How to set up Mercurial with ssl/security

security ssl mercurial
10,166

Solution 1

Keep in mind Mercurial doesn't validate SSL certificates. It's safer to serve mercurial over SSH (which is easy to setup assuming your repo server has ssh on it).

If you want to use https, the official guide should have the steps in detail, I believe.

Solution 2

There are only a few steps:

  1. You setup your webserver with SSL support. We assume you know how to do this or that you can have someone else do it for you.
  2. You make the webserver run the hgweb.cgi script. This is a standard CGI script. There are also a WSGI version if you prefer -- both scripts come with the Mercurial source code.
  3. You configure your webserver to authenticate users who try to POST to your server. Read-only operations like pull and clone use GET requests only, but write operations like push use POST. Again, we assume you know how to do this (with .htaccess files for Apache, say) or that you can have someone else do it.
  4. You leave push_ssl at its default value (True) and configure allow_push to include the usernames that should be allowed to push.

See the web section of hgrc and the publishing repositories page on our wiki.

Share:
10,166
Sam Lee
Author by

Sam Lee

Updated on June 04, 2022

Comments

  • Sam Lee
    Sam Lee about 2 years

    I've been following the hginit.com tutorial on how to use mercurial. Everything is going fine except it uses push_ssl=False. This does not work for my situation because I want pushes (and pulls if possible) to be secure. All the tutorials I've been able to find also use push_ssl=False. Can anyone give me pointers on how to set up ssl/security for Mercurial? Thanks.

  • Gili
    Gili about 13 years
    Mercurial 1.6.4+ validates SSL certificates.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Node.js, simple TLS client/server
WebLogic SSL: No identity key/certificate entry was found under alias in keystore
How do you get Maven to accept invalid SSL certificates?
What does my installed .cer certificate not show in IIS?
Error while creating self-signed SSL certificate
ORACLE, UTL_HTTP and SSL
How can the SSL client validate the server's certificate?
What is the correct JBoss EAP 6.0.1 cipher-suite configuration for mitigation of Logjam / weakdh.org?
How to create a secure SSL connection between Android client and Java server?
Why do I get browser warnings on my new lets encrypt ssl setup?