undefined | Better HN

0 pointskisielk14y ago0 comments

Couldn't the app use your username / password to connect to github the first time and then generate an SSH key pair which it would use from that point forward?

That seems like the best compromise of security and easy of use to me.

0 comments

3 comments · 2 top-level

mechanical_fish14y ago· 1 in thread

Then the client would only work easily with Github. That would be very sad for those of us who deploy Git repos on other servers than Github.

As it is, I'm pretty sure this is using standard HTTPS auth with Git, which is not that hard to support.

kenneth_reitz14y ago

The client works fine with other Git servers, and uses your standard SSH keys.

"Death to the SSH key" applies only to GitHub interactions — getting a list of your repos, for example.

bonzoesc14y ago

The new GitHub API actually supports Git operations authenticated via OAuth. Just throwing that out there.

j / k navigate · click thread line to collapse