Re: svn Farm

From: Johan Corveleyn <jcorvel_at_gmail.com>
Date: Tue, 19 Oct 2010 11:18:20 +0200

On Tue, Oct 19, 2010 at 9:46 AM, Stephen Connolly
<stephen.alan.connolly_at_gmail.com> wrote:
> Exposing the feature would not in an of itself force the client to use
> the keyring, but it would allow the server to have a start-commit hook
> that blocked a commit if the user had plaintext password storage
> enabled...

Just keep in mind that alerting users with start-commit hook only
works for users that actually commit of course. You won't reach users
that merely checkout/update/log/blame/...

It might be a better solution to implement this check in a lower
level, in the ra-protocols (naïvely, e.g. with http(s): client sends
with every request a header announcing the way it stores its
password). Of course, you'd like to do this without adding too much
overhead (handshaking, ... for every tiny request that the client
makes to the server). Maybe there is already some functionality
present for protocol/feature negotiation, I don't know ...

Just my 0.02€

Cheers,

-- 
Johan

Received on 2010-10-19 11:19:20 CEST

This message: [ Message body ]
Next message: Johan Corveleyn: "Re: Unusual merge result"
Previous message: Olivier Mengué: "Re: Determine the date / time of remote SVN server from the command line?"
In reply to: Stephen Connolly: "Re: svn Farm"
Next in thread: Stephen Connolly: "Re: svn Farm"
Reply: Stephen Connolly: "Re: svn Farm"
Reply: Daniel Shahaf: "Re: svn Farm"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]