Allow ssh connection using ssh agent
|Assignee:||Javi Fontan||% Done:|
|Category:||Drivers - Auth|
The current implementation of ssh login always asks the user for the ssh key passphrase, even if there is an ssh agent running.
It would be great if the
oneuser login command could use the ssh agent. The attach series of patches adds this, along with some clean-up.
#1 Updated by Jean-Philippe Garcia Ballester over 6 years ago
- File 0007-Use-signature-instead-of-private-encryption-in-ssh-a.patch added
- File 0008-Add-ssh-agent-authentification-options-to-ssh-auth.patch added
Patches 0008 and 0009 are not clean. Attached are replacement patches.
#8 Updated by Javi Fontan over 5 years ago
To use SSH Agent the way of generating login tokens must be changed from an encrypted one to a signed one. Signing the token is the proper way to do this but I fear this change will break thing.
From my point of view we can do these two things:
a) Wait for 5.0 todo this change
b) Make the new signing way configurable and use the old encrypted tokes by default.
It also adds a new dependency (net-ssh) but it can be vendorized.