anonymous acces via URL or whitelist IP

Issue #325 resolved
Guilhem Lettron created an issue

We are using rhodecode for deployment and synchronisation, but we don't want to use passwords in any of our scripts.

The solution that we are using before was to have a special URL for readonly (for example http://server/readonly/repository). This URL was protected by Apache or Nginx to prevent any access from an non-authorize IP. With this URL, our script can pull their changes without any problem (or security problem).

Another solution can be to have a system of whitelist IP for readonly... but, in my point of view, this isn't the job of rhodecode.

PS : I let it as "major" because it's blocking for us in our daily job with rhodecode.

Comments (2)

  1. Marcin Kuzminski repo owner

    Here's a proposed solution: create a remote repo in rhodecode that pulls from the main repo, set default user permission to read, than it could be cloned without settings passwords, VIA rhodecode API set sync of remote-repo with main one (by pulling every N minutes or so), and protect given url in nginx.

  2. Marcin Kuzminski repo owner

    I'm closing this one since in new beta there are a) IP restrictions implemented b) API access can be turned on for any view in RhodeCode (passwordless access based on a token)

  3. Log in to comment