Loggerhead authorization file proposal
Michael Hudson
michael.hudson at canonical.com
Tue Jun 9 23:57:45 BST 2009
Sorry for the late response, mostly dug myself out from under
UDS/AllHands/travel backlog now...
Mario wrote:
> Hi,
>
> Jelmer and I have been thinking of adding authorization support to
> Loggerhead, along
> with smart server support. The goal of the authorization-configuration
> files is to be simple,
> therefore I propose the following:
I think I'd prefer Martin's approach of using Bazaar's config machinery:
[/path/to/repo]
http-read = *
http-write = alice, bob
Given that we control both ends, let's go for something reasonably
secure -- digest and/or requiring https both seem sane-ish.
Cheers,
mwh
More information about the bazaar
mailing list