[cvsnt] how enable checkout restriction
Gennady G. Marchenko
gennady.marchenko at iss.ru
Thu Aug 18 14:04:17 BST 2005
In first message (see below) I write version and platform:
1) Cvs client and server: linux/2.5.01 (Travis) Build 1976
CVSROOT/config (in repository):
AclMode=normal
2) Result of lsacl:
-------------------
"
File: Adacs DVR (vision).doc
user=g-marchenko,priority=1
none
"
-------------------
It's correct.
3) ADACS/CVS/fileattr.xml
---------------
<fileattr>
<file name="Adacs DVR (vision).doc">
<acl priority="1" user="g-marchenko">
<all deny="1" />
</acl>
</file>
<directory>
<acl user="g-marchenko">
<all />
</acl>
</directory>
</fileattr>
---------------
IMHO correct too
4) result of part "cvs -ttt co ADACS"
16:53:40: -> Tracelevel set to 3. PID is 5461
16:53:40: -> Session ID is 1555430484d490e3
16:53:40: -> Session time is Thu Aug 18 12:53:40 2005
16:53:40: -> Loading protocol /usr/local/cvs/lib/cvsnt/sserver_protocol
16:53:40: -> main loop with
CVSROOT=:sserver:g-marchenko at localhost:/home/cvs
16:53:40: -> get_config-data(sserver,StrictChecking,128)
16:53:40: -> Config file name /root/.cvs/sserver
16:53:40: ->
get_config-data(cvspass,:sserver:g-marchenko at localhost:/home/cvs,64)
16:53:40: -> Config file name /root/.cvs/cvspass
16:53:41: -> Encryption enabled
16:53:41: -> Compression enabled
16:53:41: -> Server codepage is ANSI_X3.4-1968
16:53:41: -> Client codepage is KOI8-R
16:53:41: -> Server->Client codepage translation is active
16:53:41: -> Server version is CVSNT 2.5.01 (Travis) Build 1976
16:53:41: -> Client version is CVSNT 2.5.01 (Travis) Build 1976
16:53:41: -> Requesting server cvsignore
------------
6:53:41: -> call_in_directory /home/cvs/ADACS/,ADACS/
16:53:41: -> unlink_file(CVS/Tag)
16:53:41: -> call_in_directory /home/cvs/ADACS/Adacs DVR
(vision).doc,ADACS/
16:53:41: -> rename(_new_Adacs DVR (vision).doc,Adacs DVR (vision).doc)
16:53:41: -> change_mode (Adacs DVR (vision).doc,u=rw,g=rw,o=rw,1)
16:53:41: -> Register(Adacs DVR (vision).doc, 1.5, Wed Mar 24 14:54:14
2004, -kb, , , , , )
16:53:41: -> call_in_directory
/home/cvs/ADACS/BuildMachineSpecification.doc,ADACS/
---------------
5) check: I delete file Adacs DVR (vision).doc
>cd ADACS
>rm Adacs\ DVR\ \(vision\).doc
And make update:
>Cvs -ttt update
-------------
cvs server: Updating .
16:59:01: -> call_in_directory /home/cvs/ADACS/,./
16:59:01: -> unlink_file(CVS/Tag)
cvs server: User g-marchenko is unable to read from /Adacs DVR (vision).doc
cvs server: Updating Docs
16:59:01: -> call_in_directory /home/cvs/ADACS/Docs/,Docs/
16:59:01: -> unlink_file(CVS/Tag)
cvs server: Updating bin
16:59:01: -> call_in_directory /home/cvs/ADACS/bin/,bin/
16:59:01: -> unlink_file(CVS/Tag)
-----------------
Wow, all work fine!
I don't try reproduce problem in testing version. And now I do this, and
report for you and cvsnt archive.
Big thanks for answer,
Gennady
-----Original Message-----
From: Arthur Barrett [mailto:arthur.barrett at march-hare.com]
Sent: Thursday, August 18, 2005 4:13 PM
To: Gennady G. Marchenko
Subject: RE: [cvsnt] how enable checkout restriction
Gennady,
Please provide more information. Eg. What CVSNT server and client
versions are you using ? What platform? What is the result of "cvs
lsacl" on the module/directory/file? If the results of "cvs lsacl" are
not correct what is the contents of fileattr.xml on the server? If the
results of "cvs lsacl" are correct then what is the result of a trace
during the checkout (cvs -ttt co test)? Can you reproduce the problem
using the latest testing versions (2.5.02.2061) by creating the test set
from scratch (including creating a new repository with 2.5.02.2061)?
Regards,
Arthur
-----Original Message-----
From: Gennady G. Marchenko [mailto:gennady.marchenko at iss.ru]
Sent: 18 August 2005 13:19
To: Arthur Barrett
Cc: cvsnt at cvsnt.org
Subject: RE: [cvsnt] how enable checkout restriction
Ok. I see this, but in these message example situation drop access for
all module, in my situation I need close one or two files in module for
read (see first message under). But my ACL's don't appling on checkout
operation if user has a read access to module.
Strage: on update operation all restriction works fine!
Thanks for help,
Gennady.
-----Original Message-----
From: Arthur Barrett [mailto:arthur.barrett at march-hare.com]
Sent: Thursday, August 18, 2005 3:39 PM
To: Gennady G. Marchenko
Subject: RE: [cvsnt] how enable checkout restriction
Gennady,
Please see one of the numerous previous posts about this issue.
http://www.cvsnt.org/pipermail/cvsnt/2005-June/019977.html
Regards,
Arthur
-----Original Message-----
From: cvsnt-bounces at cvsnt.org [mailto:cvsnt-bounces at cvsnt.org] On Behalf
Of Gennady G. Marchenko
Sent: 18 August 2005 11:29
To: cvsnt at cvsnt.org
Subject: [cvsnt] how enable checkout restriction
Can anyone answer on my question?
How to apply ACL deny restriction for checkout some files on module?
Thanks,
Gennady.
-----Original Message-----
From: cvsnt-bounces at cvsnt.org [mailto:cvsnt-bounces at cvsnt.org] On Behalf
Of Gennady G. Marchenko
Sent: Tuesday, August 16, 2005 6:44 PM
To: cvsnt at cvsnt.org
Subject: [cvsnt] ACL question: checkout perm
Hello All,
I am setup acl on linux/2.5.01 (Travis) Build 1976
But I have some question:
I have module test, and in this module 3 files file_ok,file_bad and
file. One user (test_user) must have permission on all in this module
without file_bad.
What I doing:
Cvs co test
Cvs chacl -a all -u test_user test
Cd test
Cvs chacl -a none -u test_user file_bad
But result of this command is strange:
User test_user can checkout module test _with_ file_bad (where ACL?!),
but can't commit and update file_bad (at this operation ACL work fine).
How I can setup ACL for checkout module test without file_bad?
Thanks for any help,
Gennady.
_______________________________________________
cvsnt mailing list
cvsnt at cvsnt.org http://www.cvsnt.org/cgi-bin/mailman/listinfo/cvsnt
_______________________________________________
cvsnt mailing list
cvsnt at cvsnt.org http://www.cvsnt.org/cgi-bin/mailman/listinfo/cvsnt
More information about the cvsnt
mailing list