Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add Custom Git Client TLS config for WAF-Secured Repos #1302

Open
wants to merge 4 commits into
base: main
Choose a base branch
from

Conversation

VasylR
Copy link

@VasylR VasylR commented Dec 1, 2023

Add Custom Git Client for WAF-Secured Repos

Introduce a custom Git client to handle repositories behind Web Application
Firewalls (WAF). This client facilitates TLS certificate-based authentication,
enabling secure Git operations in corporate environments.

A typical example of such configuration would be a private Gitlab instance behind Cloudflare web application firewall.
To enable git flow in such environment, one would need to retrieve the TLS keys from Cloudflare and use them to authenticate with Cloudfalre. After successful authentication, the Cloudflare firewall would redirect the request to Gitlab instance.

This is initial commit that works with Gitlab access token. Further development needs to be done to enable more diverse authentication options after the WAF authentication.

Vasyl Rudiuk added 3 commits December 1, 2023 15:59
Introduce a custom Git client to handle repositories behind Web Application
Firewalls (WAF). This client facilitates TLS certificate-based authentication,
enabling secure Git operations in corporate environments.

Signed-off-by: Vasyl Rudiuk <[email protected]>
Signed-off-by: Vasyl Rudiuk <[email protected]>
Signed-off-by: Vasyl Rudiuk <[email protected]>
In some cases we might need to handle proxy setting for the custom gitClient.

Signed-off-by: Vasyl Rudiuk <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant