[KARAF-32] Support ssh public key authentication and agent forwarding - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 2.2.6, 3.0.0
Component/s: karaf
Labels:
None

Description

The karaf agent needs to be enhanced to be able to set up an ssh agent and use a public/private key.
The ssh server need to be configured with a public key authentication that could delegate to the KeystoreInstance using certificates.
The goal would be support the following use cases:

once a user is logged into a given karaf instance, he can connect to any other instance (provided that the public key is supported)
the stop script could use the ssh agent so that you don't need to launch it with a password on the command line

A set of commands to administer the keystores might be interesting (maybe a console plugin too, but we need to check with what Geronimo provides in this area).

Btw, I wonder if Apache Shiro would help in any way for all the security stuff.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

org.apache.karaf.shell.ssh-2.2.5-pubkey-barecheck.patch
31/Jan/12 13:41
23 kB
Wolfgang Glas
org.apache.karaf.shell.ssh-2.2.5-pubkey-fileinstall.patch
31/Jan/12 12:38
24 kB
Wolfgang Glas
org.apache.karaf.shell.ssh-2.2.5-pubkey-userauthfactories.patch
30/Jan/12 21:09
24 kB
Wolfgang Glas
org.apache.karaf.shell.ssh-2.2.5-pubkey-userauthfactories.patch
29/Jan/12 17:30
23 kB
Wolfgang Glas

Issue Links

is related to

KARAF-1475 Support SSH agent forwarding and use the agent authentication when connecting to other instances

Resolved

Activity

People

Assignee:: Jean-Baptiste Onofré

Reporter:: Guillaume Nodet

Votes:: 2 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 17/Dec/09 16:52

Updated:: 15/Sep/18 16:35

Resolved:: 03/Apr/12 06:21