how to set-up HTTPS authentication with client certificate and passwords

Igor Lautar igor.lautar at gmail.com
Thu Oct 29 06:50:17 UTC 2009


Hi,

On Wed, Oct 28, 2009 at 11:02 PM, Dennis Brakhane
<brakhane at googlemail.com> wrote:
> On Wed, Oct 28, 2009 at 3:13 PM, Igor Lautar <igor.lautar at gmail.com> wrote:
> AFAIK, Mercurial does not yet support client certificates. I have the
> same problem with myself and
> always wanted to write a patch to add support for it. Hmm, perhaps I
> should do so, now that I know
> I'm not the only one.

It would be great if you can check it out. I can also give you a hand.
However, I'm not 100% sure it didn't work in the past. Somebody had to
put those [auth] section stuff in.
In fact, digging through hg repo shows:

annotate doc/hgrc.5.txt @ 8847:7951f385fcb7

find changesets by author, revision, files, or words in the commit message
url: support client certificate files over HTTPS (issue643)

This extends the httpshandler with the means to utilise the auth
section to provide it with a PEM encoded certificate key file and
certificate chain file. This works also with sites that both require
client certificate authentication and basic or digest password
authentication, although the latter situation may require the user to
enter the PEM password multiple times.

author 	Henrik Stuart <hg at hstuart.dk>
date 	Sat Jun 20 10:58:57 2009 +0200 (4 months ago)
parents 	ac92775b3b80
children 	75cc02e7f672

Seams HTTPS client cert support was added with 7951f385fcb7.

Regards,
Igor



More information about the Mercurial mailing list