I'm running trac 0.10.4. I have an authz file, and my general repository acl policy is that each module has a set of allowed users. I'd like only certain people to be able to create top-level modules (to avoid mistakes and the resulting mess, more than not trusting people's intent).
So, I have [myname:/] @all = r @foo_admins = rw [myname:/docs] * = @docpeople = rw and I also have groups. Things seem at least mostly ok with svn, and I'm having lots of trouble with trac's browser. I think I have two problems. One is the module_name parameter not getting passed, and I'm adding debugging to find that out. The other is that hte code in svn_authz.py seems to return the first match under a path, whereas I expect most-specific or last match. The subversion docs seem quite unclear about that happens in these acl rules when someone is in two groups. Alternatively, I'd appreciate suggestions for how to enable everyone to read the root while denying read access to all but a subgroup per module. I need to do this in a way which is robust against adding unauthorized users - if I add an account and forget to put them in some unauth group, and that results in being able to see documents they shouldn't, that's not ok. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Trac Users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/trac-users?hl=en -~----------~----~----~----~------~----~------~--~---
