Please add basic user management to bzr://
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Bazaar |
New
|
Undecided
|
Unassigned |
Bug Description
I'd like to have basic user management like in svnserve.conf of svnserve. I know that, currently, this isn't possible for bzr:// (https:/
I know there is user management in bzr+ssh:// but it is very difficult to set up a bzr+ssh server (with chrootjail) in Windows (actually, I've never managed to set up the chrootjail...). Without a chrootjail there is always the risk that a bzr+ssh server exposes much more data than only the served repository.
Currently, people who need a smart (fast) server with user authentication but no encryption have to use bzr+ssh://, although they don't need the encryption. A bzr+ssh:// server is much harder to set up than a bzr:// server. Two examples for people who need user authentication but no encryption: a) Project teams who have a Bazaar repository on a server which is only accessible from the company intern LAN and to which only developers may have write access; b) People who have a server which is *only* accessible from VPN connections (because all other ports are deliberately blocked) and who need user authentication for Bazaar
In svnserve.conf it is possible to set which access anonymous users have (none/read/write), which access authenticated users have (none/read/write) and, most important, which users can authenticate themselves (with password).
Any kind of user authentication over unencrypted transports exposes passwords or at least hashes of passwords. Even in company intranets this is a potential security risk. Villains may use wireshark to record foreign branching operations and capture the whole content of a bazaar branch regardless of authentication information or anonymous read access.
If a company trusts it's intranet users they should use a public writeable bazaar smart server over bzr://. They are easily setup.