Permalink
Commits on Feb 15, 2012
  1. gitolite.rc.mkd - documentation updates

      - use single quotes in examples for GL_GITCONFIG_KEYS regex, and
        briefly explain why
    
      - emphasise that $GL_GITCONFIG_KEYS patterns match the whole key
    wu-lee committed with Feb 15, 2012
Commits on Feb 14, 2012
  1. replace <<EOF type constructs with multi-line echo

    This compensates for an selinux bug reported on #gitolite by John Hawley
    (warthog9).  sh/bash uses a tempfile to do this, which in turn causes
    some problems in selinux; I really don't [need to] know more than that.
    
    *Technically* this is a bug in selinux/policy, and would qualify for an
    entry in "nagp"... but:
    
    (1) the changes are small and localised
    (2) the problem makes gitolite -- currently -- unusable with selinux,
        and what use is a security program which can't run under selinux
        (regardless of whose fault it is)?
    
    and finally
    
    (3) if I can't break my own rules for one of my most high-profile users
        then what's the point of owning the code?
    
    :-)
    
    ----
    
    Implementation notes: I've only done this for code that is likely/meant
    to be used in production
    
    I also slip-streamed in a URL fix (from when I changed all the online
    document rendering)
    committed Feb 14, 2012
Commits on Feb 13, 2012
  1. v2.3

    committed Feb 13, 2012
  2. (testing) make t/install not wait to accept host key on first run

    Please don't use this setting in a production system but in some
    environments it is needed for completely automated *testing* to be able
    to use ssh correctly.
    committed Feb 11, 2012
Commits on Feb 8, 2012
Commits on Feb 7, 2012
  1. added ADC overrides for setdesc and getdesc

    John from kernel.org wanted this; for details see [1]
    
    [1]: http://groups.google.com/group/gitolite/browse_thread/thread/daf92ef85d121234
    committed Feb 7, 2012
Commits on Feb 3, 2012
  1. honor GL_NO_DAEMON_NO_GITWEB for wild repos also

    Thanks to Kacper Kornet for catching this...
    
    (by the way, there's a simple workaround if you are affected by this but
    can't upgrade to this commit or later: just create an empty
    $PROJECTS_LIST file, which is by default ~/projects.list)
    committed Feb 3, 2012
Commits on Jan 26, 2012
  1. (minor) validate all role names, not just the first line!

    If you use a role name that was not in GL_WILDREPOS_PERM_CATS, it will
    get caught later when someone whom youhave given that role tries to
    access the repo (look for another occurrence of the same error message
    as this one).
    
    So there's no access violation but it would be nice to be told upfront
    that it won't work.
    committed Jan 26, 2012
Commits on Jan 23, 2012
Commits on Jan 19, 2012
  1. fix annoying but harmless bug that affected t01/2/3

    ...if you called check_config_key() from new_repo()
    committed Jan 19, 2012
Commits on Jan 17, 2012
Commits on Jan 16, 2012
  1. minor fixup to previous commit documenting merge-check

    thanks to Heiko Carstens for convincing me there are valid workflows
    that need this feature (forgot to put this in the earlier commit)
    committed Jan 16, 2012
  2. merge-check: documentation

    committed Jan 16, 2012
  3. merge-check feature; first cut

    committed Jan 15, 2012
Commits on Jan 12, 2012
  1. adc: make 'help' work when HELP_LIST_DEFAULT is set to 0

    Signed-off-by: Stefan Naewe <stefan.naewe@gmail.com>
    snaewe committed with Jan 11, 2012
Commits on Jan 10, 2012
  1. (doc) '-q' option to gl-setup, plus significance of pubkey filename

    And the quick install instructions should really show the "-q"...
    committed Jan 10, 2012
Commits on Jan 4, 2012
  1. gl-setup: (sshkeys-lint): Move file redirection to the end

    Signed-off-by: Jari Aalto <jari.aalto@cante.net>
    jaalto committed with Jan 2, 2012
Commits on Jan 2, 2012
  1. next round of doc changes

    committed Nov 13, 2011
Commits on Dec 25, 2011
  1. (minor) warning message clarity

    Using a username in an unused group name will still cause the warning,
    but the message was misleading in that context
    committed Dec 25, 2011
Commits on Dec 13, 2011
Commits on Dec 5, 2011
Commits on Dec 4, 2011
Commits on Dec 2, 2011
  1. add the missing die function

    gdiscry committed Dec 2, 2011
  2. add GL_REPO to the environment variables

    When a slave receives a mirror push (git-receive-pack), set the GL_REPO
    environment variable so that custom hooks can use it.
    gdiscry committed Dec 2, 2011
Commits on Nov 29, 2011
  1. gl-setup: dont try to 'git add' and all that when no key was provided

    Apparently some people want gitolite-admin as a non-repo.  Completely
    outside gitolite, managed by puppet or such, and leaving only symlinks
    for 'conf' and 'keydir' in $GL_ADMINDIR.
    
    But then when they have to run 'gl-setup', the 'git add' complains about
    the symlink.  Hence this patch.
    
    ----
    
    Meanwhile, if you're one of those puppet masters, here's the script I
    gave them for the *compile* (this has nothing to do with this patch; I'm
    just throwing it in here so I won't lose it):
    
        #!/bin/bash
    
        # let's say you install using "non-root" method.  (Adjust GL_BINDIR for root
        # method or package method).
    
        # install normally, then make changes directly in $GL_ADMINDIR/conf and
        # $GL_ADMINDIR/keydir.  (Please leaves "logs/" and "hooks/" alone).
    
        # Then run this:
    
        export GL_ADMINDIR=$HOME/.gitolite
        export GL_BINDIR=$HOME/bin
        export GL_RC=$HOME/.gitolite.rc
    
        cd $GL_ADMINDIR
        $GL_BINDIR/gl-compile-conf
    
        # BE SURE TO REMOVE THE ADMIN REPO ITSELF FROM conf/gitolite.conf, as well as
        # repositories/gitolite-admin.git, lest a push by someone end up overwriting
        # this hand- (or machine-) crafted config.
    
        # you can get away even further from gitolite's control.  You can, for
        # example, set GL_NO_SETUP_AUTHKEYS in the rc file, and manage even the keys
        # yourself.  Just put the full path to $GL_BINDIR/gl-auth-command followed by
        # the username in the "command=" part of the authkeys file you generate.
    committed Nov 28, 2011
Commits on Nov 27, 2011
  1. (password access) specify comment field in generated ssh pub key

    since gl-shell-setup runs as root, the comment in the generated key was
    'root@...' instead of whatever userid it was being created for.
    
    This does not affect gitolite or ssh but it seems some people don't
    treat "comment" and "comment" and actually *do* stuff with it.
    
    (only code is from author; commit message is from committer)
    graywolf committed with Nov 26, 2011
Commits on Nov 22, 2011
  1. new functions (can_*, is_admin, in_group) for ADCs

    (can_* == can_read, can_write, and can_create)
    
    See top of contrib/adc/adc.common-functions for more on this.
    
    Note: the old style (calling get_rights_and_owner with $repo, then
    checking $perm_read, $perm_write, etc.), will still work fine.
    committed Nov 22, 2011