Menu

#727 secure anonymous clones of mercurial repos

open
nobody
mercurial (2)
None
2024-07-03
2020-01-26
Anthon van der Neut
No

I just moved my ~40 mercurial base opensource projects (with ~400 issues and ~1700 comments) to sourceforge.
I just got notified that accessing mercurial anonymously and securily is not possible. I.e.

 hg clone http://hg.code.sf.net/p/ruamel-yaml/code ruamel-yaml-code

works, but not:

hg clone https://hg.code.sf.net/p/ruamel-yaml/code ruamel-yaml-code

How can the repository be checked out over a secure channel without downstream integrators having to log in?

Discussion

  • Dave Brondsema

    Dave Brondsema - 2020-01-28

    Ticket moved from /p/forge/site-support/20289/

    Can't be converted:

     

  • Dave Brondsema

    Dave Brondsema - 2020-01-28

    Hi,

    Thanks for your feedback about our mercurial services. We will check with our devops and engineering teams on what is necessary for anonymous https support.

    Sincerely,

    SourceForge Support

     

  • Bernhard Reiter

    Bernhard Reiter - 2020-09-11

    Hi,
    for roundup we'd also like to have an anonymous HTTPS access to the mercurial source code.
    So how is this feature coming?

    Best Regards,
    Bernhard

     

    • SourceForge Support

      SourceForge Support - 2020-09-11

      Hi,

      This request keeps being worked on, hopefully sooner or later we will have
      an update on it.

      Sincerely,

      SourceForge Support

      On Fri, Sep 11, 2020 at 12:34 AM Bernhard Reiter ber@users.sourceforge.net
      wrote:

      Hi,
      for roundup we'd also like to have an anonymous HTTPS access to the
      mercurial source code.
      So how is this feature coming?

      Best Regards,
      Bernhard

      • [feature-requests:#727] secure anonymous clones of mercurial repos*

      Status: open
      Labels: mercurial
      Created: Sun Jan 26, 2020 07:28 AM UTC by Anthon van der Neut
      Last Updated: Tue Jan 28, 2020 09:54 PM UTC
      Owner: nobody

      I just moved my ~40 mercurial base opensource projects (with ~400 issues
      and ~1700 comments) to sourceforge.
      I just got notified that accessing mercurial anonymously and securily is
      not possible. I.e.

      hg clone http://hg.code.sf.net/p/ruamel-yaml/code ruamel-yaml-code

      works, but not:

      hg clone https://hg.code.sf.net/p/ruamel-yaml/code ruamel-yaml-code

      How can the repository be checked out over a secure channel without
      downstream integrators having to log in?

      Sent from sourceforge.net because you indicated interest in
      https://sourceforge.net/p/forge/feature-requests/727/

      To unsubscribe from further messages, please visit
      https://sourceforge.net/auth/subscriptions/

       
      alternate

      • Bernhard Reiter

        Bernhard Reiter - 2020-09-14

        Thanks for working on it!

         

  • KOLANICH

    KOLANICH - 2021-05-27

    ping

     

  • John Rouillard

    John Rouillard - 2021-10-28

    Hello:

    Do we have a status on when anonymous checkout will be https capable?

    -- rouilj

     

  • John Rouillard

    John Rouillard - 2022-07-24

    Any more updates?
    It looks like sites like OpenHub refuse to download code over http endpoint.

    Thanks.

     

  • John Rouillard

    John Rouillard - 2022-11-13

    Can we assume this will never be implemented and we need to develop a workaround?

     

Log in to post a comment.