How to Use Git — GitGram

▪

GitGram — How to Use Git — GitGram

▼

▲

Getting Started

GitGram hosts bare git repositories over HTTP. You can clone, push, and pull using standard git commands. No special software is needed beyond git itself.

Clone a Repository

git clone http://macrohardon.com/yourrepo.git

Push to a Repository

Pushing requires your username and password (set in data/users.json).

git remote add origin http://macrohardon.com/yourrepo.git
git push origin main

Git will prompt for credentials. To cache them:

git config credential.helper store

Creating a New Repository (Server Side)

SSH into your server and run:

cd /path/to/gitgram/repos
git init --bare yourrepo.git
echo "My new repository" > yourrepo.git/description

The repo will appear on the home page immediately.

First Push of a Local Repo

cd my-project
git init
git add .
git commit -m "Initial commit"
git remote add origin http://macrohardon.com/yourrepo.git
git push -u origin main

Setting Your Password

Generate a bcrypt hash:

php -r "echo password_hash('yourpassword', PASSWORD_DEFAULT);"

Paste the output into data/users.json:

{
    "yourusername": {
        "name": "Your Name",
        "password_hash": "$2y$12$...",
        "role": "admin"
    }
}

Checking git-http-backend

If push/pull over HTTP fails, verify the backend is available:

which git-http-backend
ls /usr/lib/git-core/git-http-backend

Update GIT_HTTP_BACKEND_PATHS in config.php if yours is in a different location.

SSH (Alternative)

If your host provides SSH access, you can also push over SSH directly to the bare repo path. No special GitGram configuration needed — just standard git+ssh.

git remote add ssh-origin ssh://user@host/path/to/repos/yourrepo.git
git push ssh-origin main

Access Control (Gitolite-inspired)

GitGram uses a permission model modelled on Gitolite. Access rules live in data/repos.json — no database needed.

Permission levels

Symbol	Meaning
`R`	Read-only (clone, fetch)
`RW`	Read + write (push)
`RW+`	Read + write + force-push / tag deletion
`-`	Explicit deny (overrides any group grant)

Rule subjects

Subject	Meaning
`@all`	Everyone, including anonymous visitors
`@groupname`	All users whose `groups` array includes groupname
`username`	A specific user

Priority (highest wins): explicit deny - > username > @group > @all.
Admin-role users always have full access regardless of rules.

Example `data/repos.json`

{
    "public-project": {
        "description": "Anyone can read, devs can write",
        "access": {
            "@all":      "R",
            "@devs":     "RW",
            "alice":     "RW+"
        }
    },
    "private-project": {
        "description": "Invite-only",
        "access": {
            "bob":       "RW",
            "charlie":   "R"
        }
    },
    "locked-repo": {
        "description": "Archived — no pushes",
        "access": {
            "@all":      "R",
            "@devs":     "R",
            "alice":     "-"
        }
    }
}

Example `data/users.json` with groups

{
    "alice": {
        "name": "Alice",
        "password_hash": "$2y$12$...",
        "role": "admin",
        "groups": ["devs", "leads"]
    },
    "bob": {
        "name": "Bob",
        "password_hash": "$2y$12$...",
        "role": "user",
        "groups": ["devs"]
    },
    "charlie": {
        "name": "Charlie",
        "password_hash": "$2y$12$...",
        "role": "user",
        "groups": []
    }
}

Repos with no entry in repos.json are private (admin-only) by default — the same safe default as Gitolite.

Differences from Gitolite

Gitolite uses SSH keys exclusively; GitGram uses HTTP Basic auth (passwords in users.json)
Gitolite manages repos via a special gitolite-admin push; GitGram uses JSON files edited directly
Gitolite supports branch-level rules (refs/heads/main); GitGram access is repo-level only
Gitolite runs as its own Unix user; GitGram runs under your web server's PHP process

Ready

GitGram