Is it possible to configure git to use a proxy only for specific domains?
I'd like to use our corporate proxy to access Github but leave it off for accessing our own internal git repos.
I'm using bower and it needs to require items both within our firewall and on github so I can't do this as a per project setting. It needs to be some kind of global configuration option. Any thoughts?
I usually use the environment variables:
http_proxy=http://username:password@proxydomain:porthttps_proxy=http://username:password@proxydomain:portThat is picked up by git when accessing GitHub repo.
Note:
http_proxy and https_proxy must use the http:// url of the proxy (no https://).proxydomain (don't rely on its short name)But for internal repo, all I have to do is define and export one more environment variable:
no_proxy=.my.company,localhost,127.0.0.1,::1, for accessing any repo with an address like myrepo.my.company or localhost.You can define NO_PROXY or no_proxy, it doesn't matter.
But just in case, I always set HTTP_PROXY, HTTPS_PROXY, http_proxy, https_proxy, NO_PROXY and no_proxy.
%40) –
Holo ::1 do in the no_proxy statement? –
Shortcake ::1 (en.wikipedia.org/wiki/Localhost, tools.ietf.org/html/rfc4291#section-2.5.3) –
Holo PROXYAAA for domain AAA but PROXYBBB for domain BBB ??? in my case its for git pull, we have configured .subversion/servers with group for svn, but its ignored for git –
Amiss To add another possibility, you can define a proxy through the git config http.proxy.
git config --global http.proxy http://mydomain\\myusername:mypassword@myproxyserver:proxyport
But what is really neat is, starting git1.8.5 (October 2013), you can set http settings per url.
The "http.*" variables can now be specified per URL that the configuration applies.
For example,
[http]
sslVerify = true
[http "https://weak.example.com/"]
sslVerify = false
would flip
http.sslVerifyoff only when talking to that specified site.
See commit d4770964d5:
$ git config --bool --get-urlmatch http.sslVerify https://good.example.com
true
$ git config --bool --get-urlmatch http.sslVerify https://weak.example.com
false
With only
<section>specified, you can get a list of all variables in the section with their values that apply to the given URL. E.g
$ git config --get-urlmatch http https://weak.example.com
http.sslverify false
All the details are in commit 6a56993b:
http.<url>.*::
Any of the http.* options above can be applied selectively to some urls.
For a config key to match a URL, each element of the config key is compared to that of the URL, in the following order:
https in https://example.com/).example.com in https://example.com/).8080 in http://example.com:8080/).repo.git in https://example.com/repo.git). user in https://[email protected]/repo.git)The list above is ordered by decreasing precedence; a URL that matches a config key's path is preferred to one that matches its user name.
For example, if the URL ishttps://[email protected]/foo/bara config key match ofhttps://example.com/foowill be preferred over a config key match ofhttps://[email protected].All URLs are normalized before attempting any matching (the password part, if embedded in the URL, is always ignored for matching purposes) so that equivalent urls that are simply spelled differently will match properly.
Environment variable settings always override any matches.
The urls that are matched against are those given directly to Git commands.
This means any URLs +visited as a result of a redirection do not participate in matching.
http.proxy = "" –
Cottontail I usually use the environment variables:
http_proxy=http://username:password@proxydomain:porthttps_proxy=http://username:password@proxydomain:portThat is picked up by git when accessing GitHub repo.
Note:
http_proxy and https_proxy must use the http:// url of the proxy (no https://).proxydomain (don't rely on its short name)But for internal repo, all I have to do is define and export one more environment variable:
no_proxy=.my.company,localhost,127.0.0.1,::1, for accessing any repo with an address like myrepo.my.company or localhost.You can define NO_PROXY or no_proxy, it doesn't matter.
But just in case, I always set HTTP_PROXY, HTTPS_PROXY, http_proxy, https_proxy, NO_PROXY and no_proxy.
http:// for both http and https. –
Bowhead %40) –
Holo ::1 do in the no_proxy statement? –
Shortcake ::1 (en.wikipedia.org/wiki/Localhost, tools.ietf.org/html/rfc4291#section-2.5.3) –
Holo PROXYAAA for domain AAA but PROXYBBB for domain BBB ??? in my case its for git pull, we have configured .subversion/servers with group for svn, but its ignored for git –
Amiss As some have mentioned here, you can do this by specifying a URL along with the proxy settings, but Here's the use case that fixed this for me. Thanks to VonC above!
Notice below that I'm specifying the root of the Git server. The full path to the git repo you've cloned isn't required. You can use a single entry to take care of the entire server.
Add the following to your .gitconfig file. On my windows system, I'm using %userprofile%\.gitconfig
[http]
proxy = http://my.proxy.net:8080
[https]
proxy = http://my.proxy.net:8443
[http "http://my.internalgitserver.com/"]
proxy = ""
NO_PROXY to my.internalgitserver.com, and that could have been enough to not use the defined proxy: https://mcmap.net/q/13884/-exclude-hosts-or-domains-with-git-proxy –
Holo git config --global http.proxy http://myproxy.net:8080, for the first one, etc. Then you don't even need them to find the right place to put or update the file. –
Shortcake You can adjust various configuration options for each remote specifically. Let's say we have 2 remotes, named origin and upstream respectively. You adjust the proxy for each doing the following:
git config --path remote.origin.proxy http://user:pass@proxy_for_origin:8080
git config --path remote.upstream.proxy http://user:pass@proxy_for_upstream:8080
This will change the sections of each remote inside your local repository configuration (.git/config).
You can also adjust the global configuration options if you wish. Since it doesn't make sense to reference a remote name in the global config file ($HOME/.gitconfig), you can use url-matching (IIRC, supported since Git 1.8.5). Example:
[http "https://example.com/repo1.git"]
proxy = http://user:pass@proxy1:8080
[http "https://example.com/repo2.git"]
proxy = http://user:pass@proxy2:8080
If you want to see what's been set:
git config --path --get-urlmatch https://example.com/repo1.git
git config --path --get-urlmatch https://example.com/repo2.git
assume your proxy is (like my ss) is : socks5://127.0.0.1:1086
git config --global http.proxy socks5://127.0.0.1:1086git config --global --unset http.proxygit config --global http.https://github.com.proxy socks5://127.0.0.1:1086git config --global --unset http.https://github.com.proxyAfter added proxy, using
cat ~/.gitconfig
can see related global config:
[http]
proxy = socks5://127.0.0.1:1086
or
[http "https://github.com"]
proxy = socks5://127.0.0.1:1086
socks5h instead of socks5 to send DNS through SOCKS5 proxy (https://mcmap.net/q/13885/-using-a-socks-proxy-with-git-for-the-http-transport) –
Landslide I had a similar problem, where i am behind my corporate proxy. I basically have two kinds of repositories:
I had to set a proxy in global config, which would act as the default, if not otherwise specified in local config.
So below are the commands for configuration:
set global config with proxy
git config --global --add http.proxy "http://username:password@proxydomain:port"
git config --global --add https.proxy "https://username:password@proxydomain:port"
then move to your local directory that contains your .git folder and for which you don't need proxy
cd "C:\Users\username\directory_without_proxy\"
set local config with empty proxy
git config --local --add http.proxy ""
git config --local --add https.proxy ""
It could be done the other way too. That is, you keep the global config as empty and local config with your proxy settings.
Just to double check you can use below command to list down the config settings for global and local respectively:
git config --global --list
git config --local --list
On Windows , Simply [note without password] following worked for me
git config --global http.proxy http://mydomain\\myusername:@myproxyserver:proxyport
git config --global https.proxy http://mydomain\\myusername:@myproxyserver:proxyport
© 2022 - 2024 — McMap. All rights reserved.
http://for both http and https. – Bowhead