From: Joey Hess <joey@kitenet.net>
Date: Tue, 7 Sep 2010 16:01:20 +0000 (-0400)
Subject: add todo item about hooks not called during untrusted git push
X-Git-Tag: 3.20100915~51
X-Git-Url: http://git.tremily.us/?p=ikiwiki.git;a=commitdiff_plain;h=7475f90be2c1941d4449791e9e9cd5f3dc3bbb71

add todo item about hooks not called during untrusted git push
---

diff --git a/doc/todo/untrusted_git_push_hooks.mdwn b/doc/todo/untrusted_git_push_hooks.mdwn
new file mode 100644
index 000000000..313078ce5
--- /dev/null
+++ b/doc/todo/untrusted_git_push_hooks.mdwn
@@ -0,0 +1,12 @@
+Re the canrename, canremove, and canedit hooks:
+
+Of the three, only canremove is currently checked during an untrusted
+git push (a normal git push is assumed to be from a trusted user and
+bypasses all checks).
+
+It would probably make sense to add the canedit hook to the checks done
+there. Calling the canrename hook is tricky, because after all, git does
+not record explicit file moves.
+
+The checkcontent hook is another hook not currently called there, that
+probably should be.