> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
> Joshua Slive
> Sent: Tuesday, September 19, 2006 11:54 AM
> To: users@httpd.apache.org
> Subject: Re: [EMAIL PROTECTED] Subversion + AuthPAM with read and
> write groups through LimitExcept not working for me
>
> On 9/19/06, Schindler, Nathan
> <[EMAIL PROTECTED]> wrote:
>
> > #Begin Config
> > <Location /repos/repo1>
> > DAV svn
> > SVNPath /var/repos/repo1
> > SVNIndexXSLT "/svnindex.xsl"
> > SSLRequireSSL
> > AuthType Basic
> > AuthName "Authorization Realm"
> > AuthPAM_Enabled on
> > <LimitExcept GET PROPFIND OPTIONS REPORT>
> > Require group group1
> > </LimitExcept>
> > Require group group2
> > </Location>
>
> Put the Require group group2 inside a
> <Limit GET PROPFIND OPTIONS REPORT> ... </Limit>
>
> Joshua.
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> " from the digest: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
Thanks for the quick reply.
Your suggestion helps. However, I'm noticing that "Require group" is
causing problems. If I change that to "Require user", it works as
expected.
So, a little more about our groups:
We have multiple domains, so I have samba configured not to use the
default domain. Group names are in the format of <domain>+<group>.
Most of our groups have spaces in the name, so in apache's config, I'm
saying something like:
Require group "domain+group name"
Again, this works fine, until I try to use Limit and LimitExcept.
So, to recap, this configuration works:
<Location /repos/repo1>
DAV svn
SVNPath /var/repos/repo1
SVNIndexXSLT "/svnindex.xsl"
SSLRequireSSL
AuthType Basic
AuthName "Authorization Realm"
AuthPAM_Enabled on
<Limit GET PROPFIND OPTIONS REPORT>
Require user userfromgroup1 userfromgroup2
<LimitExcept GET PROPFIND OPTIONS REPORT>
Require user userfromgroup1
</LimitExcept>
</Location>
This configuration does not work:
<Location /repos/repo1>
DAV svn
SVNPath /var/repos/repo1
SVNIndexXSLT "/svnindex.xsl"
SSLRequireSSL
AuthType Basic
AuthName "Authorization Realm"
AuthPAM_Enabled on
<Limit GET PROPFIND OPTIONS REPORT>
Require group group1 group2
<LimitExcept GET PROPFIND OPTIONS REPORT>
Require group group1
</LimitExcept>
</Location>
I've also tried switching the order of Limit and LimitExcept (putting
LimitExcept first), but it doesn't seem to make a difference.
Thanks,
Nate
Note: The information contained in this message may be privileged and
confidential and thus protected from disclosure. If the reader of this
message is not the intended recipient, or an employee or agent responsible
for delivering this message to the intended recipient, you are hereby
notified that any dissemination, distribution or copying of this
communication is strictly prohibited. If you have received this
communication in error, please notify us immediately by replying to the
message and deleting it from your computer. Thank you.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
