Is it somehow possible to have an assets directory powered by git-lfs or maybe git-annex that can handle pictures and other bigger data so that they won't clutter up my git history?
Is it somehow possible to have an assets directory powered by git-lfs or maybe git-annex that can handle pictures and other bigger data so that they won't clutter up my git history?
There are multiple pages on the wiki regarding git-annex support, also I found that by just enabling use of symlinks, git-annex works well [1].
1: http://git.cbaines.net/ikiwiki/commit/?h=git-annex&id=3957bbab17874d60f2597cebcc02cda5c212067a
The check for symbolic links avoids a security vulnerability. Please do not patch it out. We will not support versions of ikiwiki that have been modified in this way.
(In particular, if your wiki has more than one committer, then the other committers can use symbolic links to leak the contents of any file that is readable by the wiki.)
If you want to store a separate assets directory, I would recommend using an underlay directory. You can use git-annex for this if it is placed in direct mode.
I do want to support git-annex and some limited/safe subset of symlinks in ikiwiki, but not until we can do that without introducing a security flaw.
Thanks for you comments, I'll try to document my journey to get this to work. Right now the situation is this:
I have a kinda big wiki which also includes a directory assets under which all pictures and anything else is found. this worked well in the past, however it makes for a pretty bloated git repository. I'm not completely sure how, but these are some tasks I have to accomplish:
If I have imagined this correctly then I should be able to have an independently run assets directory which works basically the same as before, but the difference will be, that it doesn't bloat my repo's history anymore.
Yes. Almost every ikiwiki site is configured to use the basewiki underlay,
/usr/share/ikiwiki/basewikior similar, which contains things like the defaultstyle.cssandikiwiki/formatting.mdwn. You can add more underlays, and they behave a bit like a union mount: every (non-excluded) page or attachment found in thesrcdiror in any underlay is used, unless it is masked by a page or attachment of the same name in a "higher-level" underlay. Thesrcdiris the highest level, thebasewikiis the lowest, and the other underlays are stacked in between. So you'd have something like this:srcdirindex.mdwnis rendered as/index.htmlphotos.mdwnis rendered as/photos/index.htmlphotos/1234.jpgis copied to/photos/1234.jpgjavascript...basewikistyle.cssis copied tostyle.cssindex.mdwnis ignored because it is masked by the one in thesrcdirYes, you'd need to rebase your git history with
git filter-branchor similar, or discard the history completely and re-import.No, the underlay would normally be next to the
srcdirrather than inside it, so there would be no need to.gitignoreit.ikiwiki does not currently have any automation for this. You can use git-annex (currently only in direct mode because of the symlink check) but ikiwiki will not help you to sync between the local copy and the server copy.
I've tried again and again to make that work in git-annex support. I'm not sure what's going on anymore, because I've been looking at this for 5 years, wrote a patch 3 years ago, and gave up 2 years ago, so my memory is failing me a little.
The takeaway, for me, is that the recommended approach of using the underlay does not work without assistance. There are two main issues:
It would be really nice to have a better setup for this. I wonder if it wouldn't be easier to do that with Git LFS, because it's a little better at bundling the files along. But it generally assumes there's a magic central location where we can find files from, which is not the model I'm looking for here.
Anyways, just a "me too", I guess, but it would be awesome to have the greatest ikiwiki minds lean over this problem and fix it. It's kind of weird to not have ikiwiki support here considering the history of the project, but I understand that Joey has mostly moved away from active ikiwiki maintenance at this point, so it's understandable.
Cheers! -- anarcat
Oh, you're using git-annex for the srcdir? The approach I'd vaguely had in mind was to have an ordinary git repository with the Markdown/smaller assets/etc. as the srcdir, and a parallel (no common commits) git-annex with larger assets (photos) as an underlay.
I feel as though broken symlinks in the srcdir probably should shadow the underlay, because otherwise there's nothing we can use as a "white-out" to suppress files from the underlay. (But perhaps the canonical white-out should be a symlink to /dev/null, as used in systemd.)
In an ideal world, symlinks in the srcdir would be treated as the content that they point to, if and only if the symlink is somehow "safe", with symlinks to non-pruned files in the srcdir and symlinks to non-pruned files in .git/annex/objects/ specifically being considered "safe". This is not yet that ideal world, because my to-do list for ikiwiki is a lot longer than the time I can justify spending on it.
I think this mechanism would need to be in terms of "for page/attachment X (a symlink), read file Y (the target of the symlink) instead of X" determined during scanning, rather than removing the
-lcheck fromreadfile(), because that-lcheck is a good safety-catch against implementation mistakes that could lead to private file disclosure.Sorry, I am not going to review patches that relax the symlink security check unless I can concentrate on them enough to be confident that I'm not introducing security vulnerabilities. I realise this means that review has taken too long, but delays (even long ones) seem better than CVEs.
Yeah well, here I am using ikiwiki-hosting which sets up a standard set of repositories to push to. Here I push to
ssh://user@host/and everything is magic after. So adding another repo would be quite clunky.I understand I agree with that general design.
I do not believe I'm removing the -l check from readfile() in the latest patch. It is removed from
find_src_files, but only as a strong armed measure: some more clever checks should be implemented there to check the targets...Agreed.
I don't mind the delay so much anymore, TBH... As I said, I've mostly given up and I assume something will either pop up by magic in the future or this will never happen. It's not like I have the time to "concentrate on them enough to be confident that I'm not introducing security vulnerabilities" as you so clearly put it: I probably don't have your grasp on the ikiwiki source so it makes my job even harder, but I should be able to figure out a better patch than
1 || -lat this point. :pAnyways, I just wanted to provide a slight clarification on the workflow here...