From: Jeff King <peff@peff.net>
To: git@vger.kernel.org
Subject: Re: encrypted netrc for Git (was: [Wishlist] could git tell which password it is asking when asking a password.)
Date: Thu, 14 Jul 2011 11:00:33 -0400 [thread overview]
Message-ID: <20110714150033.GA6797@sigill.intra.peff.net> (raw)
In-Reply-To: <87bowxt0sh.fsf_-_@lifelogs.com>
On Thu, Jul 14, 2011 at 09:05:50AM -0500, Ted Zlatanov wrote:
> On Fri, 01 Jul 2011 12:04:02 -0500 Ted Zlatanov <tzz@lifelogs.com> wrote:
>
> TZ> On Fri, 01 Jul 2011 15:59:09 +0200 Rémi Vanicat <vanicat@debian.org> wrote:
>
> RV> It would be interesting also to plug some sort of password-safe unto
> RV> git, or some "git-agent".
>
> TZ> This would also be really nice. ~/.netrc is not a great place to put
> TZ> passwords for the HTTP transport. In GNU Emacs we have ~/.authinfo.gpg
> TZ> with the same content as ~/.netrc but encrypted by GPG and thus more
> TZ> secure (the user is either prompted for the password, if the file is
> TZ> encrypted symmetrically, or the user simply loads their private key into
> TZ> the GPG agent). I believe all this can be done with the GPGME library.
> TZ> There's also the Secrets API on newer Gnome and KDE installs, which has
> TZ> a pretty nice D-Bus interface.
>
> TZ> But is this a libcurl feature request? Or can a Git plugin (an
> TZ> alternate HTTPS transport maybe?) handle it?
>
> Ping? I'd like to work on this if it seems like a feasible feature.
Check out:
https://github.com/peff/git/commits/jk/http-auth
which provides an interface for getting credentials from external
helpers.
I need to write docs for a few of the top commits before posting the
patches to the list, but other than that, it should be fairly solid and
usable. And I'd love to get feedback from somebody trying to write a new
helper for it (i.e., to tell if the interface to the helpers is good
enough).
-Peff
next prev parent reply other threads:[~2011-07-14 15:00 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2011-07-01 13:59 [Wishlist] could git tell which password it is asking when asking a password Rémi Vanicat
2011-07-01 17:00 ` Junio C Hamano
2011-07-01 17:16 ` Junio C Hamano
2011-07-01 17:18 ` Shawn Pearce
2011-07-01 17:50 ` Junio C Hamano
2011-07-01 19:25 ` Rémi Vanicat
2011-07-01 20:01 ` Ted Zlatanov
2011-07-01 20:30 ` Junio C Hamano
2011-07-01 20:48 ` Jeff King
2011-07-01 20:46 ` Jeff King
2011-07-01 17:04 ` Ted Zlatanov
2011-07-14 14:05 ` encrypted netrc for Git (was: [Wishlist] could git tell which password it is asking when asking a password.) Ted Zlatanov
2011-07-14 15:00 ` Jeff King [this message]
2011-07-15 17:08 ` encrypted netrc for Git Ted Zlatanov
2011-07-15 21:05 ` Jeff King
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20110714150033.GA6797@sigill.intra.peff.net \
--to=peff@peff.net \
--cc=git@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).