Use public key to authenticate on rhodecode

Issue #761 wontfix
Marcelo Bissaro
created an issue

I would like to clone a git repository from Rhodecode using HTTPS, without the need to type my password. It is a nice-to-have feature meanly for automation scripts that run under specified user on Linux.

Actually I can clone over ssh by using "git clone ssh://user@machine:/path/to/repo.git" and using rsa public keys (properly exported to .ssh/authorized_keys) but it is not good because we bypass all the security permissions that were specified on Rhodecode.

It also works using .netrc in my home directory, but I don't like this approach because the password is showed in clean text.

I can't figure out any other solutions :) There is something implemented on newer versions of Rhodecode? (Im using 1.4.1)

Thanks

Comments (2)

  1. Marcin Kuzminski repo owner

    It's possible to integrate RhodeCode with SSH, but there's no step-by-step instruction yet, i know it just from design point of view that this should be possible, yet no-one done it now.

    I don't see a big security issues if you use a random hash password vs private-key that is stored on the same filesystem. In latest version of RhodeCode also it's possible to put IP restrictions for each user, so it adds extra security if your password is compromised. Ofcourse it works only if you can limit yourself to few IPs.

    I'm closing this one a wontfix.

  2. Log in to comment