gitolite-rugged 1.2.pre.devel
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +7 -0
- data/.gemtest +0 -0
- data/.gitignore +9 -0
- data/.travis.yml +14 -0
- data/Gemfile +5 -0
- data/Guardfile +13 -0
- data/LICENSE.txt +26 -0
- data/README.md +108 -0
- data/Rakefile +59 -0
- data/gitolite.gemspec +36 -0
- data/lib/gitolite/config/group.rb +62 -0
- data/lib/gitolite/config/repo.rb +107 -0
- data/lib/gitolite/config.rb +284 -0
- data/lib/gitolite/dirty_proxy.rb +32 -0
- data/lib/gitolite/gitolite_admin.rb +276 -0
- data/lib/gitolite/ssh_key.rb +103 -0
- data/lib/gitolite/version.rb +3 -0
- data/lib/gitolite.rb +10 -0
- data/spec/config_spec.rb +498 -0
- data/spec/dirty_proxy_spec.rb +66 -0
- data/spec/fixtures/configs/complicated-output.conf +72 -0
- data/spec/fixtures/configs/complicated.conf +311 -0
- data/spec/fixtures/configs/simple.conf +5 -0
- data/spec/fixtures/keys/bob+joe@test.zilla.com@desktop.pub +1 -0
- data/spec/fixtures/keys/bob-ins@zilla-site.com@desktop.pub +1 -0
- data/spec/fixtures/keys/bob.joe@test.zilla.com@desktop.pub +1 -0
- data/spec/fixtures/keys/bob.pub +1 -0
- data/spec/fixtures/keys/bob@desktop.pub +1 -0
- data/spec/fixtures/keys/bob@foo-bar.pub +1 -0
- data/spec/fixtures/keys/bob@zilla.com.pub +1 -0
- data/spec/fixtures/keys/bob@zilla.com@desktop.pub +1 -0
- data/spec/fixtures/keys/jakub123.pub +1 -0
- data/spec/fixtures/keys/jakub123@foo.net.pub +1 -0
- data/spec/fixtures/keys/joe-bob@god-zilla.com@desktop.pub +1 -0
- data/spec/fixtures/keys/joe@sch.ool.edu.pub +1 -0
- data/spec/fixtures/keys/joe@sch.ool.edu@desktop.pub +1 -0
- data/spec/gitolite_admin_spec.rb +40 -0
- data/spec/group_spec.rb +125 -0
- data/spec/repo_spec.rb +202 -0
- data/spec/spec_helper.rb +21 -0
- data/spec/ssh_key_spec.rb +355 -0
- metadata +280 -0
@@ -0,0 +1,311 @@
|
|
1
|
+
# example conf file for gitolite
|
2
|
+
|
3
|
+
# ----------------------------------------------------------------------------
|
4
|
+
# overall syntax:
|
5
|
+
# - everything is space-separated; no commas, semicolons, etc (except in
|
6
|
+
# the description string for gitweb)
|
7
|
+
# - comments in the normal shell-ish style; no surprises there
|
8
|
+
# - there are NO continuation lines of any kind
|
9
|
+
# - user/repo names as simple as possible; they must start with an
|
10
|
+
# alphanumeric, but after that they can also contain ".", "_", "-".
|
11
|
+
# - usernames can optionally be followed by an "@" and a domainname
|
12
|
+
# containing at least one "." (this allows you to use an email
|
13
|
+
# address as someone's username)
|
14
|
+
# - reponames can contain "/" characters (this allows you to
|
15
|
+
# put your repos in a tree-structure for convenience)
|
16
|
+
|
17
|
+
# objectives, over and above gitosis:
|
18
|
+
# - simpler syntax
|
19
|
+
# - easier gitweb/daemon control
|
20
|
+
# - specify who can push a branch/tag
|
21
|
+
# - specify who can rewind a branch/rewrite a tag
|
22
|
+
|
23
|
+
# ----------------------------------------------------------------------------
|
24
|
+
|
25
|
+
# GROUPS
|
26
|
+
# ------
|
27
|
+
|
28
|
+
# syntax:
|
29
|
+
# @groupname = [one or more names]
|
30
|
+
|
31
|
+
# groups let you club (user or group) names together for convenience
|
32
|
+
|
33
|
+
# * a group is like a #define in C except that it can *accumulate* values
|
34
|
+
# * the config file is parsed in a single-pass, so later *additions* to a
|
35
|
+
# group name cannot affect earlier *uses* of it
|
36
|
+
|
37
|
+
# The following examples should illustrate all this:
|
38
|
+
|
39
|
+
# you can have a group of people...
|
40
|
+
@staff = sitaram some_dev another-dev
|
41
|
+
|
42
|
+
# ...or a group of repos
|
43
|
+
@oss_repos = gitolite linux git perl rakudo entrans vkc
|
44
|
+
|
45
|
+
# ...or even a group of refexes
|
46
|
+
@important = master$ QA_done refs/tags/v[0-9]
|
47
|
+
# (see later for what "refex"s are; I'm only mentioning it
|
48
|
+
# here to emphasise that you can group them too)
|
49
|
+
|
50
|
+
# even sliced and diced differently
|
51
|
+
@admins = sitaram admin2
|
52
|
+
# notice that sitaram is in 2 groups (staff and admins)
|
53
|
+
|
54
|
+
# if you repeat a group name in another definition line, the
|
55
|
+
# new ones get added to the old ones (they accumulate)
|
56
|
+
@staff = au.thor
|
57
|
+
# so now "@staff" expands to all 4 names
|
58
|
+
|
59
|
+
# groups can include other groups, and the included group will
|
60
|
+
# be expanded to whatever value it currently has
|
61
|
+
@interns = indy james
|
62
|
+
@staff = bob @interns
|
63
|
+
# "@staff" expands to 7 names now
|
64
|
+
@interns = han
|
65
|
+
# "@interns" now has 3 names in it, but note that this does
|
66
|
+
# not change @staff
|
67
|
+
|
68
|
+
# REPO AND BRANCH PERMISSIONS
|
69
|
+
# ---------------------------
|
70
|
+
|
71
|
+
# syntax:
|
72
|
+
# start line:
|
73
|
+
# repo [one or more repos and/or repo groups]
|
74
|
+
# followed by one or more permissions lines:
|
75
|
+
# (C|R|RW|RW+|RWC|RW+C|RWD|RW+D|RWCD|RW+CD) [zero or more refexes] = [one or more users]
|
76
|
+
|
77
|
+
# there are 6 types of permissions: R, RW, and RW+ are simple (the "+" means
|
78
|
+
# permission to "rewind" -- force push a non-fast forward to -- a branch).
|
79
|
+
# The *standalone* C permission pertains to creating a REPO and is described
|
80
|
+
# in doc/wildcard-repositories.mkd. The C and D *suffixes* to the RW/RW+
|
81
|
+
# permissions pertain to creating or deleting a BRANCH, and are described in
|
82
|
+
# doc/3-faq-tips-etc.mkd, in the sections on "separating push and create
|
83
|
+
# rights" and "separating delete and rewind rights" respectively.
|
84
|
+
|
85
|
+
# how permissions are matched:
|
86
|
+
# - user, repo, and access (W or +) are known. For that combination, if
|
87
|
+
# any of the refexes match the refname being updated, the push succeeds.
|
88
|
+
# If none of them match, it fails
|
89
|
+
|
90
|
+
# what's a refex? a regex to match against the ref being updated (get it?)
|
91
|
+
# See next section for more on refexes
|
92
|
+
|
93
|
+
# BASIC PERMISSIONS (repo level only; apply to all branches/tags in repo)
|
94
|
+
|
95
|
+
# most important rule of all -- specify who can make changes
|
96
|
+
# to *this* file take effect
|
97
|
+
repo gitolite-admin
|
98
|
+
RW+ = @admins
|
99
|
+
|
100
|
+
# "@all" is a special, predefined, group name of all users
|
101
|
+
# (everyone who has a pubkey in keydir)
|
102
|
+
repo testing
|
103
|
+
RW+ = @all
|
104
|
+
|
105
|
+
# this repo is visible to staff but only sitaram can write to it
|
106
|
+
repo gitolite
|
107
|
+
R = @staff
|
108
|
+
RW+ = sitaram
|
109
|
+
|
110
|
+
# you can split up access rules for a repo for convenience
|
111
|
+
# (notice that @oss_repos contains gitolite also)
|
112
|
+
repo @oss_repos
|
113
|
+
R = @all
|
114
|
+
|
115
|
+
# set permissions to all repos. *Please* do see
|
116
|
+
# doc/3-faq-tips-etc.mkd for notes on this feature
|
117
|
+
repo @all
|
118
|
+
RW+ = @admins
|
119
|
+
|
120
|
+
# SPECIFYING AND USING A REFEX
|
121
|
+
|
122
|
+
# - refexes are specified in perl regex syntax
|
123
|
+
# - refexes are prefix-matched (they are internally anchored with "^"
|
124
|
+
# before being used), which means a refex like "refs/tags/v[0-9]"
|
125
|
+
# matches anything *starting with* that pattern. There may be text
|
126
|
+
# after it (example: refs/tags/v4-r3/p7), and it will still match
|
127
|
+
|
128
|
+
# ADVANCED PERMISSIONS USING REFEXES
|
129
|
+
|
130
|
+
# - if no refex appears, the rule applies to all refs in that repo
|
131
|
+
# - a refex is automatically prefixed by "refs/heads/" if it doesn't start
|
132
|
+
# with "refs/" (so tags have to be explicitly named as
|
133
|
+
# refs/tags/pattern)
|
134
|
+
|
135
|
+
# here's the example from
|
136
|
+
# Documentation/howto/update-hook-example.txt:
|
137
|
+
|
138
|
+
# refs/heads/master junio
|
139
|
+
# +refs/heads/pu junio
|
140
|
+
# refs/heads/cogito$ pasky
|
141
|
+
# refs/heads/bw/.* linus
|
142
|
+
# refs/heads/tmp/.* .*
|
143
|
+
# refs/tags/v[0-9].* junio
|
144
|
+
|
145
|
+
# and here're the equivalent gitolite refexes
|
146
|
+
repo git
|
147
|
+
RW = bobzilla
|
148
|
+
RW master = junio
|
149
|
+
RW+ pu = junio
|
150
|
+
RW cogito$ = pasky
|
151
|
+
RW bw/ = linus
|
152
|
+
RW tmp/ = @all
|
153
|
+
RW refs/tags/v[0-9] = junio
|
154
|
+
|
155
|
+
# DENY/EXCLUDE RULES
|
156
|
+
|
157
|
+
# ***IMPORTANT NOTES ABOUT "DENY" RULES***:
|
158
|
+
|
159
|
+
# - deny rules do NOT affect read access. They only apply to write access.
|
160
|
+
#
|
161
|
+
# - when using deny rules, the order of your rules starts to matter, where
|
162
|
+
# earlier it did not. The first matching rule applies, where "matching" is
|
163
|
+
# defined as either permitting the operation you're attempting (`W` or `+`),
|
164
|
+
# which results in success, or a "deny" (`-`), which results in failure.
|
165
|
+
# (As before, a fallthrough also results in failure).
|
166
|
+
|
167
|
+
# in the example above, you cannot easily say "anyone can write any tag,
|
168
|
+
# except version tags can only be written by junio". The following might look
|
169
|
+
# like it works but it doesn't:
|
170
|
+
|
171
|
+
# RW refs/tags/v[0-9] = junio
|
172
|
+
# RW refs/tags/ = junio linus pasky @others
|
173
|
+
|
174
|
+
# if you use "deny" rules, however, you can do this (a "deny" rule just uses
|
175
|
+
# "-" instead of "R" or "RW" or "RW+" in the permission field)
|
176
|
+
|
177
|
+
RW refs/tags/v[0-9] = junio
|
178
|
+
- refs/tags/v[0-9] = linus pasky @others
|
179
|
+
RW refs/tags/ = junio linus pasky @others
|
180
|
+
|
181
|
+
# FILE/DIR NAME BASED RESTRICTIONS
|
182
|
+
# --------------------------------
|
183
|
+
|
184
|
+
# Here's a hopefully self-explanatory example. Assume the project has the
|
185
|
+
# following contents at the top level: a README, a "doc/" directory, and an
|
186
|
+
# "src/" directory.
|
187
|
+
|
188
|
+
repo foo
|
189
|
+
RW+ = lead_dev # rule 1
|
190
|
+
RW = dev1 dev2 dev3 dev4 # rule 2
|
191
|
+
|
192
|
+
RW NAME/ = lead_dev # rule 3
|
193
|
+
RW NAME/doc/ = dev1 dev2 # rule 4
|
194
|
+
RW NAME/src/ = dev1 dev2 dev3 dev4 # rule 5
|
195
|
+
option mirror.master = mars
|
196
|
+
option mirror.slaves = phobos deimos
|
197
|
+
option mirror.redirectOK = all
|
198
|
+
|
199
|
+
|
200
|
+
repo foo2
|
201
|
+
RW+ = @all-devs
|
202
|
+
- VREF/COUNT/5 = @junior-devs
|
203
|
+
- VREF/NAME/Makefile = @junior-devs
|
204
|
+
|
205
|
+
# Notes
|
206
|
+
|
207
|
+
# - the "NAME/" is part of the syntax; think of it as a keyword if you like.
|
208
|
+
# The rest of it is treated as a refex to match against each file being
|
209
|
+
# touched (see "SPECIFYING AND USING A REFEX" above for details)
|
210
|
+
|
211
|
+
# - file/dir NAME-based restrictions are *in addition* to normal (branch-name
|
212
|
+
# based) restrictions; they are not a *replacement* for them. This is why
|
213
|
+
# rule #2 (or something like it, maybe with a more specific branch-name) is
|
214
|
+
# needed; without it, dev1/2/3/4 cannot push any branches.
|
215
|
+
|
216
|
+
# - if a repo has *any* NAME/ rules, then NAME-based restrictions are checked
|
217
|
+
# for *all* users. This is why rule 3 is needed, even though we don't
|
218
|
+
# actually have any NAME-based restrictions on lead_dev. Notice the pattern
|
219
|
+
# on rule 3.
|
220
|
+
|
221
|
+
# - *each* file touched by the commits being pushed is checked against those
|
222
|
+
# rules. So, lead_dev can push changes to any files, dev1/2 can push
|
223
|
+
# changes to files in "doc/" and "src/" (but not the top level README), and
|
224
|
+
# dev3/4 can only push changes to files in "src/".
|
225
|
+
|
226
|
+
# GITWEB AND DAEMON STUFF
|
227
|
+
# -----------------------
|
228
|
+
|
229
|
+
# No specific syntax for gitweb and daemon access; just make the repo readable
|
230
|
+
# ("R" access) to the special users "gitweb" and "daemon"
|
231
|
+
|
232
|
+
# make "@oss_repos" (all 7 of them!) accessible via git daemon
|
233
|
+
repo @oss_repos
|
234
|
+
R = daemon
|
235
|
+
|
236
|
+
# make the two *large* repos accessible via gitweb
|
237
|
+
repo linux perl
|
238
|
+
R = gitweb
|
239
|
+
|
240
|
+
# REPO OWNER/DESCRIPTION LINE FOR GITWEB
|
241
|
+
|
242
|
+
# syntax, one of:
|
243
|
+
# reponame = "some description string in double quotes"
|
244
|
+
# reponame "owner name" = "some description string in double quotes"
|
245
|
+
|
246
|
+
# note: setting a description also gives gitweb access; you do not have to
|
247
|
+
# give gitweb access as described above if you're specifying a description
|
248
|
+
|
249
|
+
gitolite "Sitaram Chamarty" = "fast, secure, access control for git in a corporate environment"
|
250
|
+
foo = "Foo is a nice test repo"
|
251
|
+
foobar "Bob Zilla" = "Foobar is top secret"
|
252
|
+
bar = "A nice place to get drinks"
|
253
|
+
|
254
|
+
# REPO SPECIFIC GITCONFIG
|
255
|
+
# -----------------------
|
256
|
+
|
257
|
+
# update 2010-02-06; this won't work unless the rc file has the right
|
258
|
+
# settings; please see comments around the variable $GL_GITCONFIG_KEYS in
|
259
|
+
# conf/example.gitolite.rc for details and security information.
|
260
|
+
|
261
|
+
# (Thanks to teemu dot matilainen at iki dot fi)
|
262
|
+
|
263
|
+
# this should be specified within a "repo" stanza
|
264
|
+
|
265
|
+
# syntax:
|
266
|
+
# config sectionname.keyname = [optional value_string]
|
267
|
+
|
268
|
+
# example usage: if you placed a hook in hooks/common that requires
|
269
|
+
# configuration information that is specific to each repo, you could do this:
|
270
|
+
|
271
|
+
repo gitolite
|
272
|
+
config hooks.mailinglist = gitolite-commits@example.tld
|
273
|
+
config hooks.emailprefix = "[gitolite] "
|
274
|
+
config foo.bar = ""
|
275
|
+
config foo.baz =
|
276
|
+
|
277
|
+
# This does either a plain "git config section.key value" (for the first 3
|
278
|
+
# examples above) or "git config --unset-all section.key" (for the last
|
279
|
+
# example). Other forms (--add, the value_regex, etc) are not supported.
|
280
|
+
|
281
|
+
# INCLUDE SOME OTHER FILE
|
282
|
+
# -----------------------
|
283
|
+
|
284
|
+
include "foo.conf"
|
285
|
+
subconf "bar.conf"
|
286
|
+
|
287
|
+
# this includes the contents of $GL_ADMINDIR/conf/foo.conf here
|
288
|
+
|
289
|
+
# Notes:
|
290
|
+
# - the include statement is not allowed inside delegated fragments for
|
291
|
+
# security reasons.
|
292
|
+
# - you can also use an absolute path if you like, although in the interests
|
293
|
+
# of cloning the admin-repo sanely you should avoid doing this!
|
294
|
+
|
295
|
+
# EXTERNAL COMMAND HELPERS -- RSYNC
|
296
|
+
# ---------------------------------
|
297
|
+
|
298
|
+
# If $RSYNC_BASE is non-empty, the following config entries come into play
|
299
|
+
# (otherwise they are ignored):
|
300
|
+
|
301
|
+
# a "fake" git repository to collect rsync rules. Gitolite does not
|
302
|
+
# auto-create any repo whose name starts with EXTCMD/
|
303
|
+
repo EXTCMD/rsync
|
304
|
+
# grant permissions to files/dirs within the $RSYNC_BASE tree. A leading
|
305
|
+
# NAME/ is required as a prefix; the actual path starts after that. Matching
|
306
|
+
# follows the same rules as given in "FILE/DIR NAME BASED RESTRICTIONS" above
|
307
|
+
RW NAME/ = sitaram
|
308
|
+
RW NAME/foo/ = user1
|
309
|
+
R NAME/bar/ = user2
|
310
|
+
# just to remind you that these are perl regexes, not shell globs
|
311
|
+
RW NAME/baz/.*/*.c = user3
|
@@ -0,0 +1 @@
|
|
1
|
+
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAsRofYfjAUdw0McxGpLTxBbZyKN05HGY19ZIjEQmBPUe2Skt1i/SLwIYzTzKv6vEgAdT9SwmCsO/jpDY/ZM+MhWy4okBisn04yIHCW10q4+YNo2WatzttEa1W+hC58nKtoq/0HkvPVdoeOZxcNtpjvgvkrXH2zdmX7xnA1AAWtqRNkRYWPKjiojkg92aqmJLISSIDeZs2wvXbFO3BJhkvyr3W60cinKhGBBscvdCYUi5pb9dXIFhEEqRf1JkT5CEmF3p4GqSt4/L79nR0LV45grS4NbcN+fCnjWZ8PQhmJ+WPLKkydgR1YvobeY7zDHdHJXWLhsPa+SjwI3WfzrB+GQ== bob@zilla.com
|
@@ -0,0 +1 @@
|
|
1
|
+
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAsRofYfjAUdw0McxGpLTxBbZyKN05HGY19ZIjEQmBPUe2Skt1i/SLwIYzTzKv6vEgAdT9SwmCsO/jpDY/ZM+MhWy4okBisn04yIHCW10q4+YNo2WatzttEa1W+hC58nKtoq/0HkvPVdoeOZxcNtpjvgvkrXH2zdmX7xnA1AAWtqRNkRYWPKjiojkg92aqmJLISSIDeZs2wvXbFO3BJhkvyr3W60cinKhGBBscvdCYUi5pb9dXIFhEEqRf1JkT5CEmF3p4GqSt4/L79nR0LV45grS4NbcN+fCnjWZ8PQhmJ+WPLKkydgR1YvobeY7zDHdHJXWLhsPa+SjwI3WfzrB+GQ== bob@zilla.com
|
@@ -0,0 +1 @@
|
|
1
|
+
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAsRofYfjAUdw0McxGpLTxBbZyKN05HGY19ZIjEQmBPUe2Skt1i/SLwIYzTzKv6vEgAdT9SwmCsO/jpDY/ZM+MhWy4okBisn04yIHCW10q4+YNo2WatzttEa1W+hC58nKtoq/0HkvPVdoeOZxcNtpjvgvkrXH2zdmX7xnA1AAWtqRNkRYWPKjiojkg92aqmJLISSIDeZs2wvXbFO3BJhkvyr3W60cinKhGBBscvdCYUi5pb9dXIFhEEqRf1JkT5CEmF3p4GqSt4/L79nR0LV45grS4NbcN+fCnjWZ8PQhmJ+WPLKkydgR1YvobeY7zDHdHJXWLhsPa+SjwI3WfzrB+GQ== bob@zilla.com
|
@@ -0,0 +1 @@
|
|
1
|
+
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA6EFlh48tzCnepmggd09sUEM4m1zH3Fs/X6XWm1MAkEnMsD5hFGjkcNabDM8vq9zIRZ05YC6Gxo2plstAf+X4Y636+hyFvbDONB9mRP7DxJhFRaBScSFH60jeTz4ue2ExH3xA1JkaHMcV5vooUqG4BW8Vy/sz8wt/s0aIg9xqkrPOnfvqwunZ/zFUNyL8tC1HY3zGUkRzEVd2yRKaI+DGyRsh8HuYIb2X3NQ0YsU3uGGud7ObmxDbM7WGniyxRVK3lYCvgnTjvdPGi7Xx9QNQz53zLFbklGPZSfpFFHS84qR0Rd/+MnpT50FODhTmXHZtZF1eik09z63GW3YVt4PGoQ== bob@zilla.com
|
@@ -0,0 +1 @@
|
|
1
|
+
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAwZc2kw4Bc8Kksp0XBiDR/rDrUAmv2THB9OVbRwJ7TEelU8OFJqCx1syjdjAgS+LE3K5d5xtDMYRlxE2hkl8V6EySY9Q35qWqaqhmS8erZap0qiCWM5vlzxWFKOpnhQdNbNjA7a7FSTDT6ThOC9sTCJfMvNdBiiUUGGDE48AvtwtF3er24h8w7J5623AICfOdhfPAFavTO6/QpeHRe8QOkbBJ2oaJDer4rDetgtBUgHXh3jANgD2ICRFd9l5eCozkDCISFJ6Xg2Eq8gMJ2DKj3BSzBpRPiAJ1YVsr/cBzGxRVRPS6Go485E2r7l7zAsE1t/t6eRUU4W5ZeopxD4GUXQ== bob@zilla.com
|
@@ -0,0 +1 @@
|
|
1
|
+
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDajoou61M6Fjebh2WEIgdCDf76YCVXTepYogBgE8/rd0LaPB0zdzwWjt+nDTJTx2ZMI+riCB8M7vzrXwG6zUTF49KrzQ4WEsV66yfEk+kyQ5WCx9L05seeFIhbYrk3TbEWUUWwCeXU3yj9cHiNwAxzWK3OwDcPbRu5zRk5JjPE491wrywmhn3klxy6BQcFS42qbci9DsNq9tTcfqJn+3m3s7JBVc2f58Blf45PAMlYUe8TH8up/vtUeg1NPysozKRu9+sUw8ChVUZOlA3tL9Zs76GQG2Q+fgXEV4eRAjF/jrmMT5vE7lHMkG0V5WEO7SPsFXoibmRLRgyRA2wQuS49 bob@zilla.com
|
@@ -0,0 +1 @@
|
|
1
|
+
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAu1cY+0C5QV/0mcdobqS673BVlT7weW1lZKp83v8kTYHJJ8NLKixnPf4VePUoE5IMdmWMHNtAtSCG+X/Gdo/2VBHWbZ/O2mC2WSYH0u/nk+Bw0l30/vbV0wP3rcapY42BiMl/H0CPuxql99SBcVJoAaKkxJ4uvyR/hQ+mEmSIYz7mD11opCC6owmWm7R5Sdf2UGXzYXHwu5G9DdIE+QcmYbLkltCBHwa17syoM5QtetbHc/S/wbudrLclJXPHJ0xEtJMhGEHzNJndwYpOA4R61O+phIXIwdtdBeCAxAQyb9hf+qrOBaMfXyFn/WF0ov8hAnKDWWKg74e4ZHYJ2qPSRw== bob@zilla.com
|
@@ -0,0 +1 @@
|
|
1
|
+
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAsRofYfjAUdw0McxGpLTxBbZyKN05HGY19ZIjEQmBPUe2Skt1i/SLwIYzTzKv6vEgAdT9SwmCsO/jpDY/ZM+MhWy4okBisn04yIHCW10q4+YNo2WatzttEa1W+hC58nKtoq/0HkvPVdoeOZxcNtpjvgvkrXH2zdmX7xnA1AAWtqRNkRYWPKjiojkg92aqmJLISSIDeZs2wvXbFO3BJhkvyr3W60cinKhGBBscvdCYUi5pb9dXIFhEEqRf1JkT5CEmF3p4GqSt4/L79nR0LV45grS4NbcN+fCnjWZ8PQhmJ+WPLKkydgR1YvobeY7zDHdHJXWLhsPa+SjwI3WfzrB+GQ== bob@zilla.com
|
@@ -0,0 +1 @@
|
|
1
|
+
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAvtAkUG0e/dgqzb9Vtj6mspYCueII5U/gx3fnpIb2j8ng/ZJPPLYIb2UCwHdFBj/VZerKiJn6epJRi8qj4ddC4Z/LPNgjn06gbjAAubyb2Lki/XSvizpP6j4OtRnt/Vf17n1hyUKN0OAQmSaf1DoXsvWHpb64U7WxbY3Z3XLdJlqtIXW0vr3X13RKx6JZDGM2re/1ymZ5SJZT/KTruqtC42Yu4C2ktSa+JRh82+jALGy/5A/o1lsCziCSE/+iycVNM9hSfbwGTC1AVT1WO2BiQlduUL3tk4XyMEjlOXF2K4FobcBhLTrNtLc24vnlx5HkcBmuubq7x6g1pw4znwItgQ== jakub123@foo.net
|
@@ -0,0 +1 @@
|
|
1
|
+
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEArDPbrc0rP+Pux38Y14rMkgbPHo7iY89/VG80BH8dXVB1nisFHgY6zJdSPJ3zrEm1j81Hc7tZvd3FGjOKP8Ae02/J8O4WaVdB5pMo81YxQWu3eV6nD7x7AIeZEBauK7zV3eqyxTZ/V0oBd7e9VKMukxoiv+RXlXdItpH0md3bpQ3IreFjfaBrFnX0QLdGx0CjimKtMNOU7yKRlvuGcrvMoRtXSUzssAUtjmy8cRabBqZyJVOFrk6MhE1VpcAEE47Sb2ovFgfx5w4kA7mRAz6jO+MAM5go0lGoK26WrR9p/ZXuhmmdjQMPdSCssGQxni657vLp3F7PGV2AG35M58IwuQ==
|
@@ -0,0 +1 @@
|
|
1
|
+
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAsRofYfjAUdw0McxGpLTxBbZyKN05HGY19ZIjEQmBPUe2Skt1i/SLwIYzTzKv6vEgAdT9SwmCsO/jpDY/ZM+MhWy4okBisn04yIHCW10q4+YNo2WatzttEa1W+hC58nKtoq/0HkvPVdoeOZxcNtpjvgvkrXH2zdmX7xnA1AAWtqRNkRYWPKjiojkg92aqmJLISSIDeZs2wvXbFO3BJhkvyr3W60cinKhGBBscvdCYUi5pb9dXIFhEEqRf1JkT5CEmF3p4GqSt4/L79nR0LV45grS4NbcN+fCnjWZ8PQhmJ+WPLKkydgR1YvobeY7zDHdHJXWLhsPa+SjwI3WfzrB+GQ== bob@zilla.com
|
@@ -0,0 +1 @@
|
|
1
|
+
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAu9Y0aeYzlF/e/JZDYr4s/BmCnU5WATugdxnEDboTFgSt0rIZ3P+93m+wchGgP/GzspHa/gSIBBjDBwmzPlhdNieJdiNyJ0n0BvUWOBlI3wNQLU+wdqa1UwxQyPZNSplxyzhcsIgD6kPqYR9JE6Yga7QUnJdP/vAB+XtMoZlc+CVKjxLrjijSHX57WJ0bSXwKtYVHtgCGtJ1mmAZV/q64SR3mqEwB7WG0BTNwT0ruHRk4Zg/EpuutStYGne23/1FBSrfMirQCEneTiLOO/vAibWLzTRWSVyRT9YJYeH0Cp5dXnu3MqPL6+PhaP+iDtx6Vo/h2jeCJZpJUJb7dX9nl/Q== joe@sch.ool.edu
|
@@ -0,0 +1 @@
|
|
1
|
+
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAt6+DWErgYKwCLQ+1DiD05iZc1FFgU2n+QXSqAOIjU5O2FKVgGU5JLOGydidOUK/vWRrPmS045Iv4BxTPIUPMLjn9lBjUkY7ZxfJb5aSW+9zwE/5/073DswRwHVZuxsxfScgqkwenTjN6bbM+qnASn+b6yxfRLmp86IzIXxKp2EiJ4Anw/9oUxre/K25WemTo8eUfKLfTS+z0KLSs1C9TJpO/MkDkHiv1S2wcnduA+nVcbSo7MuxrVDdQIQcDf0gKwwLwxtvKZXtUWC3Ji9kn3F86aRVBuMcl068t+UbbKvLc0BKo7RFMQ+nHXHosu1GJBwal+wWygbBksTk+92hRGQ== joe@sch.ool.edu
|
@@ -0,0 +1,40 @@
|
|
1
|
+
require 'spec_helper'
|
2
|
+
require 'fakefs/spec_helpers'
|
3
|
+
|
4
|
+
describe Gitolite::GitoliteAdmin do
|
5
|
+
conf_dir = File.join(File.dirname(__FILE__), 'fixtures', 'configs')
|
6
|
+
repo_dir = File.join(File.dirname(__FILE__), 'fixtures', 'gitolite-admin')
|
7
|
+
|
8
|
+
# Rugged doesn't complain when giving nil keys for testing
|
9
|
+
settings = {private_key: nil, public_key: nil}
|
10
|
+
|
11
|
+
describe '#is_gitolite_admin_repo?' do
|
12
|
+
it 'should detect a non gitolite-admin repository' do
|
13
|
+
expect(GitoliteAdmin.is_gitolite_admin_repo?('/tmp')).to be false
|
14
|
+
end
|
15
|
+
end
|
16
|
+
|
17
|
+
describe '#save' do
|
18
|
+
it 'should commit file to gitolite-admin repository' do
|
19
|
+
Dir.mktmpdir('gitolite-rugged-admin-repo') do |dir|
|
20
|
+
|
21
|
+
tmp_repo = File.join(dir, "gitolite-admin")
|
22
|
+
FileUtils.cp_r(repo_dir, tmp_repo)
|
23
|
+
FileUtils.mv(File.join(tmp_repo, ".gitted"), File.join(tmp_repo, '.git'))
|
24
|
+
|
25
|
+
gl_admin = GitoliteAdmin.new(tmp_repo, settings)
|
26
|
+
|
27
|
+
c = Gitolite::Config.new(File.join(conf_dir, 'complicated.conf'))
|
28
|
+
c.filename = 'gitolite.conf'
|
29
|
+
|
30
|
+
gl_admin.config = c
|
31
|
+
gl_admin.save
|
32
|
+
|
33
|
+
new_file = File.join(tmp_repo, 'conf', c.filename)
|
34
|
+
expect(File.file?(new_file)).to be true
|
35
|
+
expect(IO.read(new_file)).to eq IO.read(File.join(conf_dir, 'complicated-output.conf'))
|
36
|
+
end
|
37
|
+
end
|
38
|
+
end
|
39
|
+
|
40
|
+
end
|
data/spec/group_spec.rb
ADDED
@@ -0,0 +1,125 @@
|
|
1
|
+
require 'spec_helper'
|
2
|
+
|
3
|
+
describe Gitolite::Config::Group do
|
4
|
+
describe "#new" do
|
5
|
+
it "should create a new group with an empty list of users" do
|
6
|
+
group = Gitolite::Config::Group.new("testgroup")
|
7
|
+
group.users.empty?.should be true
|
8
|
+
group.name.should == "testgroup"
|
9
|
+
end
|
10
|
+
|
11
|
+
it "should create a new group with a name containing #{Gitolite::Config::Group::PREPEND_CHAR}" do
|
12
|
+
name = "#{Gitolite::Config::Group::PREPEND_CHAR}testgroup"
|
13
|
+
group = Gitolite::Config::Group.new(name)
|
14
|
+
group.name.should == "testgroup"
|
15
|
+
end
|
16
|
+
end
|
17
|
+
|
18
|
+
describe "users" do
|
19
|
+
before :each do
|
20
|
+
@group = Gitolite::Config::Group.new('testgroup')
|
21
|
+
end
|
22
|
+
|
23
|
+
describe "#add_user" do
|
24
|
+
it "should allow adding one user with a string" do
|
25
|
+
@group.add_user("bob")
|
26
|
+
@group.size.should == 1
|
27
|
+
@group.users.first.should == "bob"
|
28
|
+
end
|
29
|
+
|
30
|
+
it "should allow adding one user with a symbol" do
|
31
|
+
@group.add_user(:bob)
|
32
|
+
@group.size.should == 1
|
33
|
+
@group.users.first.should == "bob"
|
34
|
+
end
|
35
|
+
|
36
|
+
it "should not add the same user twice" do
|
37
|
+
@group.add_user("bob")
|
38
|
+
@group.size.should == 1
|
39
|
+
@group.add_user(:bob)
|
40
|
+
@group.size.should == 1
|
41
|
+
@group.users.first.should == "bob"
|
42
|
+
end
|
43
|
+
|
44
|
+
it "should maintain users in sorted order" do
|
45
|
+
@group.add_user("susan")
|
46
|
+
@group.add_user("peyton")
|
47
|
+
@group.add_user("bob")
|
48
|
+
@group.users.first.should == "bob"
|
49
|
+
@group.users.last.should == "susan"
|
50
|
+
end
|
51
|
+
end
|
52
|
+
|
53
|
+
describe "#add_users" do
|
54
|
+
it "should allow adding multiple users at once" do
|
55
|
+
@group.add_users("bob", "joe", "sue", "sam", "dan")
|
56
|
+
@group.size.should == 5
|
57
|
+
end
|
58
|
+
|
59
|
+
it "should allow adding multiple users in nested arrays" do
|
60
|
+
@group.add_users(["bob", "joe", ["sam", "sue", "dan"]], "bill")
|
61
|
+
@group.size.should == 6
|
62
|
+
end
|
63
|
+
|
64
|
+
it "should allow adding users of symbols and strings" do
|
65
|
+
@group.add_users("bob", :joe, :sue, "sam")
|
66
|
+
@group.size.should == 4
|
67
|
+
end
|
68
|
+
|
69
|
+
it "should not add the same user twice" do
|
70
|
+
@group.add_users("bob", :bob, "bob", "sam")
|
71
|
+
@group.size.should == 2
|
72
|
+
end
|
73
|
+
end
|
74
|
+
|
75
|
+
describe "#rm_user" do
|
76
|
+
before :each do
|
77
|
+
@group.add_users("bob", "joe", "susan", "sam", "alex")
|
78
|
+
end
|
79
|
+
|
80
|
+
it "should support removing a user via a String" do
|
81
|
+
@group.rm_user("bob")
|
82
|
+
@group.size.should == 4
|
83
|
+
end
|
84
|
+
|
85
|
+
it "should support removing a user via a Symbol" do
|
86
|
+
@group.rm_user(:bob)
|
87
|
+
@group.size.should == 4
|
88
|
+
end
|
89
|
+
end
|
90
|
+
|
91
|
+
describe "#empty!" do
|
92
|
+
it "should clear all users from the group" do
|
93
|
+
@group.add_users("bob", "joe", "sue", "jim")
|
94
|
+
@group.size.should == 4
|
95
|
+
@group.empty!
|
96
|
+
@group.size.should == 0
|
97
|
+
end
|
98
|
+
end
|
99
|
+
|
100
|
+
describe "#size" do
|
101
|
+
it "should reflect how many users are in the group" do
|
102
|
+
@group.add_users("bob", "joe", "sue", "jim")
|
103
|
+
@group.users.length.should == @group.size
|
104
|
+
end
|
105
|
+
end
|
106
|
+
|
107
|
+
describe "#has_user?" do
|
108
|
+
it "should search for a user via a String" do
|
109
|
+
@group.add_user("bob")
|
110
|
+
@group.has_user?("bob").should be true
|
111
|
+
end
|
112
|
+
|
113
|
+
it "should search for a user via a Symbol" do
|
114
|
+
@group.add_user(:bob)
|
115
|
+
@group.has_user?(:bob).should be true
|
116
|
+
end
|
117
|
+
end
|
118
|
+
end
|
119
|
+
|
120
|
+
describe "#to_s" do
|
121
|
+
group = Gitolite::Config::Group.new("testgroup")
|
122
|
+
group.add_users("bob", "joe", "sam", "sue")
|
123
|
+
group.to_s.should == "@testgroup = bob joe sam sue\n" #10 spaces after @testgroup
|
124
|
+
end
|
125
|
+
end
|