When setting up Diffusion for Git hosting it is required to set up vcs-user with NOPASSWD option in sudoers somewhat like:
gituser ALL=(phabricatoruser) SETENV: NOPASSWD: /bin/ls, /usr/bin/git-upload-pack, /usr/bin/git-recieve-pack, /usr/bin/git
On Debian 9 (Stretch) git is using symlinks for and git-receive-pack:
/usr/bin/git-receive-pack -> git
Which is causing issues with sudo. This way, sudo doesn’t execute command as phabricatoruser user and asks for the password. No matter what combination of commands is specified same issue happens. Trying to use hardlinks instead of symlinks doesn’t yield any results.
Has anyone else experienced such issues with Diffusion setup? How did you resolved it (except defining
gituser ALL=(phabricatoruser) SETENV: NOPASSWD: ALL)?