summaryrefslogtreecommitdiff
path: root/about/what-is.mdwn
diff options
context:
space:
mode:
authorRichard Maw <richard.maw@gmail.com>2017-02-12 14:54:51 +0000
committerRichard Maw <richard.maw@gmail.com>2017-02-12 14:54:51 +0000
commitbe3ceb4be20806044f1478c7cac1d6214e4eeaec (patch)
treebae509a31fadc298826e4b503a88e493a33e41dc /about/what-is.mdwn
parenta90041a9321e0d773ddcb83cf13076eff4bf6b23 (diff)
downloadgitano-wiki-be3ceb4be20806044f1478c7cac1d6214e4eeaec.tar.bz2
Add more semantic newlines
Diffstat (limited to 'about/what-is.mdwn')
-rw-r--r--about/what-is.mdwn26
1 files changed, 20 insertions, 6 deletions
diff --git a/about/what-is.mdwn b/about/what-is.mdwn
index f5e48c4..52a3b83 100644
--- a/about/what-is.mdwn
+++ b/about/what-is.mdwn
@@ -24,19 +24,33 @@ handle requests to `/info/refs?service=git-{upload,receive}-pack`
when accessed over http,
and the bespoke protocol of the git transport.
-Gitano implements the ssh interface by generating a `.ssh/authorized_keys` file for all the permitted ssh keys that runs a proxy command that determines which user the key belonged to and whether the user is permitted to run the requested command before running the git command.
+Gitano implements the ssh interface by generating a `.ssh/authorized_keys` file
+for all the permitted ssh keys
+that runs a proxy command that determines which user the key belonged to
+and whether the user is permitted to run the requested command
+before running the git command.
-Gitano implements the http interface by providing `gitano-smart-http.cgi` which the system administrator configures their web server to run, which authenticates the user based on a generated htpasswd file then determines whether the authenticated user is permitted to run the requested service before handing it off to `git-http-backend`.
+Gitano implements the http interface by providing `gitano-smart-http.cgi`
+which the system administrator configures their web server to run,
+which authenticates the user based on a generated htpasswd file
+then determines whether the authenticated user is permitted to run the service
+before handing it off to `git-http-backend`.
-Gitano implements the git interface by generating `git-daemon-export-ok` files for every repository that the anonymous user is permitted to read.
+Gitano implements the git interface by generating `git-daemon-export-ok` files
+for every repository that the anonymous user is permitted to read.
# Access rules defined as customisable ACLs
-All Gitano commands consult ACLs written in [lace][] to determine whether the operation is permitted.
+All Gitano commands consult ACLs written in [lace][]
+to determine whether the operation is permitted.
+
Existing git operations have ACLs applied by a hook installed by Gitano.
-This allows a Gitano administrator to define rules that permit delegation of roles to different users,
-and if those roles are defined by group membership and the ability to add a user to a group is delegated
+This allows a Gitano administrator to define rules
+that permit delegation of roles to different users.
+
+If those roles are defined by group membership
+and the ability to add a user to a group is delegated
then the permission to grant permissions can also be delegated.
[lace]: https://www.gitano.org.uk/lace/