t: test http access to "half-auth" repositories
Some sites set up http access to repositories such that fetching is anonymous and unauthenticated, but pushing is authenticated. While there are multiple ways to do this, the technique advertised in the git-http-backend manpage is to block access to locations matching "/git-receive-pack$". Let's emulate that advice in our test setup, which makes it clear that this advice does not actually work. Signed-off-by: Jeff King <peff@peff.net> Signed-off-by: Junio C Hamano <gitster@pobox.com>
This commit is contained in:
Jeff King
committed by
Junio C Hamano
Junio C Hamano
parent
6ac2b3aeb9
commit
4c71009da6
@ -89,6 +89,13 @@ SSLEngine On
|
||||
Require valid-user
|
||||
</Location>
|
||||
|
||||
<LocationMatch "^/auth-push/.*/git-receive-pack$">
|
||||
AuthType Basic
|
||||
AuthName "git-auth"
|
||||
AuthUserFile passwd
|
||||
Require valid-user
|
||||
</LocationMatch>
|
||||
|
||||
<IfDefine DAV>
|
||||
LoadModule dav_module modules/mod_dav.so
|
||||
LoadModule dav_fs_module modules/mod_dav_fs.so
|
||||
|
||||
Reference in New Issue
Block a user