add sshd config files

these contain a hard-coded username at the moment

3 files changed, 13 insertions, 0 deletions

diff --git a/src/fossil-user.conf b/src/fossil-user.conf
new file mode 100644
index 0000000..f4296fd
--- /dev/null
+++ b/src/fossil-user.conf
@@ -0,0 +1,4 @@
+Match User d
+ExposeAuthInfo=yes
+AuthorizedKeysCommandUser=root
+AuthorizedKeysCommand=/etc/ssh/user-d.AuthorizedKeysCommand "%t %k" "%f"
diff --git a/src/user-d.AnonymousForceCommand b/src/user-d.AnonymousForceCommand
new file mode 100755
index 0000000..a8a09f3
--- /dev/null
+++ b/src/user-d.AnonymousForceCommand
@@ -0,0 +1,2 @@
+#!/bin/bash
+socat stdio /run/fossil-user.S
diff --git a/src/user-d.AuthorizedKeysCommand b/src/user-d.AuthorizedKeysCommand
new file mode 100755
index 0000000..6bf0ec9
--- /dev/null
+++ b/src/user-d.AuthorizedKeysCommand
@@ -0,0 +1,7 @@
+#!/bin/sh
+cmd=/etc/ssh/user-d.AnonymousForceCommand
+[ -x "$cmd" ] || exit
+
+key=$1
+shift
+printf 'restrict,pty,command="%s" %s\n' "$cmd $*" "$key"