Support Git+HTTPS authentication using certificates instead of password/access token

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

• Close this issue

Problem to solve

Git supports using certificates for authentication over HTTP. GitLab already supports using certificates for authentication over SSH, but HTTPS is preferred in certain situations, and some situations require it like Git LFS.

Intended users

All users

Further details

A customer that was on CE modified their source code to do this. It doesn't appear that the application supports this currently. They want the base version to have this so they don't have to merge custom code in every release.

Even though we generally encourage people to use SSH keys, there are cases where HTTPS is easier for some people to set up. (Certain editors come to mind here.)

There's also cases where HTTPS is required, like LFS. Epic Support the pure SSH-based LFS protocol for git... (&11872 - closed) will allow for LFS over SSH.

Proposal

Implement support for using certificates for Git over HTTPS authentication.

Permissions and Security

Documentation

Similar to https://docs.gitlab.com/ee/administration/operations/ssh_certificates.html

Testing

Links / references

• Git supports using client certs for authentication.

Customers

• https://gitlab.my.salesforce.com/0016100001AluZM
• https://gitlab.my.salesforce.com/00161000011y6Ia
• https://gitlab.my.salesforce.com/0016100001fNln0