gitolite/doc/report-output.mkd

# F=info_expand output of the "info" and "expand" commands

Running "ssh git@server info" or "ssh git@server expand" gives you certain
output.  This doclet describes the output; you're welcome to help me make it
clearer :)

## #info the "info" command

Usage:

    ssh git@server info [optional_pattern [list of users]]

The "info" command shows you all the repos (and repo patterns) in the config
file that you have been given any kind of access to.  If you supply an
optional pattern the output will be limited to repos matching that pattern.
If you're an admin you can append a list of users to see their permissions
instead of your own; in this mode the pattern is mandatory, even if you just
use `.` to cheat.

Here is a sample output of the info command.  There are 3 columns of
permissions (create, read, and write) in the output, although the first column
is often blank.

    $ ssh git@server info
    hello sitaram, this is gitolite v2.1-29-g5a125fa running on git 1.7.4.4
    the gitolite config gives you the following access:
         R     	SecureBrowse
         R   W 	anu-wsd
         R   W 	entrans
        @R   W 	git-notes
        @R   W 	gitolite
         R   W 	gitolite-admin
         R   W 	indic_web_input
     @C  R   W 	private/sitaram/[\w.-]+
         R   W 	proxy
     @C @R   W 	public/sitaram/[\w.-]+
        @R_ @W_	testing
         R   W 	vkc

### interpreting the output

The meaning of C, R, and W are self-explanatory, but they may be prefixed or
suffixed by a symbol:

  * an `@` prefix means "@all" users have been given this permission

        repo foo
            R       =   @all

  * a `#` prefix means this user is a "superuser" (think root's shell prompt)
    and so has access to `@all` repos.  Which means you'll see this prefix
    (or, in some cases, an `&`; see next bullet) for *all* the repos, or none
    of them

        repo @all
            R       =   sitaram

  * an `&` prefix means both of the above are true

The `_` suffix is special.  This says the user has only implicit access (due
to one of the `@all` uses), but no explicit access.

### #limitoutput using patterns to limit output

Here are a couple of samples with optional patterns:

    $ ssh git@server info git
    hello sitaram, this is gitolite v2.1-29-g5a125fa running on git 1.7.4.4
    the gitolite config gives you the following access:
        @R   W 	git-notes
        @R   W 	gitolite
         R   W 	gitolite-admin

    $ ssh git@server info admin
    hello sitaram, this is gitolite v2.1-29-g5a125fa running on git 1.7.4.4
    the gitolite config gives you the following access:
         R   W 	gitolite-admin

In "big-config" mode (i.e., when `GL_BIG_CONFIG` is set) the pattern is
**mandatory**.  You can try and cheat the system by passing in a "." but
gitolite truncates the output after 20 results to prevent a DOS.  (This limit
can be changed; see `$BIG_INFO_CAP` in the documentation for
[`~/.gitolite.rc`][rc]).

The pattern is also mandatory when an admin wants to find out what access some
*other* user has, which you may have guessed from the syntax in the "usage"
line above.

### #openssh5.6 side note: openssh 5.6

It used to be that the gitolite documentation would say "just use `ssh
git@server`" in the past, because gitolite defaults to the "info" command if
no command is passed.

However, starting with [openssh 5.6][openssh56], this won't work.  The ssh
client will now "Kill channel when pty allocation requests fail".  This means
that gitolite is not even invoked; you only get a message about pty allocation
failure, followed by "connection closed".

So now you have to use an explicit "info" command, (`ssh git@server info`) or
add the `-T` option to ssh (`ssh -T git@server`).

[openssh56]: http://www.openssh.org/txt/release-5.6

## #expand the "expand" command

Usage:

    ssh git@server expand [optional_pattern]

The "expand" command trawls through all the repositories on the server,
limiting to repos matching the pattern you provide (default is all repos
found).

For each repo found, it searches for it in the config -- either the actual
repo entry (when the repo is not a wildcard repo), or an entry for the
wildcard that matches it -- and reports permissions.  It also takes into
account extra permissions enabled by the `setperms` command (see
doc/wildcard-repositories.mkd).  It shows you the "creator" of the repo as
an additional column, defaulting to `<gitolite>` if it was not a wildcard
repo.

The limit of number of repos shown in big-config mode (20, by default)
described earlier applies to the "expand" command also.
MASSIVE set of changes to documents! I got tired of being told "TL;DR". Now the online versions of most documents fit on a page or two, or at least most of them do. The rest has been split out (and you can see the links to the split out sections right where the text is in the raw Markdown). This is much more pleasant to read, and I've improved the linking so it's much less effort for me to keep the links correct. 2011-11-01 06:03:20 +01:00			`# F=info_expand output of the "info" and "expand" commands`
document the info and expand commands 2010-04-16 16:19:22 +02:00
			`Running "ssh git@server info" or "ssh git@server expand" gives you certain`
			`output. This doclet describes the output; you're welcome to help me make it`
			`clearer :)`

MASSIVE set of changes to documents! I got tired of being told "TL;DR". Now the online versions of most documents fit on a page or two, or at least most of them do. The rest has been split out (and you can see the links to the split out sections right where the text is in the raw Markdown). This is much more pleasant to read, and I've improved the linking so it's much less effort for me to keep the links correct. 2011-11-01 06:03:20 +01:00			`## #info the "info" command`
document the info and expand commands 2010-04-16 16:19:22 +02:00
			`Usage:`

allow "info" to have some chance of working on big-config setups! Fedora, till now, had no hope in hell of running the info command. Why? Because the output of the info command is semantically the same as the output of the compile script before the big-config mode was created. And we all know how _that_ went ;-) So now you get to give "info" a partial reponame or a pattern, just like in the case of "expand". And if you're under GL_BIG_CONFIG this pattern is mandatory. And if you try to cheat it'll still stop after showing 5 entries to prevent (accidental?) DOSs Anyway, see doc changes in this commit for more details. 2010-07-30 17:54:39 +02:00			`ssh git@server info [optional_pattern [list of users]]`
document the info and expand commands 2010-04-16 16:19:22 +02:00
			`The "info" command shows you all the repos (and repo patterns) in the config`
allow "info" to have some chance of working on big-config setups! Fedora, till now, had no hope in hell of running the info command. Why? Because the output of the info command is semantically the same as the output of the compile script before the big-config mode was created. And we all know how _that_ went ;-) So now you get to give "info" a partial reponame or a pattern, just like in the case of "expand". And if you're under GL_BIG_CONFIG this pattern is mandatory. And if you try to cheat it'll still stop after showing 5 entries to prevent (accidental?) DOSs Anyway, see doc changes in this commit for more details. 2010-07-30 17:54:39 +02:00			`file that you have been given any kind of access to. If you supply an`
			`optional pattern the output will be limited to repos matching that pattern.`
			`If you're an admin you can append a list of users to see their permissions`
			`instead of your own; in this mode the pattern is mandatory, even if you just`
doc cleanup on info and expand command jefferai pointed out that some of the links about this were broken, and a quick look showed that it was described in multiple places too. Brought it all together... 2010-08-21 13:32:12 +02:00			use `.` to cheat.

			`Here is a sample output of the info command. There are 3 columns of`
			`permissions (create, read, and write) in the output, although the first column`
			`is often blank.`

minor docfixes typos, minor clarifications, removing outdated stuff that got missed, adding some emphasis here and there, re-phrasing some places, etc. 2011-10-13 14:04:02 +02:00			`$ ssh git@server info`
			`hello sitaram, this is gitolite v2.1-29-g5a125fa running on git 1.7.4.4`
			`the gitolite config gives you the following access:`
			`R SecureBrowse`
			`R W anu-wsd`
			`R W entrans`
			`@R W git-notes`
			`@R W gitolite`
			`R W gitolite-admin`
			`R W indic_web_input`
			`@C R W private/sitaram/[\w.-]+`
			`R W proxy`
			`@C @R W public/sitaram/[\w.-]+`
			`@R_ @W_ testing`
			`R W vkc`
doc for change in info/expand command outputs 2010-08-24 13:36:53 +02:00
MASSIVE set of changes to documents! I got tired of being told "TL;DR". Now the online versions of most documents fit on a page or two, or at least most of them do. The rest has been split out (and you can see the links to the split out sections right where the text is in the raw Markdown). This is much more pleasant to read, and I've improved the linking so it's much less effort for me to keep the links correct. 2011-11-01 06:03:20 +01:00			`### interpreting the output`
doc for change in info/expand command outputs 2010-08-24 13:36:53 +02:00
			`The meaning of C, R, and W are self-explanatory, but they may be prefixed or`
			`suffixed by a symbol:`

			* an `@` prefix means "@all" users have been given this permission

			`repo foo`
			`R = @all`

			* a `#` prefix means this user is a "superuser" (think root's shell prompt)
			and so has access to `@all` repos. Which means you'll see this prefix
			(or, in some cases, an `&`; see next bullet) for all the repos, or none
			`of them`

			`repo @all`
			`R = sitaram`

			* an `&` prefix means both of the above are true

			The `_` suffix is special. This says the user has only implicit access (due
			to one of the `@all` uses), but no explicit access.

MASSIVE set of changes to documents! I got tired of being told "TL;DR". Now the online versions of most documents fit on a page or two, or at least most of them do. The rest has been split out (and you can see the links to the split out sections right where the text is in the raw Markdown). This is much more pleasant to read, and I've improved the linking so it's much less effort for me to keep the links correct. 2011-11-01 06:03:20 +01:00			`### #limitoutput using patterns to limit output`
document the info and expand commands 2010-04-16 16:19:22 +02:00
doc cleanup on info and expand command jefferai pointed out that some of the links about this were broken, and a quick look showed that it was described in multiple places too. Brought it all together... 2010-08-21 13:32:12 +02:00			`Here are a couple of samples with optional patterns:`

minor docfixes typos, minor clarifications, removing outdated stuff that got missed, adding some emphasis here and there, re-phrasing some places, etc. 2011-10-13 14:04:02 +02:00			`$ ssh git@server info git`
			`hello sitaram, this is gitolite v2.1-29-g5a125fa running on git 1.7.4.4`
			`the gitolite config gives you the following access:`
			`@R W git-notes`
			`@R W gitolite`
			`R W gitolite-admin`

			`$ ssh git@server info admin`
			`hello sitaram, this is gitolite v2.1-29-g5a125fa running on git 1.7.4.4`
			`the gitolite config gives you the following access:`
			`R W gitolite-admin`
doc cleanup on info and expand command jefferai pointed out that some of the links about this were broken, and a quick look showed that it was described in multiple places too. Brought it all together... 2010-08-21 13:32:12 +02:00
			In "big-config" mode (i.e., when `GL_BIG_CONFIG` is set) the pattern is
			`mandatory. You can try and cheat the system by passing in a "." but`
Make limit on number of repos displayed by info with GL_BIG_CONFIG configurable [doc added by Sitaram] 2011-03-24 02:45:35 +01:00			`gitolite truncates the output after 20 results to prevent a DOS. (This limit`
MASSIVE set of changes to documents! I got tired of being told "TL;DR". Now the online versions of most documents fit on a page or two, or at least most of them do. The rest has been split out (and you can see the links to the split out sections right where the text is in the raw Markdown). This is much more pleasant to read, and I've improved the linking so it's much less effort for me to keep the links correct. 2011-11-01 06:03:20 +01:00			can be changed; see `$BIG_INFO_CAP` in the documentation for
			[`~/.gitolite.rc`][rc]).
doc cleanup on info and expand command jefferai pointed out that some of the links about this were broken, and a quick look showed that it was described in multiple places too. Brought it all together... 2010-08-21 13:32:12 +02:00
			`The pattern is also mandatory when an admin wants to find out what access some`
			`other user has, which you may have guessed from the syntax in the "usage"`
			`line above.`

MASSIVE set of changes to documents! I got tired of being told "TL;DR". Now the online versions of most documents fit on a page or two, or at least most of them do. The rest has been split out (and you can see the links to the split out sections right where the text is in the raw Markdown). This is much more pleasant to read, and I've improved the linking so it's much less effort for me to keep the links correct. 2011-11-01 06:03:20 +01:00			`### #openssh5.6 side note: openssh 5.6`
(minor) doc the effect of openssh 5.6 more clearly 2011-02-06 01:53:37 +01:00
			It used to be that the gitolite documentation would say "just use `ssh
			git@server`" in the past, because gitolite defaults to the "info" command if
			`no command is passed.`

(minor) doc tweaks 2011-05-16 15:21:43 +02:00			`However, starting with [openssh 5.6][openssh56], this won't work. The ssh`
			`client will now "Kill channel when pty allocation requests fail". This means`
			`that gitolite is not even invoked; you only get a message about pty allocation`
(minor) doc the effect of openssh 5.6 more clearly 2011-02-06 01:53:37 +01:00			`failure, followed by "connection closed".`

			So now you have to use an explicit "info" command, (`ssh git@server info`) or
			add the `-T` option to ssh (`ssh -T git@server`).

			`[openssh56]: http://www.openssh.org/txt/release-5.6`

MASSIVE set of changes to documents! I got tired of being told "TL;DR". Now the online versions of most documents fit on a page or two, or at least most of them do. The rest has been split out (and you can see the links to the split out sections right where the text is in the raw Markdown). This is much more pleasant to read, and I've improved the linking so it's much less effort for me to keep the links correct. 2011-11-01 06:03:20 +01:00			`## #expand the "expand" command`
document the info and expand commands 2010-04-16 16:19:22 +02:00
			`Usage:`

allow "info" to have some chance of working on big-config setups! Fedora, till now, had no hope in hell of running the info command. Why? Because the output of the info command is semantically the same as the output of the compile script before the big-config mode was created. And we all know how _that_ went ;-) So now you get to give "info" a partial reponame or a pattern, just like in the case of "expand". And if you're under GL_BIG_CONFIG this pattern is mandatory. And if you try to cheat it'll still stop after showing 5 entries to prevent (accidental?) DOSs Anyway, see doc changes in this commit for more details. 2010-07-30 17:54:39 +02:00			`ssh git@server expand [optional_pattern]`
document the info and expand commands 2010-04-16 16:19:22 +02:00
			`The "expand" command trawls through all the repositories on the server,`
			`limiting to repos matching the pattern you provide (default is all repos`
			`found).`

			`For each repo found, it searches for it in the config -- either the actual`
			`repo entry (when the repo is not a wildcard repo), or an entry for the`
			`wildcard that matches it -- and reports permissions. It also takes into`
			account extra permissions enabled by the `setperms` command (see
more doc revamp; some notes below - all anchors prefixed by AUTO_ now - some bad links fixed (maybe still a few I didn't catch) - misc wording changes/additions (support section to README, "technical skills" section to install doc, etc). 2010-09-02 15:45:32 +02:00			`doc/wildcard-repositories.mkd). It shows you the "creator" of the repo as`
document the info and expand commands 2010-04-16 16:19:22 +02:00			an additional column, defaulting to `<gitolite>` if it was not a wildcard
			`repo.`
Make limit on number of repos displayed by info with GL_BIG_CONFIG configurable [doc added by Sitaram] 2011-03-24 02:45:35 +01:00
			`The limit of number of repos shown in big-config mode (20, by default)`
			`described earlier applies to the "expand" command also.`