From: Dimitri Kopriwa <d.kopriwa@gmail.com>
To: Jeff King <peff@peff.net>
Cc: git@vger.kernel.org
Subject: Re: Fwd: Git credentials not working
Date: Thu, 4 Oct 2018 01:12:11 +0700 [thread overview]
Message-ID: <89f60502-c67d-83b6-593b-a0e6d8567183@gmail.com> (raw)
In-Reply-To: <20181003171104.GA12200@sigill.intra.peff.net>
Thanks for your reply. I have activated GIT_TRACE_CURL=1 and I can see
that the request is failing 401.
I can't see which token is used and using what header ?
The log say:
17:50:26.414654 http.c:657 => Send header: Authorization: Basic <redacted>
I have retested the token locally and it work when used in the url or
using `Private-Token: <token>` as stated in the Gitlab documentation
https://docs.gitlab.com/ee/api/README.html#personal-access-tokens
Peff, what would be the appropriate way to input my git credential in a
100% success way in a CI?
Is this good:
git credential approve <<EOF
protocol=https
host=example.com
username=bob
password=secr3t
OEF
?
I would use the custom helper after I can understand how to properly use
the git credential store in a CI environment. The fact that I am using a
generated file is simply because this is what the documentation told me
to do. I did not found anywhere in the doc how I should create that file
in a non tty terminal.
Thanks again for your help.
On 10/4/18 12:11 AM, Jeff King wrote:
> On Wed, Oct 03, 2018 at 09:06:38PM +0700, Dimitri Kopriwa wrote:
>
>> 18:25:52.940307 git.c:659 trace: exec: git-credential-store erase
>> 18:25:52.940365 run-command.c:637 trace: run_command: git-credential-store erase
>> remote: HTTP Basic: Access denied
>> fatal: Authentication failed for
>> 'https://git.example.com/example/some-project.git/'
>> [...]
>>
>> Can you please help me found why is git credential-store erase called ?
> This is expected. We tried to use a credential that was rejected by the
> server, so we told all of the helpers it was invalid. You can try
> running GIT_TRACE_CURL=1 to see the HTTP conversation. There will be an
> HTTP 401 with the authentication failure, though it may not tell you
> anything more useful than that.
>
> git-credential-store is meant to be used interactively, to insert and
> erase credentials as they're grabbed from the terminal.
>
> It sounds more like you want to just have a stored credential that you
> try to use. You could do that with a custom helper. E.g., something like
> this in your ~/.gitconfig:
>
> [credential "https://example.com"]
> helper = "!f() { test $1 = get && echo password=$(cat /path/with/password); }; f"
>
> -Peff
next prev parent reply other threads:[~2018-10-03 18:12 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <a1ceb967-6020-6074-f504-c684242c79ab@gmail.com>
2018-10-03 14:06 ` Fwd: Git credentials not working Dimitri Kopriwa
2018-10-03 16:03 ` Christian Couder
2018-10-03 17:29 ` Dimitri Kopriwa
2018-10-03 17:11 ` Fwd: " Jeff King
2018-10-03 18:12 ` Dimitri Kopriwa [this message]
2018-10-03 18:24 ` Jeff King
2018-10-03 19:34 ` Dimitri Kopriwa
2018-10-03 20:03 ` Bryan Turner
2018-10-03 20:43 ` Jeff King
2018-10-03 21:35 ` Dimitri Kopriwa
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=89f60502-c67d-83b6-593b-a0e6d8567183@gmail.com \
--to=d.kopriwa@gmail.com \
--cc=git@vger.kernel.org \
--cc=peff@peff.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).