Skip to content

Latest commit

 

History

History
92 lines (65 loc) · 3.09 KB

README.md

File metadata and controls

92 lines (65 loc) · 3.09 KB
Raw

README: gitolite web interface

gitolite is a great tool to manage git repositories and get access by ssh.

There are also possibilities to use http for transport, e. g.:

With sskm there is also a tool available to manage ssh keys for the user over ssh.

But until now there is no possibility to manage ssh keys over http.

Therefore this script gitolite_web_interface.py should give the possibility to add ssh keys over http. After this sskm over ssh can be used to further manage the keys.

Especially if you have already a directory service (e. g. LDAP) for managing user accounts with password, this script gitolite_web_interface.py provides the possibility to let the users manage their ssh keys in a gitolite environment.

Usage

If you have installed gitolite on a server and enabled http mode (Making repositories available to both ssh and http mode clients), you can use this script:

First you have to enable sskm in gitolite: changing keys -- self service key management

Next you should adapt in gitolite_web_interface.py the following few keys of the global variable CONFIG:

  • gitolite_wrapper_script
  • ssh_gitolite_user
  • ssh_host
  • only_https
  • gitolite_cmd
  • gitolite_home
  • gitolite_admin_repo
  • creategroup_format
  • provided_options with:
    • help
    • info
    • mngkey
    • creategroup
    • createrepo

Store the script in an adequate directory with necessary permissions, e. g.:

install --group=git --mode=0700 --owner=git --preserve-timestamps \
  --target-directory=/var/www/bin/ gitolite_web_interface.py

You can install the module in the same way, e. g.:

install --group=git --mode=0600 --owner=git --preserve-timestamps \
  --target-directory=/var/www/bin/gitolite_web_interface_mod/ \
  gitolite_web_interface_mod/*.py

Or you can install the module using pip, e. g.:

pip3 install https://github.com/dlr-pa/gitolite_web_interface/archive/refs/heads/master.zip

Now you can integrate calling it in apache, e. g. add the following lines to your apache configuration:

SuexecUserGroup git git
ScriptAlias /www/ /var/www/bin/gitolite_web_interface.py
<Location /www>
    AuthType Basic
    AuthName "gitolite access is required"
    Require valid-user
    AuthUserFile /etc/apache2/gitolite.passwd
</Location>

copyright + license

Author: Daniel Mohr.

Date: 2022-02-09 (last change).

License: GNU GENERAL PUBLIC LICENSE, Version 2, June 1991

Copyright (C) 2021, 2022 Daniel Mohr and Deutsches Zentrum fuer Luft- und Raumfahrt e. V., D-51170 Koeln