Setting Up a Git Server with SSH Key-Based Access

This guide explains how to set up a Git server with SSH key-based authentication.

Prerequisites

A Linux server with SSH access.
Git installed on the server (sudo apt install git for Debian-based systems).
A client machine with SSH installed.

Steps

1. Create a Git User

On the server, create a dedicated user for Git operations:

bash

sudo adduser git

2. Configure SSH Access

Switch to the git user:
bash
```
sudo su - git
```
Create an .ssh directory:
bash
```
mkdir -p ~/.ssh && chmod 700 ~/.ssh
```

Add the client's public SSH key to ~/.ssh/authorized_keys:

bash

echo "your-client-public-key" >> ~/.ssh/authorized_keys
chmod 600 ~/.ssh/authorized_keys

3. Initialize a Bare Repository

Create a directory for the repository:
bash
```
mkdir -p ~/repositories/my-project.git
```

Initialize it as a bare repository:

bash

git init --bare ~/repositories/my-project.git

4. Set Repository Permissions

Ensure the git user owns the repository:

bash

chown -R git:git ~/repositories/my-project.git

5. Clone the Repository on the Client

On the client machine, clone the repository:

bash

git clone git@your-server-ip:repositories/my-project.git

Adding Users with Specific Permissions

To allow additional users to access the Git server with specific permissions, follow these steps:

1. Add a New User

On the server, create a new user for Git access:

bash

sudo adduser newuser

2. Configure SSH Access for the New User

Switch to the new user:
bash
```
sudo su - newuser
```
Create an .ssh directory:
bash
```
mkdir -p ~/.ssh && chmod 700 ~/.ssh
```

Add the client's public SSH key to ~/.ssh/authorized_keys:

bash

echo "new-client-public-key" >> ~/.ssh/authorized_keys
chmod 600 ~/.ssh/authorized_keys

3. Assign Repository Permissions

To grant the new user access to a specific repository:

Add the new user to the git group:
bash
```
sudo usermod -aG git newuser
```
Ensure the repository directory has the correct group ownership:
bash
```
sudo chown -R git:git ~/repositories/my-project.git
```

Set group write permissions if needed:

bash

sudo chmod -R g+rw ~/repositories/my-project.git

Verify the permissions:
bash
```
ls -ld ~/repositories/my-project.git
```

4. Restrict Access (Optional)

If you want to restrict the new user to read-only access:

Remove write permissions for the group:

bash

sudo chmod -R g-w ~/repositories/my-project.git

Ensure the new user is part of the git group for read access.

Notes

Replace new-client-public-key with the actual public key of the new user.
Adjust permissions based on the level of access required (read-only or read-write).
Test the new user's access by attempting to clone or push to the repository.
Replace your-client-public-key with the actual public key.
Replace your-server-ip with the server's IP address or hostname.

Generating SSH Keys

To use SSH key-based authentication, you need to generate an SSH key pair on the client machine. Follow these steps:

1. Generate the Key Pair

Run the following command on the client machine:

bash

ssh-keygen -t rsa -b 4096 -C "your-email@example.com"

Replace your-email@example.com with your email address.
This will create a 4096-bit RSA key pair.

2. Save the Key Pair

When prompted:

Enter the file path to save the key (or press Enter to use the default location, ~/.ssh/id_rsa).
Optionally, set a passphrase for added security.

3. Verify the Keys

Ensure the keys were generated:

bash

ls ~/.ssh/id_rsa ~/.ssh/id_rsa.pub

id_rsa is the private key (keep this secure).
id_rsa.pub is the public key (share this with the server).

4. Copy the Public Key to the Server

Use the ssh-copy-id command to copy the public key to the server:

bash

ssh-copy-id git@your-server-ip

Replace git@your-server-ip with the appropriate username and server IP address.

Alternatively, manually copy the contents of ~/.ssh/id_rsa.pub to the server's ~/.ssh/authorized_keys file.

Financial Portfolio Development

Theories

Banking

Investing

Index

Retail

Decision Making

Growth and Transformation

Software development

DevOps

SAFe

Estimation - TCS course 5474

Research Methodology

Ai

Narrow

High Powered Computing

Networks

Software_engineering

Software_security

Computer Science

Algorithms

Automata Theory

Theory of Computation

Problems - Computation

Data Science

Data Mining

Stream_processing

Electronics & Automation

Micro_controllers

Atmega

Database Management Systems

Networks

Physical Layer(OSI Layer 1)

Radio

Index

Software Engineering

Artificial Intelligence

Generative AI

Narrow

Sensory

Architect

Software architecture patterns

Togaf

Amazon Web Services

Software Frameworks

Frameworks used for REST

Middleware softwares

Packaging

High Powered Computing

NVIDIA

Observability

Software Operations

Containers

OS

Index

Practical Setups

Introduction to Programming Languages

C(++)

Js

R

Security in Softwares

Layer 6

Linear_regressions

Monte_carlo

Setting Up a Git Server with SSH Key-Based Access ​

Prerequisites ​

Steps ​

1. Create a Git User ​

2. Configure SSH Access ​

3. Initialize a Bare Repository ​

4. Set Repository Permissions ​

5. Clone the Repository on the Client ​

Adding Users with Specific Permissions ​

1. Add a New User ​

2. Configure SSH Access for the New User ​

3. Assign Repository Permissions ​

4. Restrict Access (Optional) ​

Notes ​

Generating SSH Keys ​

1. Generate the Key Pair ​

Setting Up a Git Server with SSH Key-Based Access

Prerequisites

Steps

1. Create a Git User

2. Configure SSH Access

3. Initialize a Bare Repository

4. Set Repository Permissions

5. Clone the Repository on the Client

Adding Users with Specific Permissions

1. Add a New User

2. Configure SSH Access for the New User

3. Assign Repository Permissions

4. Restrict Access (Optional)

Notes

Generating SSH Keys

1. Generate the Key Pair

2. Save the Key Pair

3. Verify the Keys

4. Copy the Public Key to the Server

Notes

Troubleshooting

References