Documentation ¶
Overview ¶
Package gosshacl implements file based access control for SSH (authorizedkeyscommand).
File format:
<hostname>:<user>:<sha256_of_key>:<valid from>:<valid to>:[<authorized key entry>]
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var ( // ErrFallback is returned if processing should continue with a different backend. ErrFallback = errors.New("fallback") )
View Source
var ( // ErrNotFound is returned if no matching entry could be found. ErrNotFound = errors.New("not found") )
Functions ¶
Types ¶
type AuthorizedFile ¶
AuthorizedFile is a file containing authorization information.
type RemoteACL ¶
type RemoteACL struct { URL string // https://<url>/keyFP/hostname/user/ PublicKey ed25519.PublicKey // Master Publickey. Token string // http-basic auth password, hostname is user. Hostname string // Server's hostname. }
RemoteACL calls a remote HTTP(s) server to find keys.
func NewRemote ¶
NewRemote returns a new RemoteACL that uses the given url. If token is not empty it will be used as username in BasicAuth (password default). The public key will be used to verify the entry signatures.
Click to show internal directories.
Click to hide internal directories.