<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
I'm not sure that Ms. Potter went into Gitosis during her
presentation -- unless that is the user interface that the GitHub
uses -- <a class="moz-txt-link-freetext" href="https://github.com">https://github.com</a><br>
<br>
Is it possible for users to add themselves to the git.chambana.net
repositories remotely -- without logging-in to the server machine
itself? I don't see a way into it from <a class="moz-txt-link-freetext" href="http://git.chambana.net">http://git.chambana.net</a><br>
<br>
<a class="moz-txt-link-freetext" href="http://scie.nti.st/2007/11/14/hosting-git-repositories-the-easy-and-secure-way">http://scie.nti.st/2007/11/14/hosting-git-repositories-the-easy-and-secure-way</a>
sez:<br>
<blockquote type="cite">Adding users<br>
<br>
The next natural thing to do is to grant some lucky few commit
access to the FreeMonkey project. This is a simple two step
process.<br>
<br>
First, gather their public SSH keys, which I'll call "alice.pub"
and "bob.pub", and drop them into keydir/ of your local
gitosis-admin repository. Second, edit gitosis.conf and add them
to the "members" list.<br>
<br>
cd gitosis-admin<br>
cp ~/alice.pub keydir/<br>
cp ~/bob.pub keydir/<br>
git add keydir/alice.pub keydir/bob.pub<br>
Note that the key filename must have a ".pub" extension.<br>
<br>
gitosis.conf changes:<br>
<br>
[group myteam]<br>
- members = jdoe<br>
+ members = jdoe alice bob<br>
writable = free_monkey<br>
Commit and push:<br>
<br>
git commit -a -m "Granted Alice and Bob commit rights to
FreeMonkey"<br>
git push<br>
</blockquote>
Looks like something that the server admin still has to do to me.<br>
<br>
Thanks,<br>
<br>
-Stewart<br>
<br>
On 8/9/11 11:21 AM, Erich Heine wrote:
<blockquote
cite="mid:CA+ukqryME_wWvijJtRw+VcOADG9Q75FdpWynFJXk7bqdru0RJw@mail.gmail.com"
type="cite">I'm not sure Ms Potter is working with all the facts
in this case. Simply put (and honestly repeating myself for the
nth time now) we use a program called gitosis on our code server.
This plugin moves the handling of permissions away from operating
system (unix style) permissions into its own internal ACL system.
Further it puts the login to a single OS level user (in most cases
git@) so that one user can be really really restricted to the bare
minimum operations. Futher this software really simplifies
managing multiple repos on a system with varying levels of access,
without overloading the OS native groups etc. Lots more info
here: <a moz-do-not-send="true"
href="http://scie.nti.st/2007/11/14/hosting-git-repositories-the-easy-and-secure-way">http://scie.nti.st/2007/11/14/hosting-git-repositories-the-easy-and-secure-way</a>
<div>
<br>
</div>
<div>Further, with gitosis, you can get really nice redmine
integration via the gitosis plugin for that software, which is
also being used on our servers.</div>
<div><br>
</div>
<div>Long story short: The need for separate user accounts for git
repos is one way of doing it, but it is the naive way, and good
only in small scenarios -- it gets really complicated beyond a
handful of users and/or a handful of separate repos.</div>
<div><br>
</div>
<div>Brian, can you please dive into this, or provide appropriate
credentials to me?</div>
<div><br>
</div>
<div>Regards,</div>
<div>Erich<br>
<div><br>
<div class="gmail_quote">On Mon, Aug 8, 2011 at 9:00 PM,
Stewart Dickson <span dir="ltr"><<a
moz-do-not-send="true"
href="mailto:mathartspd@gmail.com">mathartspd@gmail.com</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt
0.8ex; border-left: 1px solid rgb(204, 204, 204);
padding-left: 1ex;">
<div bgcolor="#ffffff" text="#000000"> According to Ms.
Potter, in order to push back to the repository, remote
users need accounts on<br>
<a moz-do-not-send="true" href="http://git.chambana.net"
target="_blank">git.chambana.net</a> and have
installed their DSA public keys there. She says, "It's
a server thing,<br>
outside of Git, itself."<br>
<br>
Thanks,<br>
<br>
-Stewart<br>
<br>
</div>
</blockquote>
</div>
</div>
</div>
</blockquote>
...
</body>
</html>