From 4c71009da60baee436358e84ff1057cd1c80e776 Mon Sep 17 00:00:00 2001
From: Jeff King <peff@peff.net>
Date: Mon, 27 Aug 2012 09:25:53 -0400
Subject: t: test http access to "half-auth" repositories

Some sites set up http access to repositories such that
fetching is anonymous and unauthenticated, but pushing is
authenticated. While there are multiple ways to do this, the
technique advertised in the git-http-backend manpage is to
block access to locations matching "/git-receive-pack$".

Let's emulate that advice in our test setup, which makes it
clear that this advice does not actually work.

Signed-off-by: Jeff King <peff@peff.net>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
---
 t/lib-httpd/apache.conf | 7 +++++++
 1 file changed, 7 insertions(+)

(limited to 't/lib-httpd')

diff --git a/t/lib-httpd/apache.conf b/t/lib-httpd/apache.conf
index 616486f9ea..ec8618dfde 100644
--- a/t/lib-httpd/apache.conf
+++ b/t/lib-httpd/apache.conf
@@ -89,6 +89,13 @@ SSLEngine On
 	Require valid-user
 </Location>
 
+<LocationMatch "^/auth-push/.*/git-receive-pack$">
+	AuthType Basic
+	AuthName "git-auth"
+	AuthUserFile passwd
+	Require valid-user
+</LocationMatch>
+
 <IfDefine DAV>
 	LoadModule dav_module modules/mod_dav.so
 	LoadModule dav_fs_module modules/mod_dav_fs.so
-- 
cgit v1.2.1