tags:

views:

59

answers:

1
+2  Q: 

Using Mercurial/Tortoisehg is there a way to set repository permissions?

Hey Everyone,

Im trying to setup repository permissions with Mercurial/Tortoisehg. What I would like to do is have 1 person be the administrator and only that person is allowed to commit/push/pull to the repository. Everyone else would have to send that person a patch if they want to get their changes into the repository.

Thanks for any help, Metropolis

+2  A: 

That functionality depends on how people are accessing your repository, which could be:

  1. local file access
  2. ssh network access
  3. http access via built-in hg serve
  4. http access via external web-server

You can see pluses and minuses along with instructions for each on the PublishingRepositories wiki page.

Per-user access controls are available in options 1,2, and 4 above. With options 1 (file) and 2 (ssh) you'll be counting on your operating system's built in user controls. With option 2 (ssh) you could also mix in the shared ssh techniques for additional access controls. With option 4 (external http server) the sky is the limit. Authentication comes from the HTTP layer (e.g: apache) and mercurial uses that info along with the allow_push settings to grant access.

In cases 1, 2, or 4 you can also mix in the ACL extension for even more fine grained control.

Bottom-line: totally doable and commonly done, but you've got some decisions to make about how depending on how public your repo is and where you want to be controlling credentials.

Ry4an  2010-03-12 17:12:02
Thanks alot for the information Ry4n. What I am trying to do is store the repositories in a CR on a local server that can be accessed everywhere in the company. But only the person that puts the repository there can make changes to the repo. Everyone else can only clone/pull from it. Is this possible?
Metropolis  2010-03-12 17:37:43
Also, this is a Windows server without apache :/
Metropolis  2010-03-12 17:38:46
Can I just set the permissions for the folders and that will take care of it?
Metropolis  2010-03-12 17:40:47
Awesome.....it worked. I just set the permissions on the windows server for the folders so that only the person that owns the repositories can write to them, and everyone else can read. Thanks again for your help Ry4n
Metropolis  2010-03-12 19:26:10
Yeah, that's option one and I'm glad to hear it worked for you :)
Ry4an  2010-03-12 20:56:02

related questions

Can't copy file with appropriate permissions using FileIOPermission
GetProcessesByName() and Windows Server 2003 scheduled task
Starting a process in C# with username & password throws "Access is Denied" exception
How do you set directory permissions in NSIS?
PHP: How to check if a directory is writeable?
Sharepoint Item Level Access & performance
sudo echo "something" >> /etc/privilegedFile doesn't work... is there an alternative?
What is the best way to create a security architecture?
Hierarchical Group Permissions Theory/Resources?
Why is access denied when installing SSL cert on IIS 5?
What databases do I have permissions on
Can an iPhone App Be Run as Root?
SQLite/PHP read-only?
Multiple permission types (roles) stored in database as single decimal
SharePoint Permissions
CakePHP ACL Database Setup: ARO / ACO structure?
LINQ and Database Permissions
What's the best way to implement a SQL script that will grant select, references, insert, update, and delete permissions to a database role on all the user tables in a database?
php scripts writing to non-world-writable files
How do I detect if a function is available during JNLP execution?
Implementing permissions in PHP
Access Control Lists & Access Control Objects, good tutorial?
In Visual Studio you must be a member of Debug Users or Administrators to start debugging. What if you are but it doesn't work?
Where should I put my log file for an asp.net application?
What is the best way to handle multiple permission types?