mirror of https://github.com/ostreedev/ostree.git synced 2024-12-22 17:35:55 +03:00

Timothée Ravier 4ae5065844 docs: Move SPDX identifiers under first title

Having a comment right before the first title apparently confuses
Jekyll.

Fixes: https://github.com/ostreedev/ostree/pull/3185

2024-02-24 16:39:19 +01:00

1.1 KiB

Raw Blame History

nav_order
100

Handling access to authenticated remote repositories

{: .no_toc }

TOC {:toc}

There is no default concept of an "ostree server"; ostree expects to talk to a generic webserver, so any tool and technique applicable for generic HTTP can also apply to fetching content via OSTree's builtin HTTP client.

Using mutual TLS

The tls-client-cert-path and tls-client-key-path expose the underlying HTTP code for mutual TLS.

Each device can be provisioned with a secret key which grants it access to the webserver.

Using basic authentication

The client supports HTTP basic authentication, but this has well-known management drawbacks.

Using cookies

Since this pull request ostree supports adding cookies to a remote configuration. This can be used with e.g. Amazon CloudFront.

1.1 KiB Raw Blame History

Handling access to authenticated remote repositories

Using mutual TLS

Using basic authentication

Using cookies

1.1 KiB

Raw Blame History