|Subject:||SVN::Web does not honour ACL|
I don't think this is a bug, because you don't claim to honour ACLs but perhaps it could be filed as a feature request. I have an ACL set up on our repos that allows some people read access to only certain projects with the repository. Using SVN::Web however, they have access to all of the projects. It would be an excellent addition if the ACLs could be checked and prevent access to projects, branches etc if the user doesn't have rights. We use basic auth (over SSL) to restrict access to the repository so this could be picked up from the environment. I've got too many projects on already but if you can tell me where to start poking I might be able to contribute. Many thanks. Simon.