how to set-up HTTPS authentication with client certificate and passwords
Igor Lautar
igor.lautar at gmail.com
Mon Nov 2 12:40:42 CST 2009
Hi,
On Mon, Nov 2, 2009 at 7:22 PM, Martin Geisler <mg at lazybytes.net> wrote:
> "Paul van der Linden" <paul at soulbase.nl> writes:
>
> Hi Paul
>
> I'm CC'ing our HTTPS expert, perhaps he can help.
>
>> It looks like the security support in mercurial is not very complete.
>> The gui client for windows (tortoisehg) and the eclipse client both
>> just hangs when a PEM certificate with passphrase is used.
>> And the same problem with repeatedly inputting passwords within one
>> command happens when using http authentication. I think Mercurial
>> needs some improvement there.
>
> Have you seen the [auth] section in the hgrc man page:
>
> http://www.selenic.com/mercurial/hgrc.5.html#auth
>
> That will allow you to specify username and password for HTTP.
>
> It also says something about PEM encoded certificates, but I don't
> anything about those.
If you take a look towards the beginning of this thread, there is a
lot of talk about that auth section.
There are 2 things:
* http[s] authentication
* client certificate and stuff that goes with it (private key,
certificate, passphrase)
First one is clear. You can also specify username (and pwd, but thats
not good idea) as part of URL.
However, for second one, you have to specify passphrase multiple times
during single session, which is sub-optimal (annoying and breaks
workflow).
Will try the keep alive trick.
Regards,
More information about the Mercurial
mailing list