From cc9f200554a2defc241f791b6c673e2314a9dcc9 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Jakobus=20Sch=C3=BCrz?= Date: Fri, 2 Aug 2019 03:54:56 +0200 Subject: [PATCH] =?UTF-8?q?Readme=20erg=C3=A4nzt?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- README.rst | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/README.rst b/README.rst index 8a20bbd..22bec00 100644 --- a/README.rst +++ b/README.rst @@ -253,6 +253,11 @@ It is possible, to use pubkeys in parallel to these principals from certificates public-sshkey in the keydir. ### static principal-files +Static principal-files have a big drawback in this usecase. Always the first found match is taken. Every user has the same alloewd principals (allowedPrincipals from config). I don't know, how to +get a match from the current user to the right principal-line... The first one is taken, which matches, so every time, the first line is taken... + +If you know, how to solve that, let me know. So i use only the dynamic AuthorizedPrincipalCommand + If you don't want to use the AuthorizedPrincipalCommand, you get a statically generated principal-file on each commit of your gitosis-admin repo. Just add::