JGit is a pure Java library implementing the Git version control system. It is an Eclipse project and started out as the Git library for EGit, which provides a Git integration into the Eclipse IDE.
A Guide to JGit
JGit - Tutorial
JGit User Guide
基础的流程包括:clone、更新内容、提交commit、推送。教程通常缺少最后一步:推送更新到远端。
使用用户名、密码方式——
Git git = Git.open(localPath);
// add remote repo:
RemoteAddCommand remoteAddCommand = git.remoteAdd();
remoteAddCommand.setName("origin");
remoteAddCommand.setUri(new URIish(httpUrl));
// you can add more settings here if needed
remoteAddCommand.call();
// push to remote:
PushCommand pushCommand = git.push();
pushCommand.setCredentialsProvider(new UsernamePasswordCredentialsProvider("username", "password"));
// you can add more settings here if needed
pushCommand.call();
针对github可优化未token方式,从github tokens这里新建一个自己的token,然后上面的Credential Provider可以直接使用new UsernamePasswordCredentialsProvider("token", ""即可。
上面的内容亲测可用。
GitHub uses password authentication for https URLs and public-key authentication for SSH URLs
使用public key时需要注意:Windows环境下生成的私钥默认无法识别(因为head行不兼容,参考这里)使用ssh-keygen -p -f file -m pem -P passphrase -N passphrase进行重置(如果创建时passphrase没有设置,使用"“代替即可)
JGit Authentication Explained这里提到了各个不同协议使用的区别。使用SSH的方式暂未验证。
org.eclipse.jgit.test官方测试库里有对应的代码。
通常使用的两种方式——
https://github.com/username/project.git需要使用用户名+密码登录git@github.com:username/project.git表示SSH方式登录
这里对各个协议类型做了详细的说明。备份如下——
Primary differences between SSH and HTTPS. This post is specifically about accessing Git repositories on GitHub.
Protocols to choose from when cloning:
plain Git, aka git://github.com/
Does not add security beyond what Git itself provides. The server is not verified.
If you clone a repository over git://, you should check if the latest commit’s hash is correct.
You cannot push over it. (But see “Mixing protocols” below.)
HTTPS, aka https://github.com/
HTTPS will always verify the server automatically, using certificate authorities.
(On the other hand, in the past years several certificate authorities have been broken into, and many people consider them not secure enough. Also, some important HTTPS security enhancements are only available in web browsers, but not in Git.)
Uses password authentication for pushing, and still allows anonymous pull.
Downside: You have to enter your GitHub password every time you push. Git can remember passwords for a few minutes, but you need to be careful when storing the password permanently – since it can be used to change anything in your GitHub account.
If you have two-factor authentication enabled, you will have to use a personal access token instead of your regular password.
HTTPS works practically everywhere, even in places which block SSH and plain-Git protocols. In some cases, it can even be a little faster than SSH, especially over high-latency connections.
HTTP, aka http://github.com/
Doesn’t work with GitHub anymore, but is offered by some other Git hosts.
Works practically everywhere, like HTTPS.
But does not provide any security – the connection is plain-text.
SSH, aka git@github.com: or ssh://git@github.com/
Uses public-key authentication. You have to generate a keypair (or “public key”), then add it to your GitHub account.
Using keys is more secure than passwords, since you can add many to the same account (for example, a key for every computer you use GitHub from). The private keys on your computer can be protected with passphrases.
On the other hand, since you do not use the password, GitHub does not require two-factor auth codes either – so whoever obtains your private key can push to your repositories without needing the code generator device.
However, the keys only allow pushing/pulling, but not editing account details. If you lose the private key (or if it gets stolen), you can just remove it from your GitHub account.
A minor downside is that authentication is needed for all connections, so you always need a GitHub account – even to pull or clone.
You also need to carefully verify the server’s fingerprint when connecting for the first time. Many people skip that and just type “yes”, which is insecure.
(Note: This description is about GitHub. On personal servers, SSH can use passwords, anonymous access, or various other mechanisms.)
Mixing protocols
Globally
You can clone everything over git://, but tell Git to push over HTTPS.
[url "https://github.com/"]
pushInsteadOf = git://github.com/
Likewise, if you want to clone over git:// or HTTPS, but push over SSH:
[url "git@github.com:"]
pushInsteadOf = git://github.com/
pushInsteadOf = https://github.com/
These go to your git config file – sometimes ~/.config/git/config, or ~/.gitconfig, or just run git config --edit --global.
Per-repository
You can also set different pull and push URLs for every remote separately, by changing remote.name.pushUrl in the repository’s own .git/config:
[remote "origin"]
url = git://nullroute.eu.org/~grawity/rwho.git
pushUrl = ssh://sine/pub/git/rwho.git
JGit 拉取代码逻辑
默认clone方法,将默认的远端分支clone到本地。假设远端默认分支为master。则本地跟踪的最新分支为HEAD -> master, origin/master
这几个概念要理解清楚——
masteris a local branchorigin/masteris a remote branch (which is a local copy of the branch named “master” on the remote named “origin”) One remote:originis a remote
HEAD: the current commit your repo is on. Most of the time HEAD points to the latest commit in your current branch, but that doesn’t have to be the case. HEAD really just means “what is my repo currently pointing at”.
git = Git.cloneRepository()
.setURI(urlPath)
.setBranch(branch)
.setDirectory(localFile)
.setCredentialsProvider(credentialsProvider)
.call();
相当于本地clone远端分支origin/master到本地master分支,当前最新HEAD执行master分支
拉取代码是使用类似如下代码——
PullResult result = git.pull()
.setCredentialsProvider(user)
.setRemote("origin")
.setRemoteBranchName("dev")
.call();
这样操作的结果比较“诡异”——HEAD -> master, origin/dev。相当于本地master分支重新跟踪了远端的origin/dev分支。
命令行操作可以使用git checkout -B master origin/master重置。主要-b|-B的区别。
-B <new_branch> is created if it doesn’t exist; otherwise, it is reset.
拉取前配合stash操作——git.stashCreate().call(); 倒是可以满足“拉取指定分支最新代码”的需求。
JGit使用示例, Please make sure to take a look at the nicely written introduction and also use the existing JavaDoc and the User Guide as well.
What are the git concepts of HEAD, master, origin?
I highly recommend the book “Pro Git” by Scott Chacon. Take time and really read it, while exploring an actual git repo as you do.
HEAD: the current commit your repo is on. Most of the time
HEADpoints to the latest commit in your current branch, but that doesn’t have to be the case.HEADreally just means “what is my repo currently pointing at”.
In the event that the commit
HEADrefers to is not the tip of any branch, this is called a “detached head”.
master: the name of the default branch that git creates for you when first creating a repo. In most cases, “master” means “the main branch”. Most shops have everyone pushing to master, and master is considered the definitive view of the repo. But it’s also common for release branches to be made off of master for releasing. Your local repo has its own master branch, that almost always follows the master of a remote repo.
origin: the default name that git gives to your main remote repo. Your box has its own repo, and you most likely push out to some remote repo that you and all your coworkers push to. That remote repo is almost always called origin, but it doesn’t have to be.
HEADis an official notion in git.HEADalways has a well-defined meaning.masterandoriginare common names usually used in git, but they don’t have to be.
查看.git/config文件可以看到具体对应的分支,类似——
[remote "origin"]
url = git@github.com:gebitang/gebitang.com.git
fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
remote = origin
merge = refs/heads/master
“refs/heads/master” and “refs/remotes/origin/master” are two different symbolic names that can point to different things. refs/heads/master is a branch in your working copy named master. Frequently that is a tracking branch of refs/remotes/origin/master because origin is the default name for the remote created by git clone and its primary branch is usually also named master.
You can see the difference between them with git rev-list refs/heads/master..refs/remotes/origin/master which will be empty if they are the same and will otherwise list the commits between them.
Git.open(new File(localPath)) 报错
先说结论:最大支持5个对象同时处理Git git = Git.open(new File(localPath)); 的逻辑。提交的代码可以参考这里: fixed threadpool up to 5 threads with LinkedBlockingQueue of unlimited queue size
JGit工具可以使用类型如下代码创建Git git = Git.open(new File(localPath));
实际使用中遇到多个项目并行更新时报错,详情如下——
java.util.concurrent.RejectedExecutionException: Task java.util.concurrent.CompletableFuture$AsyncSupply@46cc6ff9 rejected from java.util.concurrent.ThreadPoolExecutor@5c820ea8[Running, pool size = 5, active threads = 5, queued tasks = 0, completed tasks = 0]
at java.util.concurrent.ThreadPoolExecutor$AbortPolicy.rejectedExecution(ThreadPoolExecutor.java:2063) ~[?:1.8.0_231]
at java.util.concurrent.ThreadPoolExecutor.reject(ThreadPoolExecutor.java:830) ~[?:1.8.0_231]
at java.util.concurrent.ThreadPoolExecutor.execute(ThreadPoolExecutor.java:1379) ~[?:1.8.0_231]
at java.util.concurrent.CompletableFuture.asyncSupplyStage(CompletableFuture.java:1604) ~[?:1.8.0_231]
at java.util.concurrent.CompletableFuture.supplyAsync(CompletableFuture.java:1830) ~[?:1.8.0_231]
at org.eclipse.jgit.util.FS$FileStoreAttributes.getFileStoreAttributes(FS.java:329) ~[org.eclipse.jgit-5.7.0.202003090808-r.jar:5.7.0.202003090808-r]
at org.eclipse.jgit.util.FS$FileStoreAttributes.get(FS.java:296) ~[org.eclipse.jgit-5.7.0.202003090808-r.jar:5.7.0.202003090808-r]
at org.eclipse.jgit.util.FS.getFileStoreAttributes(FS.java:767) ~[org.eclipse.jgit-5.7.0.202003090808-r.jar:5.7.0.202003090808-r]
at org.eclipse.jgit.internal.storage.file.FileSnapshot.<init>(FileSnapshot.java:224) ~[org.eclipse.jgit-5.7.0.202003090808-r.jar:5.7.0.202003090808-r]
at org.eclipse.jgit.internal.storage.file.FileSnapshot.<init>(FileSnapshot.java:205) ~[org.eclipse.jgit-5.7.0.202003090808-r.jar:5.7.0.202003090808-r]
at org.eclipse.jgit.internal.storage.file.FileSnapshot.save(FileSnapshot.java:102) ~[org.eclipse.jgit-5.7.0.202003090808-r.jar:5.7.0.202003090808-r]
at org.eclipse.jgit.internal.storage.file.FileRepository.<init>(FileRepository.java:209) ~[org.eclipse.jgit-5.7.0.202003090808-r.jar:5.7.0.202003090808-r]
at org.eclipse.jgit.lib.BaseRepositoryBuilder.build(BaseRepositoryBuilder.java:583) ~[org.eclipse.jgit-5.7.0.202003090808-r.jar:5.7.0.202003090808-r]
at org.eclipse.jgit.api.Git.open(Git.java:91) ~[org.eclipse.jgit-5.7.0.202003090808-r.jar:5.7.0.202003090808-r]
at org.eclipse.jgit.api.Git.open(Git.java:71) ~[org.eclipse.jgit-5.7.0.202003090808-r.jar:5.7.0.202003090808-r]
at com.stf.web.service.GitService.openGitPull(GitService.java:124) [sharestf.20200916162334.jar:?]
按图索骥即可,在BaseRepositoryBuilder的build方法中会新建R repo = (R) new FileRepository(setup());在FileRepository的构造方法中会进入 FileSnapshot.save(getIndexFile());的逻辑——对于已存在的git仓库来说,代码——
if (!isBare()) {
snapshot = FileSnapshot.save(getIndexFile());
}
最终在读取FileStoreAttributes的方法getFileStoreAttributes(Path dir) 中有异步调用——只有默认定义的Executor FUTURE_RUNNER进行执行操作。这个执行器的配置如下——
private static final Executor FUTURE_RUNNER = new ThreadPoolExecutor(0,
5, 30L, TimeUnit.SECONDS, new SynchronousQueue<Runnable>(),
runnable -> {
Thread t = new Thread(runnable, "FileStoreAttributeReader-" //$NON-NLS-1$
+ threadNumber.getAndIncrement());
// Make sure these threads don't prevent application/JVM
// shutdown.
t.setDaemon(true);
return t;
});
这也是报错的原因:线程池中只有5个线程,都已经被占有Running, pool size = 5, active threads = 5, queued tasks = 0, completed tasks = 0
JGit中对Git的抽象需要研究下,为什么这里需要做一个 FileSnapshot.save的动作?FileStore和FileStoreAttributes都代表什么含义?