func authMethods(ctx *cli.Context) (methods []ssh.AuthMethod, err error) {
reader := bufio.NewReader(os.Stdin)
fmt.Print("Password: "******"key")
if keyPath == "" {
keyPath = filepath.Join(usr.HomeDir, ".ssh", "id_rsa")
}
key, err := ioutil.ReadFile(keyPath)
if err != nil {
return
}
privateKey, err := ssh.ParsePrivateKey(key)
if err != nil {
return
}
methods = append(methods, ssh.PublicKeys(privateKey))
return
}
func TestCertLogin(t *testing.T) {
s := newServer(t)
defer s.Shutdown()
// Use a key different from the default.
clientKey := testSigners["dsa"]
caAuthKey := testSigners["ecdsa"]
cert := &ssh.Certificate{
Key: clientKey.PublicKey(),
ValidPrincipals: []string{username()},
CertType: ssh.UserCert,
ValidBefore: ssh.CertTimeInfinity,
}
if err := cert.SignCert(rand.Reader, caAuthKey); err != nil {
t.Fatalf("SetSignature: %v", err)
}
certSigner, err := ssh.NewCertSigner(cert, clientKey)
if err != nil {
t.Fatalf("NewCertSigner: %v", err)
}
conf := &ssh.ClientConfig{
User: username(),
}
conf.Auth = append(conf.Auth, ssh.PublicKeys(certSigner))
client, err := s.TryDial(conf)
if err != nil {
t.Fatalf("TryDial: %v", err)
}
client.Close()
}
func clientConfig() *ssh.ClientConfig {
config := &ssh.ClientConfig{
User: username(),
Auth: []ssh.AuthMethod{
ssh.PublicKeys(testSigners["user"]),
},
HostKeyCallback: hostKeyDB().Check,
}
return config
}
