add todo item about hooks not called during untrusted git push

author Joey Hess <joey@kitenet.net>

Tue, 7 Sep 2010 16:01:20 +0000 (12:01 -0400)

committer Joey Hess <joey@kitenet.net>

Tue, 7 Sep 2010 16:01:20 +0000 (12:01 -0400)
author Joey Hess <joey@kitenet.net>
Tue, 7 Sep 2010 16:01:20 +0000 (12:01 -0400)
committer Joey Hess <joey@kitenet.net>
Tue, 7 Sep 2010 16:01:20 +0000 (12:01 -0400)
diff --git a/doc/todo/untrusted_git_push_hooks.mdwn b/doc/todo/untrusted_git_push_hooks.mdwn

new file mode 100644 (file)

index 0000000..313078c
--- /dev/null
+++ b/doc/todo/untrusted_git_push_hooks.mdwn
@@ -0,0 +1,12 @@
+Re the canrename, canremove, and canedit hooks:
+
+Of the three, only canremove is currently checked during an untrusted
+git push (a normal git push is assumed to be from a trusted user and
+bypasses all checks).
+
+It would probably make sense to add the canedit hook to the checks done
+there. Calling the canrename hook is tricky, because after all, git does
+not record explicit file moves.
+
+The checkcontent hook is another hook not currently called there, that
+probably should be.
author	Joey Hess <joey@kitenet.net>
	Tue, 7 Sep 2010 16:01:20 +0000 (12:01 -0400)
committer	Joey Hess <joey@kitenet.net>
	Tue, 7 Sep 2010 16:01:20 +0000 (12:01 -0400)