Skip to content

korfuri/gopamsshagentauth

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

24 Commits
.github/workflows
.github/workflows
 
 
cli
cli
 
 
pam
pam
 
 
.gitignore
.gitignore
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
agent.go
agent.go
 
 
auth.go
auth.go
 
 
auth_test.go
auth_test.go
 
 
config.go
config.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
load_config.go
load_config.go
 
 
load_config_test.go
load_config_test.go
 
 
shell.nix
shell.nix
 
 
test_pam.sh
test_pam.sh
 
 
testdata_test.go
testdata_test.go
 
 

Repository files navigation

gopamsshagentauth

gopamsshagentauth is a work-in-progress. It works but has not been reviewed, and its tests are limited.

gopamsshagentauth is a drop-in replacement for pam_ssh_agent_auth which offers several benefits:

  • Supports all modern SSH key types, including FIDO-backed keys (ecdsa-sk and ed25519-sk);
  • Supports SSH certificates;
  • No rolling our own crypto, everything is based on golang.org/x/crypto/ssh
  • Supports all flags supported by pam_ssh_agent_auth

This can also be used as a substitute for ussh. Unlike the latter, it supports keys and not just certs.

Currently, the project is half working. Here's the TODO list:

  • Write integration tests [half-done!]
  • Write proper usage documentation
  • Get this reviewed by folks who know what they're doing

About

pam_ssh_agent_auth but in 2022 and in Go

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Languages