diff options
author | Joey Hess <joey@kitenet.net> | 2010-09-07 12:01:20 -0400 |
---|---|---|
committer | Joey Hess <joey@kitenet.net> | 2010-09-07 12:01:20 -0400 |
commit | 7475f90be2c1941d4449791e9e9cd5f3dc3bbb71 (patch) | |
tree | 3f2d9bee3a3126b9075726191725ba90905c844d /doc/todo/untrusted_git_push_hooks.mdwn | |
parent | 38fb7bd42d61d1433f5ccee0dd222ed40668eda7 (diff) | |
download | ikiwiki-7475f90be2c1941d4449791e9e9cd5f3dc3bbb71.tar ikiwiki-7475f90be2c1941d4449791e9e9cd5f3dc3bbb71.tar.gz |
add todo item about hooks not called during untrusted git push
Diffstat (limited to 'doc/todo/untrusted_git_push_hooks.mdwn')
-rw-r--r-- | doc/todo/untrusted_git_push_hooks.mdwn | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/doc/todo/untrusted_git_push_hooks.mdwn b/doc/todo/untrusted_git_push_hooks.mdwn new file mode 100644 index 000000000..313078ce5 --- /dev/null +++ b/doc/todo/untrusted_git_push_hooks.mdwn @@ -0,0 +1,12 @@ +Re the canrename, canremove, and canedit hooks: + +Of the three, only canremove is currently checked during an untrusted +git push (a normal git push is assumed to be from a trusted user and +bypasses all checks). + +It would probably make sense to add the canedit hook to the checks done +there. Calling the canrename hook is tricky, because after all, git does +not record explicit file moves. + +The checkcontent hook is another hook not currently called there, that +probably should be. |