Summary How can our team disable branch "read access" for individual git users? Does the market offer any existing tools for self-hosted environments? Or is there some other, better means to provide "disabled read access" to git files/directories? Thus far, we think we might prefer git-branch-based access-control, as a) branch-based control seems better than b) directory-based control, as (a) seems able to do everything (b) can, and more. We realize this is a tall order for a tool (git) that is designed to copy everything (in a repo) to a clone (of said repo). We're skeptical, but still curious to see if creative solutions exist or might be invented/discoverable. Preferred features RACL (read-access-control lists) for any branch, including for unlimited # of any individual branches for any set or combination of git users. [Optional] Integration with any git repo client/server software . This way we can theoretically integrate with most any git-based tool/ecosystem. However if a special/custom git tool set is required, we'll explore using that. [Optional] Seamless GitLab integration . We do not yet see GitLab offering this feature. (We do not yet see protected branches with a "disable reads" feature.) [Optional] Self-hosted git repo . We self-host services, including git, for our critical projects whenever possible. But we'll consider working with hosted services if that's the only way, for now. More details We've not yet empirically tested any of the claimed features from various, self-hosting-feature tool providers. But we've performed a tiny bit of research . Nothing we've seen yet outright claims features for "disabled-read privacy"; Gitolite maybe does? There seems to be more market focus on "protecting" branches to avoid data-loss scenarios. Instead, with this discussion, I'm more interested in preventing (read) access of designated users to sensitive information. One could make a different git repo for each "group/class" of access, but that's problematic for numerous reasons, including but not limited to: requiring a theoretically unlimited number of repos for each combination of private info as an organization scales. an inability to tightly-couple private with "full group" information when requiring separate git repos simply to "wall them off" from each other for intra-group privacy. Enabling unlimited "private" git branches within a common, larger repo seems like a more-effective path.

Reputation: 2478

Git: disable read access on a per-branch basis for individual git users?

Summary

How can our team disable branch "read access" for individual git users? Does the market offer any existing tools for self-hosted environments? Or is there some other, better means to provide "disabled read access" to git files/directories?

Thus far, we think we might prefer git-branch-based access-control, as a) branch-based control seems better than b) directory-based control, as (a) seems able to do everything (b) can, and more.

We realize this is a tall order for a tool (git) that is designed to copy everything (in a repo) to a clone (of said repo). We're skeptical, but still curious to see if creative solutions exist or might be invented/discoverable.

Preferred features

RACL (read-access-control lists) for any branch, including for unlimited # of any individual branches for any set or combination of git users.
[Optional] Integration with any git repo client/server software. This way we can theoretically integrate with most any git-based tool/ecosystem. However if a special/custom git tool set is required, we'll explore using that.
[Optional] Seamless GitLab integration. We do not yet see GitLab offering this feature. (We do not yet see protected branches with a "disable reads" feature.)
[Optional] Self-hosted git repo. We self-host services, including git, for our critical projects whenever possible. But we'll consider working with hosted services if that's the only way, for now.

More details

We've not yet empirically tested any of the claimed features from various, self-hosting-feature tool providers. But we've performed a tiny bit of research. Nothing we've seen yet outright claims features for "disabled-read privacy"; Gitolite maybe does?

There seems to be more market focus on "protecting" branches to avoid data-loss scenarios. Instead, with this discussion, I'm more interested in preventing (read) access of designated users to sensitive information.

One could make a different git repo for each "group/class" of access, but that's problematic for numerous reasons, including but not limited to:

requiring a theoretically unlimited number of repos for each combination of private info as an organization scales.
an inability to tightly-couple private with "full group" information when requiring separate git repos simply to "wall them off" from each other for intra-group privacy.

Enabling unlimited "private" git branches within a common, larger repo seems like a more-effective path.

Upvotes: 2

Git: disable read access on a per-branch basis for individual git users?

Summary

Preferred features

More details

Answers (2)

Related Questions