summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorKaarle Ritvanen <kaarle.ritvanen@datakunkku.fi>2014-06-16 13:26:10 +0300
committerKaarle Ritvanen <kaarle.ritvanen@datakunkku.fi>2014-06-16 13:26:10 +0300
commit321fe387894ffbbd7d4d67c6330952ec0343c678 (patch)
treed9abbebaa718245bd539d3897e29a2bdf0fd5a46
parent07447880a4e3d336bcdee83d7fbc9901279f92ed (diff)
downloadaconf-321fe387894ffbbd7d4d67c6330952ec0343c678.tar.bz2
aconf-321fe387894ffbbd7d4d67c6330952ec0343c678.tar.xz
openssh module: root login keys
-rw-r--r--aconf/modules/openssh.lua20
1 files changed, 20 insertions, 0 deletions
diff --git a/aconf/modules/openssh.lua b/aconf/modules/openssh.lua
index 5ca2544..3b37759 100644
--- a/aconf/modules/openssh.lua
+++ b/aconf/modules/openssh.lua
@@ -6,6 +6,20 @@ See LICENSE file for license details
local M = require('aconf.model')
+local SshKey = M.new()
+SshKey.type = M.String{
+ required=true,
+ choice={
+ {'ecdsa-sha2-nistp256', 'ecdsa-sha2-nistp256'},
+ {'ecdsa-sha2-nistp384', 'ecdsa-sha2-nistp384'},
+ {'ecdsa-sha2-nistp521', 'ecdsa-sha2-nistp521'},
+ {'ssh-dss', 'ssh-dss'},
+ {'ssh-rsa', 'ssh-rsa'}
+ }
+}
+SshKey.key = M.String{addr='&'}
+SshKey.comment = M.String
+
local Sshd = M.service('sshd')
Sshd.root_login = M.Boolean{
addr='PermitRootLogin', ui_name='Permit root login', default=true
@@ -19,6 +33,12 @@ Sshd.use_dns = M.Boolean{addr='UseDNS', ui_name='Use DNS', default=true}
Sshd.agent_forward = M.Boolean{
addr='AllowAgentForwarding', ui_name='Allow agent forwarding', default=true
}
+Sshd.root_auth_keys = M.List{
+ type=SshKey,
+ addr='/augeas/root/.ssh/authorized_keys/key/#',
+ ui_name='Root login keys',
+ ui_member='Key'
+}
M.register(
'sshd',