Security issue: how to use HTTP user as Mercurial user
Patrick Waugh
ptwaugh at gmail.com
Tue Jun 8 19:35:37 UTC 2010
You might want to look at this too:
http://www.lshift.net/mercurial-server.html
patrick
On Tue, Jun 8, 2010 at 2:34 PM, Patrick Waugh <ptwaugh at gmail.com> wrote:
> Might want to look at this too:
>
> http://www.lshift.net/mercurial-server.html
>
> patrick
>
> On Tue, Jun 8, 2010 at 8:21 AM, Marko Käning <mk362 at mch.osram.de> wrote:
>> Sorry, Benoit, I keep the CCs now. :)
>>
>> On Tue, 8 Jun 2010, Martin Geisler wrote:
>>
>>> You can configure the commitsigs extension to only verify heads.
>> Which makes most sense following your argumentation from before.
>>
>>> Yes, you will enable the hook in the central repository since that is
>>> what you have control over.
>> OK, I see. I thought the extension was meant to be installed on the client
>> side. (I have to admit that I was just trying to generally understand how
>> it works without actually having given the extension a shot on my server
>> up to now.) Should read the documentation...
>>
>>> You will also want to let your users know that you have enabled the hook
>>> so that they can start adding signatures. Otherwise they will get in
>>> trouble when they try to push.
>> Yep, that's clear.
>>
>> Thanks, Martin
>>
>> Greets,
>> Marko
>> _______________________________________________
>> Mercurial mailing list
>> Mercurial at selenic.com
>> http://selenic.com/mailman/listinfo/mercurial
>>
>
More information about the Mercurial
mailing list