[jira] [Commented] (KARAF-32) Support ssh public key authentication and agent forwarding

Wed, 28 Mar 2012 10:35:50 -0700 

    [ 
https://issues.apache.org/jira/browse/KARAF-32?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13240574#comment-13240574
 ] 

Wolfgang Glas commented on KARAF-32:
------------------------------------

Hi Jean-Baptiste,

  Thanks for applying, please note, that the original issue description 
includes more things like agent integration et al. Maybe it would be benefitial 
to open some followup issues for the agent integration issues?

  Issues with a smaller set of features may help to tackle the problem 
step-by-step and encourage other developers to send in smaller patches, like 
I've done.

  Best regards,

    Wolfgang
                
> Support ssh public key authentication and agent forwarding
> ----------------------------------------------------------
>
>                 Key: KARAF-32
>                 URL: https://issues.apache.org/jira/browse/KARAF-32
>             Project: Karaf
>          Issue Type: New Feature
>          Components: karaf-shell
>            Reporter: Guillaume Nodet
>            Assignee: Jean-Baptiste Onofré
>             Fix For: 2.2.6, 3.0.0
>
>         Attachments: org.apache.karaf.shell.ssh-2.2.5-pubkey-barecheck.patch, 
> org.apache.karaf.shell.ssh-2.2.5-pubkey-fileinstall.patch, 
> org.apache.karaf.shell.ssh-2.2.5-pubkey-userauthfactories.patch, 
> org.apache.karaf.shell.ssh-2.2.5-pubkey-userauthfactories.patch
>
>
> The karaf agent needs to be enhanced to be able to set up an ssh agent and 
> use a public/private key.
> The ssh server need to be configured with a public key authentication that 
> could delegate to the KeystoreInstance using certificates.
> The goal would be support the following use cases:
>   * once a user is logged into a given karaf instance, he can connect to any 
> other instance (provided that the public key is supported)
>   * the stop script could use the ssh agent so that you don't need to launch 
> it with a password on the command line
> A set of commands to administer the keystores might be interesting (maybe a 
> console plugin too, but we need to check with what Geronimo provides in this 
> area). 
> Btw,  I wonder if Apache Shiro would help in any way for all the security 
> stuff.
>   

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

Reply via email to