[Fusionforge-general] Gitweb access to private repos

Sylvain Beucler - Inria sylvain.beucler at inria.fr
Tue Feb 18 16:31:32 CET 2014


Hi,

I'm toying with granting gitweb access to private Git repositories.
Current we've got a work-around at gforge.inria.fr that 1/ authentifies 
users with libapache2-mod-auth-pgsql, possibly with a default 
anonscm/anonscm user and 2/ adds an auth hook in gitweb to check if the 
remote user has enough privs in RBAC.
This is annoying because it requires the user to log in again.

I'm willing to modify it to it's suitable for inclusion in FusionForge, 
by either :

- using mod-auth-gforge - if that's still maintained ?

- reusing the gforge session cookie - there's an issue with gitweb.cgi 
not being able to access the .ini file with the database password 
though; maybe it should be passed to gitweb.cgi somehow.

- keeping it that way (maybe in addition to the session cookie, in case 
scm is hosted on a separate domain)

Thoughts?

-- 
Sylvain



More information about the Fusionforge-general mailing list