Feature #2315
openDifferent repository access rights for different users
0%
Description
Currently Redmine uses one login and password for the repository per project. However, different users can have different rights for repository browsing. And if repository browsing is enabled in Redmine, they could access restricted files.
It would be great to have means to assign different rights for repository browsing for different users.
I beleive it could be easily done by specifying repository access credentials (login and password) not only per project, but also per user\group. So each user can log into repository by her own login and password. And repository seamlessly apply all file browsing restriction to that user.
Updated by Markus Knittig almost 16 years ago
Redmine already has this feature if your use Redmine's advanced Subversion integration.
Updated by Dmitry Kochin almost 16 years ago
Unfortunately I don't have Apache installed on the server running Subversion. I propose to support per user Subversion credentials with svn:// protocol.
Updated by Mathias Kühn almost 16 years ago
Markus Schlichting: I've just read this post and i'm not sure i really understand that feature. The wiki just explains how to apply authentication to a repository and how to filter based on the fact that the user is either member of the project or not. But the part that's missing is to respect any other ACLs which may be applied to the repository content itself.
I entered a ticket #2004 yesterday, before i found this one. I think mine is a duplication of Dimitrys question. I think we need to work this out since it is a feature of at least subversion which is circumvented by the way redmine is accessing the repository.
In addition, i did not find any reference on how to identify the user browsing the source from redmine within the repository. I think it will always be the user entered in the projects repository settings, right?
Updated by Lluís Vilanova about 15 years ago
Mathias Kühn wrote:
I entered a ticket #2004 yesterday, before i found this one. I think mine is a duplication of Dimitrys question. I think we need to work this out since it is a feature of at least subversion which is circumvented by the way redmine is accessing the repository.
For the record, it is issue #2647 :)