrus-sasl-2.1.25 for Kerberos (GSSAPI) authentication. I have the following in svnserve.conf:
[general] auth-access = write [general] realm = SIBPTUS.TOMSK.RU [sasl] use-sasl = true Everything works smoothly for the users (Kerberos principals) in the SIBPTUS.TOMSK.RU realm. How can I give repository access (authorization) to users in other realms which are trusted by the SIBPTUS.TOMSK.RU realm? It seems that "auth-access = write" is not sufficient to give them access. I would not mind if all the foreign principals were granted write access to the repository with their subversion ids (e.g. in logs) being '[email protected]'. Is this possible? TIA for any input. -- Victor Sudakov, VAS4-RIPE, VAS47-RIPN sip:[email protected]
