ssh-generator: support ssh.ephemeral-key.all-users

author Sam Leonard <sam.leonard@codethink.co.uk>

Thu, 7 Mar 2024 14:43:28 +0000 (14:43 +0000)

committer Sam Leonard <sam.leonard@codethink.co.uk>

Thu, 14 Mar 2024 11:55:54 +0000 (11:55 +0000)
author Sam Leonard <sam.leonard@codethink.co.uk>
Thu, 7 Mar 2024 14:43:28 +0000 (14:43 +0000)
committer Sam Leonard <sam.leonard@codethink.co.uk>
Thu, 14 Mar 2024 11:55:54 +0000 (11:55 +0000)
diff --git a/src/ssh-generator/ssh-generator.c b/src/ssh-generator/ssh-generator.c

index 08532690a9c7581e56c35b47b5646df942c2330b..4f0a4b0d5206a38d669d71505c30f86118575cfd 100644 (file)
--- a/src/ssh-generator/ssh-generator.c
+++ b/src/ssh-generator/ssh-generator.c
@@ -108,8 +108,9 @@ static int make_sshd_template_unit(
                          "Description=OpenSSH Per-Connection Server Daemon\n"
                          "Documentation=man:systemd-ssh-generator(8) man:sshd(8)\n"
                          "[Service]\n"
-                        "ExecStart=-%s -i\n"
-                        "StandardInput=socket",
+                        "ExecStart=-%s -i -o \"AuthorizedKeysFile ${CREDENTIALS_DIRECTORY}/ssh.ephemeral-authorized_keys-all .ssh/authorized_keys\"\n"
+                        "StandardInput=socket\n"
+                        "ImportCredential=ssh.ephemeral-authorized_keys-all",
                          sshd_binary);
  
                  r = fflush_and_check(f);
author	Sam Leonard <sam.leonard@codethink.co.uk>
	Thu, 7 Mar 2024 14:43:28 +0000 (14:43 +0000)
committer	Sam Leonard <sam.leonard@codethink.co.uk>
	Thu, 14 Mar 2024 11:55:54 +0000 (11:55 +0000)