Wildcard .hgrc entries for certficate fingerprints

Augie Fackler durin42 at gmail.com
Sun May 15 17:19:10 CDT 2011


On May 15, 2011, at 9:49 AM, Jeff Kowalczyk wrote:
> 
> My .hgrc is growing rapidly with hostfingerprints entries for
> (projectname).googlecode.com, all of which have the same certificate fingerprint.
> 
> Feature request to allow hostname wildcard entries so a certificate fingerprint
> can be expressed without duplication per project.

(Google Project Hosting hat on for this paragraph) Our certificate should be properly signed, so if you set up a CA store as described in the wiki[0] you shouldn't need to have all the one-off hostfingerprint entries.

[0] http://mercurial.selenic.com/wiki/CACertificates#Configuration_of_HTTPS_certificate_authorities

> 
> [hostfingerprints]
> *.googlecode.com = af:b2:02:(...)

Matt/Mads, if you don't have any objections to this, I'll gladly implement it. I was figuring we could let * match only a single level of hostname, so if you need to match foo.bar.googlecode.com (which is possible), you'd need to add another entry for *.*.googlecode.com. Does that seem reasonable enough?

> 
> Thanks,
> Jeff
> 
> _______________________________________________
> Mercurial mailing list
> Mercurial at selenic.com
> http://selenic.com/mailman/listinfo/mercurial




More information about the Mercurial-devel mailing list