Issue 179 in svnbook: BUG: path-based authz rule matching description is incorrect
stsp at elego.de
Tue Dec 18 11:44:10 CST 2012
On Tue, Dec 18, 2012 at 04:57:39PM +0000, svnbook at googlecode.com wrote:
> Status: New
> Owner: cmpil... at gmail.com
> Labels: Type-Defect Priority-Medium Milestone-en-1.6
> New issue 179 by cmpil... at gmail.com: BUG: path-based authz rule
> matching description is incorrect
> Reported by Mark Cammidge <mark at peralex.com>:
> In the section on path-base authz rules:
> it is written that:
> "Another important fact is that the first matching rule is the one which
> gets applied to a user. In the prior example, even though Jane is a
> member of the paint-developers group (which has read/write access), the
> jane = r rule will be discovered and matched before the group rule, thus
> denying Jane write access."
This has already been fixed hasn't it?
Quoting this page:
Another important fact is that group permissions are not overridden by
individual user permissions. Rather, the combination of all matching
permissions is granted. In the prior example, Jane is a member of the
paint-developers group, which has read/write access. Combined with the jane = r
rule, this still gives Jane read/write access. Permissions for group members
can only be extended beyond the permissions the group already has.
Perhaps Mark was looking at an outdated version of the book?
More information about the svnbook-dev