authorized_credentials patch.
Matthew N. Dodd
matthew.nygard.dodd at gmail.com
Sun Aug 21 05:52:57 EST 2011
Gives GSSAPI-MIC the same options capability currently provided for
public key logins by the AuthorizedKeysFile.
Uses krb5_principal_match() to support widcard matches.
Uses percent_expand() to expand tokens for:
credential USER[/INSTANCE]@REALM
homedir /home/user
username user
cred name USER
cred instance INSTANCE
cred realm REALM
My intended application:
# cat ~svn/.ssh/authorized_credentials
command="/usr/bin/svnserve -t -r /var/svn/ --tunnel-user=%n" */svn@%r
Enjoy.
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: openssh-authorized_credentials.patch
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20110820/b79fff3f/attachment-0001.ksh>
More information about the openssh-unix-dev
mailing list