git push to https repository from Intranet application with kerberos authentication -

-

first of all, i'm new https, ssl , authentication in general.

i develop intranet application should realize "push" local git repository (hosted on web server) , remote repository (hosted on unix server).

the web server windows 2003 server iis installed. installed windows git extensions on machine. remote git url looks : "https://username@server.domain.fr/team_folder/project.git".

on web server, when want push on remote repository git bash, openssh popup displayed , windows password asked. if enter correct password, push performed. caused "askpass" configuration.

core.askpass = c:/program files (x86)/git/libexec/git-core/git-gui--askpass

if remove configuration's parameter, git prompt password in command window. normal...

my question : use kerberos authentication, possible realize push operation without asking password user ? , how ?. tried configure putty no success moment (like wrote, i'm not specialist of authentication).

for use git-credential-winstore modified not asking password (which not usable on iis server side). when git ask gcw password, returns empty password. git ends return code <> 0 , application ask user password, call gcw store , call git second time execute command. works i'm pretty sure not best solution.

though, off topic here, i'd answer anyway (unix server, client):

  1. install mod_spnego
  2. configure mod_spnego
  3. install git on windows, make sure supplied libcurl has been compiled against sspi (--with-sspi)
  4. install git on unix, make sure linked libcurl has been compiled against gss-api (--with-gssapi)

the way libcurl called git, anyauth chosen default username+password (:). that's it. libcurl should rest.

works charm here against external repositories on spnego-protected proxy.


Comments

Post a Comment

Popular posts from this blog

node.js - Mongoose: Cast to ObjectId failed for value on newly created object after setting the value -

-
this question has answer here: what's mongoose error cast objectid failed value xxx @ path “_id”? 7 answers even though has been asked many times because entity has no valid objectid field. i came across situation objectid set value can casted objectid still error. the schema: var serviceschema = parammongoose.schema({ servicename:{ type: parammongoose.schema.types.objectid , ref: 'servicenames',required:true } }); pseudo code: servicefromdb=new service({servicename:'some name'}); servicefromdb.servicename='000000000000000000000001'; servicefromdb.save(function(paramerror,paramdata){ if(paramerror){ console.log('but but...',servicefromdb,paramerror) } }); the output of code is: but but... { servicename: 000000000000000000000001, _id: 55079a90286f49280364f78b } { [casterror: cast objectid faile...
Read more

gradle error "Cannot convert the provided notation to a File or URI" -

-
i have defined 2 system properties in gradle.properties: systemprop.builddir=build systemprop.cfgdir=build\\cfg and have following task defined in build.gradle: task clean(group:'clean',description:'clean project') << { ant.sequential { delete(dir: system.properties.builddir) mkdir(dir: system.properties.builddir) delete(dir: system.properties.cfgdir) mkdir(dir: system.properties.cfgdir) } } this generates following error: execution failed task ':clean'. > cannot convert provided notation file or uri: {dir=build}. following types/formats supported: - string or charsequence path, e.g 'src/main/java' or '/usr/include' - string or charsequence uri, e.g 'file:/usr/include' - file instance. - uri or url instance. but equivalent block of code not generate error , works expected: task clean(group:'clean',description:'clean project') << { ...
Read more

python - NameError: name 'subprocess' is not defined -

-
i'm trying make rng website: http://jamesdotcom.com/?p=417 . when run following code: captureimage = subprocess.popen( [ "fswebcam", "-r", "356x292", "-d", "/dev/video0", "static.jpg", "--skip", "10" ], stdout=devnull, stderr=devnull) captureimage.communicate() i following error message: nameerror: name 'subprocess' not defined what should do? thanks have imported first? import subprocess captureimage = subprocess.popen(["fswebcam", ...) subprocess included in python standard library since python 2.4. should not necessary install it.
Read more