[SVN-4762] authz doesn't combine global and repository rules - ASF JIRA

Voters

Watch issue

Watchers

Link

Clone

Update Comment Author

Replace String in Comment

Update Comment Visibility

Delete Comments

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.10.x, 1.10.1, 1.11.x
Fix Version/s: 1.14.1
Component/s: libsvn_repos
Labels:
None

Description

As reported on users:

https://lists.apache.org/thread.html/1aef30b70b4063ecfa24f17be0e1c9998837b4f8b3f7e8b03de4e240@%3Cusers.subversion.apache.org%3E

The new 1.10 authz implementation doesn't correctly combine global rules such as [/foo] with repository rules such as [repo:/foo]. The result is that authz rules result grant less access in 1.10 than those same rules in 1.9.

Regression test added in https://svn.apache.org/r1835049

Attachments

Add Link

Issue Links

is duplicated by

SVN-4865 "[/] @group = rw" not working after upgrade to SVN 1.13

Closed

Delete this link

mentioned in: Page Loading...

Delete this link

Activity

Comment

$i18n.getText('security.level.explanation', $currentSelection) Viewable by All Users

Cancel

People

Assignee:

Stefan Sperling

Reporter:

Philip Martin

Votes:

2 Vote for this issue

Watchers:

5 Start watching this issue

Dates

Created:

10/Jul/18 20:30

Updated:

11/Feb/21 08:53

Resolved:

11/Feb/21 08:53

Agile

View on Board