{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 Explosion°爆炸 的问题《Protecting files in git repository》','https://www.manongdao.com/q-292608.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I have a central repository with a subset of files that I want to protect from being changed (by pushing) from other users. If I add these files to .gitignore, they would not be cloned.
Is it possible to give the ability to clone all files, but after cloning add some of them to .gitignore on the client side?
Is there a specific reason why Git must itself be the answer to this?
How about making the files read-only, and dictating as policy that these files shouldn't be pushed?
Sometimes a technological solution is not the simplest way.
If somebody does push changes to these files, these changes can always be reverted.
You can have the files in the repository, commit them, then add them to the .gitignore and then remove them from the next commit.
You can still fetch the files directly prior commit (perhaps tag it with something so it can be fetched by name a bit easier) and this will preserve the state of the file, while not making it easily edited in the repository by accident.
To access those files after pulling the clone, just write a rake task that fetches them for the user of your repository.
It sounds to me like the problem lies elsewhere if you need this level of access restriction.
Nonetheless, if you indeed do want to implement this, consider Gitolite. It allows you to define rather detailed access rules and should probably suffice for your needs.
Gitolite documentation: http://gitolite.com/gitolite/master-toc.html
You can define 'virtual refs' to control access on file level. More on that: http://gitolite.com/gitolite/vref.html
I initially thought about a filter driver (see Pro Book), which would:
But that is not a good solution since those scripts are about stateless file content transformation (see this SO answer).
You can try enforcing a save/restore mechanism in hooks (see the same SO answer), but note that it will be local to your repo (it will protect your files in your repo only, hooks aren't pushed)
You can also use:
See "With git, temporary exclude a changed tracked file from commit in command line", again a local protection only. That will protect them against external push to your repo ("import"), but if you publish them ("export"), than can be modified on the client side.