Add password authentication request validation #323

EpicEric · 2024-09-16T00:24:38Z

This adds a password-based authentication mechanism under the option --authentication-password-request-url, which functions similarly to --authentication-key-request-url, but takes a password instead of a public key.

Closes #322

This adds a password-based authentication mechanism under the option `--authentication-password-request-url`, which functions similarly to `--authentication-key-request-url`, but takes a password instead of a public key. Closes antoniomika#322

EpicEric · 2024-09-16T00:30:19Z

This seems to work on my sish instance, with a simple verification server that checks for a single password and returns 200. I've used a command like this one for testing (which then prompts me for the password):

ssh -o PubkeyAuthentication=no -o PreferredAuthentications=password -R test:80:localhost:8080 tuns.sh

I haven't tested the timeout, however since this is basically a copy-pasted version of --authentication-key-request-url, it should work the same.

antoniomika · 2024-09-17T16:27:22Z

Thanks for the awesome contribution @EpicEric!

antoniomika

Lgtm 👍

antoniomika approved these changes Sep 17, 2024

View reviewed changes

antoniomika merged commit 23ccc59 into antoniomika:main Sep 17, 2024
1 of 2 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add password authentication request validation #323

Add password authentication request validation #323

EpicEric commented Sep 16, 2024

EpicEric commented Sep 16, 2024

antoniomika commented Sep 17, 2024

antoniomika left a comment

Add password authentication request validation #323

Add password authentication request validation #323

Conversation

EpicEric commented Sep 16, 2024

EpicEric commented Sep 16, 2024

antoniomika commented Sep 17, 2024

antoniomika left a comment

Choose a reason for hiding this comment