tags:

views:

74

answers:

3
+1  Q: 

How to setup a Mercurial "server" that allows for authenticated push without apache?

I'm trying to propose switching from CVS and SVN to Mercurial at work. Before I do, I'd like to have any foreseeable questions answered.

How can I set up a repository to allow push and authenticate users?

I'm more familiar with administering SVN, and in SVN it was just a few lines like:

[users]
userA = passwordA
userB = passwordB

And then for permissions it was like:

[general]
userA = write
userB = read

I would really like something like svnserve that allowed me to circumvent using a full-blown apache, since all I need is a central location for pushing change sets. I know that Mercurial doesn't necessarily require a central location, but I think it would be convenient in my workplace.

Thanks!

+1  A: 

As @nlucaroni mentioned in the comment, one option is using SSH authentication. It allows authenticated pull and push. We use it in our company together with Apache-hosted HTTP access for anonymous pull-only repositories. See the "ssh" solution at the Publishing Mercurial Repositories.

Andrey Vlasovskikh  2010-09-08 17:17:13
And you don't need actual user accounts each. The hgssh script linked at Andrey's site lets everyone use the same system account with different private keys.
Ry4an  2010-09-08 18:22:27
You may also use only one Unix account, say `hg`, but authenticate users by their public SSH key, not by the `hg` account password.
Andrey Vlasovskikh  2010-09-08 19:57:47
If I only use one user account (hg) then will the changes still be associated with different users? For example, if the two users are Alice and Bob, and the user account is hg, then when Alice pushes her changeset, will both Bob and Alice see that that particular changeset came from Alice?
pcd6623  2010-09-08 20:20:16
Changesets in Mercurial are labeled with the "Author" text field. This text field is not related to the login one uses to push changesets. Basically, anyone is able to push a changeset of anyone else.
Andrey Vlasovskikh  2010-09-08 22:51:57
Yup, Andrey's right. Even with separate accounts the "who pushed" data isn't saved, and only the author field is, so you have the same history either way.
Ry4an  2010-09-09 02:00:33
+1  A: 

Mercurial Server is an awesome solution, which I've used on a few occasions.

RyanWilcox  2010-09-08 18:13:55
Just to include the other opinion, I've never been impressed with mercurial server. The name is confusing, it's not a part of the mercurial project and certainly isn't the server for it, and it doesn't offer much functionality that mercurial's own 'hg-ssh' doesn't include. It also lags mercurial in feature support, including sub repositories which have been around for six months now.
Ry4an  2010-09-08 18:23:40
@Ry4an, it seems as if mercurial-server allows for remote administration via mercurial, meaning I would only have to set up the server once with one user, and then I never have to log in again to add/remove users or change permissions; I would simply push new administrative changes. That seems pretty useful. Is there a compelling reason against using mercurial-server, besides lack of support for sub-repositories?
pcd6623  2010-09-08 20:24:49
@pcd6623 There's no compelling reason not to use it, but no compelling reason to use it either. You can always keep your ~/.ssh/authorized_keys file in a mercurial repo that you push-to/update remotely using vanilla hg-ssh. Some people clearly find value in it, but I find I get the same benefits without.
Ry4an  2010-09-09 02:02:00
A: 

You can try the textauth extension. Please give it a go and send some feedback to [email protected], then perhaps you will see it integrated into a coming release of Mercurial.

Martin Geisler  2010-09-09 23:19:12
Is this your project? It looks interesting. You should provide a description or what the goal of the project will be so that others will know what it's all about.
pcd6623  2010-09-10 12:40:07
No, I'm `mg` on Bitbucket, Henrik Stuart (`hstuart`) wrote this. Please fork it on Bitbucket and make him pull your patches if you make any :) You could also start a thread about it on the mailinglist since I guess there must be more users who would like this.
Martin Geisler  2010-09-10 15:55:25
As for that this is about, then it's already documented in the README here: http://bitbucket.org/hstuart/hg-textauth/src
Martin Geisler  2010-09-10 15:57:48

related questions

How would I go about investigating and resolving a Mercurial authorization problem?
Best version control system for a non-networked environment?
Any good git tutorials?
Is a DVCS useful for one developer?
Embeddable distributed version control system in Java?
What GUIs exist for Git on Windows
What do people think of the fossil DVCS?
Does Git work in Windows?
Build sequencing when using distributed version control
How can I integrate a bitbucket repository with the hosted on-demand version of FogBugz?
Locking binary files using git version control system
Comparison between Centralized and Distributed Version Control Systems
How to make sure my git repo code is safe?
Is there a distributed VCS that can manage large files?
Which Version Control System would you use for a 1000+ developer organization? Why?
Copying a directory that is version controlled
How to setup GIT bare HTTP-available repository on IIS-machine
How do DVCSs (DRCSs) work?
How can I get a commit message from a bzr post-commit hook?
Do you use distributed version control?
DVCS Choices - What's good for Windows?
What is a good Mercurial usage pattern for this setup?
Version Control. Getting started...
Different Distributed Version Control Systems working together
Distributed source control options