--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: apache2.2-common: mod_auth_basic breaks svn path based authorizations
- From: Erwan David <erwan.david@trusted-logic.com>
- Date: Thu, 06 Nov 2008 14:18:43 +0100
- Message-id: <20081106131843.2363.60363.reportbug@svn2.trusted-logic.fr>
Package: apache2.2-common
Version: 2.2.3-4+etch6
Severity: normal
Since last upgrades my subversion path based authorizations are broken.
Here is the setting :
A svn repository defined as follows in apache conf :
<location /test>
Order allow,deny
Allow from all
DAV svn
SVNPath /media/crypt/svn/repositories/test
SVNAutoversioning on
AuthzSVNAccessFile /media/crypt/svn/auth-files/test/auth
Satisfy Any
Require valid-user
AuthType Basic
AuthName "SVN Subversion Repository"
AuthUserFile /media/crypt/svn/admin/passwds
</location>
A /media/crypt/svn/auth-files/test/auth as follows
[test:/]
admin = rw
[test:/sub]
user = rw
Since latest apache update, user cannot update his svn working copy, he gets a
Error: Server sent unexpected return value (403 Forbidden) in response to OPTIONS
Error: request for 'https://svn.domain.com/test'
Finished!:
Since subversion did not change the change comes from latest apache2
authorization modules.
-- System Information:
Debian Release: 4.0
APT prefers stable
APT policy: (990, 'stable')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-6-686
Locale: LANG=C, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Versions of packages apache2.2-common depends on:
ii apache2-utils 2.2.3-4+etch6 utility programs for webservers
ii libmagic1 4.17-5etch3 File type determination library us
ii lsb-base 3.1-23.2etch1 Linux Standard Base 3.1 init scrip
ii mime-support 3.39-1 MIME files 'mime.types' & 'mailcap
ii net-tools 1.60-17 The NET-3 networking toolkit
ii procps 1:3.2.7-3 /proc file system utilities
apache2.2-common recommends no packages.
-- no debconf information
--- End Message ---