Facing Issues While Connecting To BitBucket From Mercurial

Martin Geisler mg at lazybytes.net
Sat Nov 13 09:33:13 UTC 2010


"Padmashri Ragavendaran (RBEI/BSBZ)"
<Padmashri.Ragavendran at in.bosch.com> writes:

> Dear All,
>
> We are licensed users of Confluence.And we are trying to use BitBucket
> Repository for maintaining our project source code.
>
> We have installed Mercurial software and also we have Mercurial
> Eclispe plugin.

Okay. I assume you have installed the TortoiseHg graphical Mercurial
client when you say you have installed Mercurial?

> To connect to bitbucket from eclipse mercurial plugin, we are asked to
> provide our user credentials(user id and password) as proxy settings
> in mercurial configuration file named Mercurial.ini.

The proxy settings are not important for connecting to Bitbucket. I'm
talking about these settings, but I suspect you meant something else:

  http://www.selenic.com/mercurial/hgrc.5.html#http_proxy

There is an [auth] section in the config file that you can use to
provide passwords used for HTTPS connections to, say, Bitbucket:

  http://www.selenic.com/mercurial/hgrc.5.html#auth

> Due to security reasons, we don't want to hard code our login
> credentials while configuring.

Right, clear-text passwords are bad.

> It will be very much helpful if you can let us know any other secured
> alternatives to connect to BitBucket.

A better alternative is to use SSH keys or the mercurial-keyring
extension:

* With SSH keys, you create a key-pair on your machine and upload the
  public key once to Bitbucket. Mercurial will use the corresponding
  private key to authenticate towards Bitbucket.

  The private key is normally protected by a password which you type in
  when you need to unlock the key. So you'll initially be typing in as
  many passwords as before. I say initially since you will want to use
  an "SSH agent" program to hold onto the decrypted private key after
  the first usage. For Windows, TortoiseHg comes with pageant:

    http://bitbucket.org/tortoisehg/stable/wiki/ssh#pageant

* The mercurial-keyring extension is an alternative to SSH. It will
  store your HTTPS passwords securely in one of several backends and it
  works cross-platform. I'm not familiar with it, but people report good
  experiences with it on the IRC channel.

-- 
Martin Geisler

Mercurial links: http://mercurial.ch/
Getting started: http://mercurial.aragost.com/kick-start/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://lists.mercurial-scm.org/pipermail/mercurial/attachments/20101113/06f52513/attachment.asc>


More information about the Mercurial mailing list