From unix ssh manpages :
-i identity_file
Selects a file from which the identity (private key) for public key authentication is read. The default is ~/.ssh/identity for protocol version 1, and ~/.ssh/id_dsa, ~/.ssh/id_ecdsa and ~/.ssh/id_rsa for protocol version 2. Identity files may also be specified on a per-host basis in the configuration file. It is possible to have multiple -i options (and multiple identi‐ties specified in configuration files). ssh will also try to load certificate information from the filename obtained by appending -cert.pub to identity filenames.
I guess we also need to be able to prompt for a password to the identity file. We should also default this value as in the man pages above.
Made change to support -i option, only one identity file is supported at the moment, not multiple identity files. See NOTES section of FS \ssh man page for more info. SVN trunk/r30008.
When an invalid identify file is specified, it is silently ignored by FS \ssh (there is an issue logged for this if I remember correctly). UNIX ssh command does not offer an option for specifying passphrase, neither FS \ssh. When a private key file is used, either via -i option or detected implicitly, \ssh will prompt user for passphrase at run time.
'Register SSH Server' dialog is also modified, when a new SSH server is created, the 'Advanced -> Authentication -> Private Key File' field will be set if a default identify file can be found.
Made change to support -i option, only one identity file is supported at the moment, not multiple identity files. See NOTES section of FS \ssh man page for more info. SVN trunk/r30008.
When an invalid identify file is specified, it is silently ignored by FS \ssh (there is an issue logged for this if I remember correctly). UNIX ssh command does not offer an option for specifying passphrase, neither FS \ssh. When a private key file is used, either via -i option or detected implicitly, \ssh will prompt user for passphrase at run time.
'Register SSH Server' dialog is also modified, when a new SSH server is created, the 'Advanced -> Authentication -> Private Key File' field will be set if a default identify file can be found.
A few things we need to discuss:
(1) Can -i option be specified along with -s option?
One can invoke \ssh in two ways:
(a) \ssh username@hostname
(b) \ssh -s server-property-file
Does -i option affect (b) above?
r30008 allows -i option to be used by both (a) and (b).
(2) Multiple identity files support:
Should SSH server dialog support multiple identity files? If yes, how to represent them in the SSH properties dialog? Need to add/remove/update an identify file entry, each identify also has a corresponding passphrase field.
(3) If answer to (1) is yes, then how to apply the value(s) specified by -i option(s) to a server property file at run time? Replace all of identity files defined in the server properties file, or merge them?
r30008 currently only supports one identity file, and will do a replacement in this case.
A few things we need to discuss:
(1) Can -i option be specified along with -s option?
One can invoke \ssh in two ways:
(a) \ssh username@hostname
(b) \ssh -s server-property-file
Does -i option affect (b) above?
r30008 allows -i option to be used by both (a) and (b).
(2) Multiple identity files support:
Should SSH server dialog support multiple identity files? If yes, how to represent them in the SSH properties dialog? Need to add/remove/update an identify file entry, each identify also has a corresponding passphrase field.
(3) If answer to (1) is yes, then how to apply the value(s) specified by -i option(s) to a server property file at run time? Replace all of identity files defined in the server properties file, or merge them?
r30008 currently only supports one identity file, and will do a replacement in this case.
Updated the SYNOPSIS section of \ssh man page. SVN r30014.
Discussed with Niels, we are not going to support multiple identity files at the moment; SVN trunk/r30008+r30014 is good for now.
Updated the SYNOPSIS section of \ssh man page. SVN r30014.
Discussed with Niels, we are not going to support multiple identity files at the moment; SVN trunk/r30008+r30014 is good for now.
Issue #7902 |
Closed |
Fixed |
Resolved |
Completion |
No due date |
Fixed Build trunk/30008, 30014 |
No time estimate |
I guess we also need to be able to prompt for a password to the identity file. We should also default this value as in the man pages above.