API to pass a server certificate when cloning.

jaanus · jaanus · commit 3dc7a62a022b · 2014-12-29T20:23:42.000+02:00
diff --git a/ObjectiveGit/GTRepository.h b/ObjectiveGit/GTRepository.h
@@ -106,6 +106,9 @@ extern NSString * const GTRepositoryCloneOptionsCredentialProvider;
 /// A BOOL indicating whether local clones should actually clone, or just link.
 extern NSString * const GTRepositoryCloneOptionsCloneLocal;
 
+/// A NSURL pointing to a local file that contains PEM-encoded certificate chain.
+extern NSString *const GTRepositoryCloneOptionsServerCertificateURL;
+
 /// Initialization flags associated with `GTRepositoryInitOptionsFlags` for
 /// +initializeEmptyRepositoryAtFileURL:options:error:.
 ///
@@ -199,7 +202,8 @@ extern NSString * const GTRepositoryInitOptionsOriginURLString;
 ///                         `GTRepositoryCloneOptionsBare`,
 ///                         `GTRepositoryCloneOptionsCheckout`,
 ///                         `GTRepositoryCloneOptionsCredentialProvider`,
-///                         `GTRepositoryCloneOptionsCloneLocal`
+///                         `GTRepositoryCloneOptionsCloneLocal`,
+///                         `GTRepositoryCloneOptionsServerCertificateURL`
 /// error                 - A pointer to fill in case of trouble.
 /// transferProgressBlock - This block is called with network transfer updates.
 /// checkoutProgressBlock - This block is called with checkout updates
diff --git a/ObjectiveGit/GTRepository.m b/ObjectiveGit/GTRepository.m
@@ -59,6 +59,7 @@
 NSString * const GTRepositoryCloneOptionsTransportFlags = @"GTRepositoryCloneOptionsTransportFlags";
 NSString * const GTRepositoryCloneOptionsCredentialProvider = @"GTRepositoryCloneOptionsCredentialProvider";
 NSString * const GTRepositoryCloneOptionsCloneLocal = @"GTRepositoryCloneOptionsCloneLocal";
+NSString * const GTRepositoryCloneOptionsServerCertificateURL = @"GTRepositoryCloneOptionsServerCertificateURL";
 NSString * const GTRepositoryInitOptionsFlags = @"GTRepositoryInitOptionsFlags";
 NSString * const GTRepositoryInitOptionsMode = @"GTRepositoryInitOptionsMode";
 NSString * const GTRepositoryInitOptionsWorkingDirectoryPath = @"GTRepositoryInitOptionsWorkingDirectoryPath";
@@ -265,6 +266,17 @@ + (id)cloneFromURL:(NSURL *)originURL toWorkingDirectory:(NSURL *)workdirURL opt
 	if (localClone) {
 		cloneOptions.local = GIT_CLONE_NO_LOCAL;
 	}
+	
+	NSURL *serverCertificateURL = options[GTRepositoryCloneOptionsServerCertificateURL];
+	if (serverCertificateURL) {
+		const char *file = serverCertificateURL.fileSystemRepresentation;
+		const char *path = NULL;
+		int gitError = git_libgit2_opts(GIT_OPT_SET_SSL_CERT_LOCATIONS, file, path);
+		if (gitError < GIT_OK) {
+			if (error != NULL) *error = [NSError git_errorFor:gitError description:@"Failed to configure the server certificate at %@", serverCertificateURL];
+			return nil;
+		}
+	}
 
 	// If our originURL is local, convert to a path before handing down.
 	const char *remoteURL = NULL;
