官网 http://gitolite.com/gitolite/index.html

安装配置 http://gitolite.com/gitolite/install/

傻瓜安装教程 http://gitolite.com/gitolite/fool_proof_setup/

快速指南(中文)https://git-scm.com/book/zh/v1/%E6%9C%8D%E5%8A%A1%E5%99%A8%E4%B8%8A%E7%9A%84-Git-Gitolite

快速指南(英文)https://git-scm.com/book/en/v1/Git-on-the-Server-Gitolite

1安装

1) 创建 git 用户

useradd git

passwd changeit

2)使用root用户安装git

yum list git

yum install git

3)安装 perl-Data-Dumper.x86_64 (因为执行 gitolite/install 时的异常 Can't locate Data/Dumper.pm in @INC)

yum list perl*Dumper*

yum install perl-Data-Dumper.x86_64

4)切换到 git 用户并克隆 gitolite 源码

su git

cd ~

git clone https://github.com/sitaramc/gitolite
    ./install -to <dir>

        to copy the entire 'src' directory to <dir>.  If <dir> is not in

        $PATH, use the full path to run gitolite commands.

        Please provide a full path, not a relative path.

5)安装 gitolite

ls gitolite -l

./gitolite/install -to ~/bin
Usage:  gitolite setup [<option>]

-pk, --pubkey <file>        pubkey file name

'-pk' can be used to replace the admin key; useful if you lost the admin's private key but do have shell access to the server.

6)上传并设置 public key ,公钥文件名即账户名

./bin/gitolite setup -pk zxg.pub

7)在服务器端显示自动创建的仓库的目录结构

./repositories/gitolite-admin.git/

./repositories/gitolite-admin.git/HEAD

./repositories/gitolite-admin.git/logs

./repositories/gitolite-admin.git/logs/HEAD

./repositories/gitolite-admin.git/logs/refs

./repositories/gitolite-admin.git/logs/refs/heads

./repositories/gitolite-admin.git/logs/refs/heads/master

./repositories/gitolite-admin.git/index

./repositories/gitolite-admin.git/description

./repositories/gitolite-admin.git/COMMIT_EDITMSG

./repositories/gitolite-admin.git/hooks

./repositories/gitolite-admin.git/hooks/pre-push.sample

./repositories/gitolite-admin.git/hooks/post-update

./repositories/gitolite-admin.git/hooks/prepare-commit-msg.sample

./repositories/gitolite-admin.git/hooks/update.sample

./repositories/gitolite-admin.git/hooks/commit-msg.sample

./repositories/gitolite-admin.git/hooks/pre-rebase.sample

./repositories/gitolite-admin.git/hooks/update

./repositories/gitolite-admin.git/hooks/pre-commit.sample

./repositories/gitolite-admin.git/hooks/pre-applypatch.sample

./repositories/gitolite-admin.git/hooks/applypatch-msg.sample

./repositories/gitolite-admin.git/hooks/post-update.sample

./repositories/gitolite-admin.git/gl-conf

./repositories/gitolite-admin.git/branches

./repositories/gitolite-admin.git/refs

./repositories/gitolite-admin.git/refs/tags

./repositories/gitolite-admin.git/refs/heads

./repositories/gitolite-admin.git/refs/heads/master

./repositories/gitolite-admin.git/objects

./repositories/gitolite-admin.git/objects/内容略

./repositories/gitolite-admin.git/config

./repositories/gitolite-admin.git/info

./repositories/gitolite-admin.git/info/exclude

8) 在客户端验证该服务是否成功

git ls-remote git@123.206.22.178:gitolite-admin

结果(显示的是gitolite-admin 仓库内容):

e173b96b63241df3946f5babd0fcdc819a4eb0df        HEAD

e173b96b63241df3946f5babd0fcdc819a4eb0df        refs/heads/master

2 授权

1) 克隆 gitolite-admin 仓库到本地

git clone git@123.206.22.178:gitolite-admin

其目录结构为:

└─gitolite-admin

    ├─conf

    │      gitolite.conf


    └─keydir

            zxg.pub

2)假设为小红授权

① 将 xiaohong.pub 复制到 keydir 下

② 编辑 gitolite.conf 文件追加如下内容:

repo foo

    RW+     =   xiaohong

    R       =   zxg

③ add 、commit 、push 三步提交到服务器即可

3)权限控制详细文档

access rule examples

Gitolite's access rules are very powerful. The simplest use was already shown above. Here is a slightly more detailed example:

repo foo

    RW+                     =   alice

    -   master              =   bob

    -   refs/tags/v[0-9]    =   bob

    RW                      =   bob

    RW  refs/tags/v[0-9]    =   carol

    R                       =   dave

Here's what these example rules say:

  • alice can do anything to any branch or tag -- create, push, delete, rewind/overwrite etc.

  • bob can create or fast-forward push any branch whose name does not start with "master" and create any tag whose name does not start with "v"+digit.

  • carol can create tags whose names start with "v"+digit.

  • dave can clone/fetch.

Please see the main documentation linked above for all the gory details, as well as more features and examples.

groups

Gitolite allows you to group users or repos for convenience. Here's an example that creates two groups of users:

@staff      =   alice bob carol

@interns    =   ashok

repo secret

    RW      =   @staff

repo foss

    RW+     =   @staff

    RW      =   @interns

Group lists accumulate. The following two lines have the same effect as the earlier definition of @staff above:

@staff      =   alice bob

@staff      =   carol

You can also use group names in other group names:

@all-devs   =   @staff @interns

Finally, @all is a special group name that is often convenient to use if you really mean "all repos" or "all users".

Gitolite 权限控制的更多相关文章

  1. 尝试asp.net mvc 基于controller action 方式权限控制方案可行性

    微软在推出mvc框架不久,短短几年里,版本更新之快,真是大快人心,微软在这种优秀的框架上做了大量的精力投入,是值得赞同的,毕竟程序员驾驭在这种框架上,能够强力的精化代码,代码层次也更加优雅,扩展较为方 ...

  2. MongoDB 安全和访问权限控制

    MongoDB的访问控制能够有效保证数据库的安全,访问控制是指绑定Application监听的IP地址,设置监听端口,使用账户和密码登录 一,访问控制的参数 1,绑定IP地址 mongod 参数:-- ...

  3. WebGIS中快速整合管理多源矢量服务以及服务权限控制的一种设计思路

    文章版权由作者李晓晖和博客园共有,若转载请于明显处标明出处:http://www.cnblogs.com/naaoveGIS/ 1.背景 在真实项目中,往往GIS服务数据源被其他多个信息中心或者第三方 ...

  4. ASP.NET MVC实现权限控制

    这篇分享一下 ASP.NET MVC权限控制.也就是说某一用户登录之后,某一个用户是否有权限访问Controller,Action(操作),视图等 想实现这些功能,需要在数据库创建好几个表:[User ...

  5. springmvc+spring+mybatis+maven项目集成shiro进行用户权限控制【转】

    项目结构:   1.maven项目的pom中引入shiro所需的jar包依赖关系 ? 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 ...

  6. Appfuse:权限控制

    Appfuse的权限控制依赖于Struts的Menu机制,common下的menu.jsp是对菜单顺序的定义,详细的菜单项和菜单链接及权限再menu-config.xml中控制,如下: <Men ...

  7. .NET WebAPI 用ActionFilterAttribute实现token令牌验证与对Action的权限控制

    项目背景是一个社区类的APP(求轻吐...),博主主要负责后台业务及接口.以前没玩过webAPI,但是领导要求必须用这个(具体原因鬼知道),只好硬着头皮上了. 最近刚做完权限这一块,分享出来给大家.欢 ...

  8. 浅谈Yii-admin的权限控制

    说到CMS,最需要有的东西就是权限控制,特别是一些复杂的场景,多用户,多角色,多部门,子父级查看等等.最近在开发一个线下销售的东东,这个系统分为管理员端,省代端,客户端,门店端,销售端, 部门端,部门 ...

  9. Go语言实战 - revel框架教程之权限控制

    一个站点上面最基本都会有三种用户角色,未登录用户.已登录用户和管理员.这一次我们就来看看在revel框架下如何进行权限控制. 因为revel是MVC结构的,每一个url其实都会映射到一个具体的Cont ...

随机推荐

  1. /usr/local/ 和 /opt

    /usr/local:用户级的程序目录,可以理解为C:/Progrem Files/.用户自己编译的软件默认会安装到这个目录下. /opt:用户级的程序目录,可以理解为D:/Software,opt有 ...

  2. vue2.0细节剖析

    1.样式切换 单个切换样式 /*html部分*/ <div class="bg" v-bind:class="{active:isActive}"> ...

  3. 递归函数 day17

    一 递归函数 n = 1 金老板 38+2 =40n = 2 alex n+2= 金老板 36+2 = 38n = 3 wusir n+2 = alex wusir 36 def age(n): #n ...

  4. How to use GM MDI interface for programming

    GM has had its newest programming/J2534 Pass Thru device on the market for some years now. A lot has ...

  5. Nginx 如何设置反向代理

    网络结构如上图.可能你只有一个公网的Ip地址. 但是您的内网有个网站需要映射至外网.而又不想添加其它的非80端口.则你可以直接使用nginx来做反向代理即可.首先,配置nginx.conf文件. ht ...

  6. 标准IO缓冲机制

    参考资料: https://q16964777.iteye.com/blog/2228244 知道缓冲有几种模式:无缓冲.行缓冲.全缓冲.通过判断FILTE中的 _flags 的判断可以知道究竟是那种 ...

  7. Tomcat的目录结构及部署应用程序

    下载好的二进制的Tomcat,解压会看到7个目录,如下: bin 目录:Tomcat的脚本存放目录,如启动.关闭脚本等.其中 **.bat用于windows平台,**.sh用于Linux平台 conf ...

  8. MD5加密及Hash长度拓展攻击【通俗易懂】

    先放一个简单点的利用了Hash长度拓展攻击的题目 if($COOKIE["getmein"] === md5($secret . urldecode($username . $pa ...

  9. Scrum 敏捷开发

    使用敏捷开发一个月的事件,基本的开发模式跟我遇到的这个文章介绍的基本类似,暂时简单Copy到了这里...... http://www.scrumcn.com/agile/scrum-knowledge ...

  10. Windows 8 Stroe Apps 控件

    重新想象 Windows 8 Store Apps (3) - 控件之内容控件: ToolTip, Frame, AppBar, ContentControl, ContentPresenter; 容 ...