authorized_credentials patch.

Matthew N. Dodd matthew.nygard.dodd at
Sun Aug 21 05:52:57 EST 2011

Gives GSSAPI-MIC the same options capability currently provided for 
public key logins by the AuthorizedKeysFile.

Uses krb5_principal_match() to support widcard matches.

Uses percent_expand() to expand tokens for:

	homedir		/home/user
	username	user
	cred name	USER
	cred instance	INSTANCE
	cred realm	REALM

My intended application:

# cat ~svn/.ssh/authorized_credentials
command="/usr/bin/svnserve -t -r /var/svn/ --tunnel-user=%n" */svn@%r

-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: openssh-authorized_credentials.patch
URL: <>

More information about the openssh-unix-dev mailing list