[cvsacl-users] Allowing writing but not reading.

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

I need to set up a repository where one login can put files into the 
repository, but can't check them out again. I thought that I configured 
everything correctly, but the ACL's don't prevent checking out files, so 
I was wondering if I could get some help on what I have done wrong.

The aclconfig file is set up with

    UseCVSACL=yes
    CVSACLDefaultPermissions=wc
    CVSServerRunAsUser=cvsca

where cvsca is the administrative account for the repository.

I checked that the access file has a line

    d:ALL:ALL:configwriter!wc:

where configwriter is supposed to be able to write but not read. This 
repository has a "Practice" module, created by configwriter, that I am 
using for testing. The permissions on it are:

    $ cvs -d /data/local/cvsca racl -l -d Practice
    d Practice | HEAD | | defaults ALL: wc

As far as I can tell, everything seems fine. However, if I login to a 
linux machine as configwriter and do

    cvs -d :ext:configwriter@mumble:/data/local/cvsca co Practice

where CVS_RSH = ssh, then cvs happily gives me the contents of Practice.

Do the file permissions have anything to do with it? I wouldn't think so.

I am using cvsacl 1.2.1 and cvs 1.11.17.

Thanks for any help.

Willard