Refactor to use key directly instead of fingerprint

Review Request #2449 — Created April 29, 2023 and updated May 31, 2023, 12:28 p.m.

Information
Owner:	aklitzing@gmail.com
Repository:	grim/hgkeeper
Branch:	default
Bugs:
Depends On:
Blocks:	2450
Reviewers
Groups:
People:	grim

Description

OpenSSH can provide the type and key with "%t %k". So we do not need
to match it with fingerprints.

This simplifies key handling a lot and allows to search for requested
pubkey in later changes.

Testing Done

Commits

Summary		Author
	Refactor to use key instead of fingerprint directly	Andre Klitzing

Screenshots

Issues

Description	From	Last Updated
overall this looks good but it totally breaks existing ssh setups and we should avoid that.	grim	May 23, 2023, 5:52 a.m.
some people use rsa4096 keys and that's a lot to output in a log message so it probably makes sense …	grim	May 24, 2023, 8:55 p.m.

Summary:

-	Refactor to use key instead of fingerprint directly
+	Refactor to use key directly instead of fingerprint

Commits:

	Summary		Author
-		Refactor to use key instead of fingerprint directly	Andre Klitzing
+		Refactor to use key instead of fingerprint directly	Andre Klitzing

Diff:

Revision 2 (+56 -120)

Show changes

	access/users.go
	authorized_keys/command.go
	docs/includes/ondemand/openssh.md
	docs/includes/reverseproxy/openssh.md
	examples/openssh/hgkeeper.conf
	http/authorized_keys.go
	ssh/server.go

Fix it!

Show all issues

overall this looks good but it totally breaks existing ssh setups and we should avoid that.

aklitzing@gmail.com May 24, 2023, 8:56 p.m.

Yeah, I know. But shouldn't be a new release with big "release notes: breaking change!" enough? It is just %f to "%t %k"

aklitzing@gmail.com May 31, 2023, 12:28 p.m.

Major release should be allowed to break old stuff. Mabye it is time to remove "site hgrc", too?

ssh/server.go (Diff revision 2)

Show all issues

some people use rsa4096 keys and that's a lot to output in a log message so it probably makes sense to use the finger print here.

Commits:

	Summary		Author
-		Refactor to use key instead of fingerprint directly	Andre Klitzing
+		Refactor to use key instead of fingerprint directly	Andre Klitzing

Diff:

Revision 3 (+52 -114)

Show changes

	access/users.go
	authorized_keys/command.go
	docs/includes/ondemand/openssh.md
	docs/includes/reverseproxy/openssh.md
	examples/openssh/hgkeeper.conf
	http/authorized_keys.go
	ssh/server.go

You have a pending review.

Review Board 5.0.4

Refactor to use key directly instead of fingerprint

Summary:

Commits:

Diff:

Commits:

Diff: