Return-Path: Delivered-To: apmail-felix-dev-archive@www.apache.org Received: (qmail 99259 invoked from network); 18 Dec 2009 02:38:42 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 18 Dec 2009 02:38:42 -0000 Received: (qmail 87452 invoked by uid 500); 18 Dec 2009 02:38:42 -0000 Delivered-To: apmail-felix-dev-archive@felix.apache.org Received: (qmail 87257 invoked by uid 500); 18 Dec 2009 02:38:41 -0000 Mailing-List: contact dev-help@felix.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@felix.apache.org Delivered-To: mailing list dev@felix.apache.org Received: (qmail 87242 invoked by uid 99); 18 Dec 2009 02:38:40 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 18 Dec 2009 02:38:40 +0000 X-ASF-Spam-Status: No, hits=-2000.0 required=10.0 tests=ALL_TRUSTED X-Spam-Check-By: apache.org Received: from [140.211.11.140] (HELO brutus.apache.org) (140.211.11.140) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 18 Dec 2009 02:38:39 +0000 Received: from brutus (localhost [127.0.0.1]) by brutus.apache.org (Postfix) with ESMTP id 49CF4234C4B7 for ; Thu, 17 Dec 2009 18:38:18 -0800 (PST) Message-ID: <1716895873.1261103898300.JavaMail.jira@brutus> Date: Fri, 18 Dec 2009 02:38:18 +0000 (UTC) From: "Les Hazlewood (JIRA)" To: dev@felix.apache.org Subject: [jira] Commented: (FELIX-1950) Support ssh public key authentication and agent forwarding In-Reply-To: <1562259969.1261068798244.JavaMail.jira@brutus> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 X-Virus-Checked: Checked by ClamAV on apache.org [ https://issues.apache.org/jira/browse/FELIX-1950?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12792306#action_12792306 ] Les Hazlewood commented on FELIX-1950: -------------------------------------- Hi Guillaume - feel free to ask any questions on the Shiro mailing lists if necessary. We'll do what we can to help. > Support ssh public key authentication and agent forwarding > ---------------------------------------------------------- > > Key: FELIX-1950 > URL: https://issues.apache.org/jira/browse/FELIX-1950 > Project: Felix > Issue Type: New Feature > Components: Karaf > Affects Versions: karaf-1.2.0 > Reporter: Guillaume Nodet > > The karaf agent needs to be enhanced to be able to set up an ssh agent and use a public/private key. > The ssh server need to be configured with a public key authentication that could delegate to the KeystoreInstance using certificates. > The goal would be support the following use cases: > * once a user is logged into a given karaf instance, he can connect to any other instance (provided that the public key is supported) > * the stop script could use the ssh agent so that you don't need to launch it with a password on the command line > A set of commands to administer the keystores might be interesting (maybe a console plugin too, but we need to check with what Geronimo provides in this area). > Btw, I wonder if Apache Shiro would help in any way for all the security stuff. > -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.