Issues related to authentication and authorization in a centralized workflow
Marius Kruger
amanic at gmail.com
Thu Jan 8 15:02:20 GMT 2009
2009/1/8 Marcin Zajaczkowski <mszpak at wp.pl>
> 1. Is there something more I can do (to achieve similar to SVN centralized
> environment) than use SSH and remote bzr calling with bzr_ssh_path_limiter
> and SGUID?
I have had limited success using bzr+https:// going through apache with
config like so:
==
RewriteRule ^(.*/|)\.bzr/smart$
/opt/scmbzr/cgi-bin/bzr-smart.fcgi
Order allow,deny
allow from all
# how to authenticate a user
AuthType Basic
AuthName "Document repository"
AuthUserFile /var/lib/bzrroot-authfile
# only authenticated users may access the repository
Require valid-user
==
with bzrroot-authfile:
==
username=encripted_password(I'm not sure how)
...
==
*I could not get per user config* *working*, but I suppose one could write a
custom bzr-smart.fcgi which can do that using a access config file (used by
AuthzSVNAccessFile), eg:
==
[groups]
project1-readers = user1,anonymous
project1-committers = user2
[project1:/]
@project1-committers = rw
@project1-readers = r
* = r
==
regards
marius
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.ubuntu.com/archives/bazaar/attachments/20090108/0417f50d/attachment-0001.htm
More information about the bazaar
mailing list