我可以运行受密码保护的只读git服务器吗？ [英] Can I run a password-protected, read-only git server?

问题描述

我需要一个应用程序能够从git存储库中获取，但不会推送到它，所以，这是只读部分。这可以很容易地用git守护进程完成。

最重要的是，我需要访问所述存储库以进行密码保护，包括读取它。因此，在任何提取可能发生之前，应用程序将需要进行身份验证。

它可行吗？与git守护进程？别的东西？ http + auth可能？

解决方案

HTTP身份验证不会保护通过电话传输的包，所以如果您担心窃听者HTTP认证是不够的。另外，使用git协议的git比HTTP协议的效率高得多。然而，git-daemon不会为你执行身份验证。

可能最好的解决方案是使用 gitosis ，它可以让你使用ssh保护存储库 - 加密性强的认证，并通过网络保密并控制对存储库的访问（例如，有些用户是可读写的，有些用户是只读的）。这将在你的ssh连接上使用高效的git协议。

如果你愿意把它外包， github 也许是最好的方法。他们有不同的价位计划以满足许多需求。

I need an application to be able to fetch from a git repository but not push to it, so, that's the read-only part. That could easily be done with git daemon.

On top of that, I need access to said repository to be password-protected, including for reading it. So before any fetching can happen, the application will need to authenticate.

Is it doable? with git daemon? something else? http + auth maybe?

解决方案

HTTP authentication will not protect the pack being transmitted over the wire, so if you are worried about eavesdroppers HTTP authentication will not suffice. Also, git is much more efficient using the git protocol than the HTTP protocol. git-daemon, however, does not do authentication for you.

Probably the best solution is to use gitosis which will allow you to protect the repository using ssh--cryptographically strong authentication, and confidentiality over the wire--and control access to the repository as well (e.g., have some users read-write and some users read-only). This will use the efficient git protocol over your ssh connection.

If you are willing to outsource this, github is perhaps the best approach. They have plans at different price points to meet many needs.

这篇关于我可以运行受密码保护的只读git服务器吗？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！