- 论坛徽章:
- 0
|
SVN+APACHE权限管理,终于花了两天的时间搞定了,郁闷NND.
httpd.conf的配置
DAV svn
SVNListParentPath on
AuthzSVNAccessFile /home/svn/conf/authz
SVNParentPath /home/svn
AuthType Basic
AuthName "subversion"
AuthUserFile /usr/local/apache/passwd
#
Require valid-user
#
说明:网上好多说AuthzSVNAccessFile和AuthUserFile不能并存,害的额绕了好多弯路。
Require valid-user
这个东西是用来提供匿名访问的,既所有的用户都不需要用户认证就可以读取工程源码与文档。这样会不安全,容易泄露源码。
认证文件的配置
vi /home/svn/conf/authz
[groups]
admin = admin
dev1 = jack, kate
dev2 = zbh2342, yingjianhh45, tantt, arei22
docs = bob, jane, mike
training = zak
# Default access rule for ALL repositories
# Everyone can read, admins can write, Dan German is excluded.
[/]
* = r
@admin = rw
dangerman =
# Allow developers complete access to their project repos
[project:/]
* = r /其他用户只有读权限
@admin = rw /admin,dev1这个两个组有读写权限
@dev1 = rw
对子项目的控制
[project:/DDWap] /对project/DDWap子目录有读写权限,下面类似。
@dev2 = rw
[project:/DDAdmin]
@dev2 = rw
[project:/DDSync]
@dev2 = rw
[project:/DDWeb]
@dev2 = rw
[project:/DDWeb]
@dev2 = rw
[project:/docs]
@dev2 = rw
[project:/thirdparty]
@dev2 = rw
我的系统管理的目录
[sysmanage:/]
* =
@admin = rw
# Give the doc people write access to all the docs folders
[doc:/]
@docs = rw
# Give trainees write access in the training repository only
#[TrainingRepos:/]
[email=#@training]#@training[/email]
= rw
#admin = rw
本文来自ChinaUnix博客,如果查看原文请点:http://blog.chinaunix.net/u/26978/showart_571205.html |
|