[Koha-devel] git-bz: avoid storing unencrypted passwords in gitconfig
David Cook
dcook at prosentient.com.au
Thu Jan 18 02:14:44 CET 2018
This issue has annoyed me for years, so this sounds pretty cool!
I don't love the "cache" and "store" options... but it looks like there
might be an alternative using libsecret or the gnome keyring. These
alternatives can be found in separate packages or built from source it
seems.
On OpenSUSE, I just installed " git-credential-gnome-keyring". On Arch, they
use libsecret:
https://wiki.archlinux.org/index.php/GNOME/Keyring#Git_integration.
It looks like the gnome keyring one is deprecated
(https://stackoverflow.com/questions/36585496/error-when-using-git-credentia
l-helper-with-gnome-keyring-as-sudo), so libsecret is probably the way to
go.
I've tried using /usr/lib/git/git-credential-gnome-keyring, but it doesn't
seem to be working. Admittedly I'm just using a SSH session rather than a
GUI session. I launched DBUS so I don't get errors but it's not saving
credentials using "git credential approve". The "cache" option worked well
though.
David Cook
Systems Librarian
Prosentient Systems
72/330 Wattle St
Ultimo, NSW 2007
Australia
Office: 02 9212 0899
Direct: 02 8005 0595
-----Original Message-----
From: koha-devel-bounces at lists.koha-community.org
[mailto:koha-devel-bounces at lists.koha-community.org] On Behalf Of Julian
Maurice
Sent: Wednesday, 17 January 2018 9:14 PM
To: koha-devel at lists.koha-community.org
Subject: [Koha-devel] git-bz: avoid storing unencrypted passwords in
gitconfig
Hi all,
I recently shared an LXD container containing my Koha dev environment, and
of course I forgot to remove my Bugzilla credentials from the git config...
I immediately changed it, but for that not to happen again I searched for a
way to not have to store unencrypted passwords for git-bz.
The result is here https://github.com/jajm/git-bz/tree/git-credential
It uses git-credential, so you can theoretically use any password manager
you want, as long as you can write a git-credential helper for it (I use the
builtin 'cache' helper, which stores passwords in memory)
I thought it might interest some people here.
For more information, see the commit message at
https://github.com/jajm/git-bz/commit/efb06d8fe3033a83772d0294ab5f67c7f51eaf
57
--
Julian Maurice <julian.maurice at biblibre.com> BibLibre
_______________________________________________
Koha-devel mailing list
Koha-devel at lists.koha-community.org
http://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-devel
website : http://www.koha-community.org/ git :
http://git.koha-community.org/ bugs : http://bugs.koha-community.org/
More information about the Koha-devel
mailing list