[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Access control to a repository without root access
From: |
Max Bowsher |
Subject: |
Re: Access control to a repository without root access |
Date: |
Mon, 26 May 2003 16:48:32 +0100 |
address@hidden wrote:
> Hi all,
>
> I'm looking into building a development center for my web-based team, and
of
> course such a system needs a central code server, for which I thought CVS
> would be good.
>
> I'm not hosting anything on my own server - the host I'm with has kindly
set
> up a repository for me - so I don't have root access, and therefore am
> unable to set up users and groups.
>
> The rest of my system is going to be based on PHP/MySQL, and users will be
> logged in through that. The user information is all stored in the
database,
> and users will be added or removed through a web-based interface; the
> underlying system user list doesn't get touched (as I already said, I
don't
> have access to it).
>
> Is there any way I can:
>
> (a) allow users to be authenticated by a PHP script that gets their info
from
> the MySQL database (probably using pserver - yes I know it's not secure,
but
> SSH requires actual users on the system, right?)
No way that I know of.
> (b) have CVS disallow read/write operations on given files for given users
> even when those files have full read/write permissions set for everyone?
A suitable commitinfo script should do the job. There is a script called
cvs_acls included with cvs.
Max.