Skip to content

rewrite ssh key logic #401

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
simonLeary42 wants to merge 55 commits into
base: main
Choose a base branch
from
Open

rewrite ssh key logic #401

simonLeary42 wants to merge 55 commits into from

Conversation

@simonLeary42
Copy link
Collaborator

@simonLeary42 simonLeary42 commented Dec 16, 2025
edited
Loading

before:

  • duplicate and invalid keys are silently ignored
  • when github API returns no keys, nothing happens and the user is left scratching their head
  • private keys are accepted and written to world-readable LDAP
  • lots of strange key types and key formats are accepted (ex: DSA, JWT)
  • when writing multiple keys, there is only one LDAP write (fast)

after:

  • added message when key is added
  • added message when key is removed
  • added message when duplicate key is skipped
  • added message when key is invalid
  • added message when github API returns empty array
  • only configured [ldap][allowed_ssh_public_key_types] key types are accepted
  • only authorized_keys-formatted keys are accepted
  • private keys are not accepted
  • when adding multiple keys, there is one LDAP write per key (slow)
    • this happens only when importing from github and even then it should only typically be a small number of keys
image
Screen.Recording.2025-12-18.at.12.40.14.PM.mov

TODO:

  • decide what to do with currently unused UnityUser->sshKeyExists() function
  • enforce phpseclib-compatible authorized_keys-style public key format with regex
  • switch from load to loadPublicKey
  • display key invalid message in modal for paste key

@simonLeary42 simonLeary42 requested a review from Copilot December 16, 2025 19:49

This comment was marked as outdated.

Sign in to view

@simonLeary42 simonLeary42 changed the title simplify ssh key adding behavior rewrite ssh key adding Dec 16, 2025
@simonLeary42 simonLeary42 marked this pull request as draft December 16, 2025 20:57
@simonLeary42 simonLeary42 force-pushed the ssh-keys-all-or-none branch 3 times, most recently from 12d2314 to feb793b Compare December 17, 2025 02:14
@simonLeary42 simonLeary42 changed the title rewrite ssh key adding rewrite ssh key logic Dec 17, 2025
@simonLeary42 simonLeary42 requested a review from Copilot December 17, 2025 14:03
Copilot AI reviewed Dec 17, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 6 out of 6 changed files in this pull request and generated 8 comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@simonLeary42 simonLeary42 marked this pull request as ready for review December 17, 2025 14:22
@simonLeary42 simonLeary42 force-pushed the ssh-keys-all-or-none branch 2 times, most recently from 537bad1 to 18b1f54 Compare December 17, 2025 20:59
@simonLeary42 simonLeary42 marked this pull request as draft December 17, 2025 20:59
@simonLeary42 simonLeary42 force-pushed the ssh-keys-all-or-none branch 4 times, most recently from 32ebd66 to 2e52486 Compare December 18, 2025 16:03
@simonLeary42 simonLeary42 marked this pull request as ready for review December 18, 2025 17:44
@simonLeary42 simonLeary42 requested a review from Copilot December 18, 2025 17:44
Copilot AI reviewed Dec 18, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 12 out of 12 changed files in this pull request and generated 8 comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

simonLeary42 and others added 28 commits December 18, 2025 14:29
@simonLeary42
rewrite testValidSSHKey
5c45d8c
@simonLeary42
return array
4716f7f
@simonLeary42
fix bug
b2c0c52
@simonLeary42
add allowed ssh key types config
1e8eb74
@simonLeary42
update test case
5bbe54e
@simonLeary42
remove responsibility from addSSHKey
21679a6
@simonLeary42
update account.php for new testValidSSHKey
d1fd6a0
@simonLeary42
update ssh_validate for new testValidSSHKey
d13060a
@simonLeary42
handle ajax failure
b1ac178
@simonLeary42
add tests
70d51a1
@simonLeary42
fix bug
3cb92eb
@simonLeary42
fix bugs
7dbd000
@simonLeary42
make error message less promising
fe4f9b6
@simonLeary42
update test
bdc755f
@simonLeary42
fix require in ajax
0ced2a9
@simonLeary42
close other session if exists
7daf8be
@simonLeary42
fix bug
6f554dc
@simonLeary42
only single space
f51572d
@simonLeary42
use SSHKeyExists()
4527c54
@simonLeary42
move function
a44a924
@simonLeary42
tweak comment
894acdc
@simonLeary42
display invalid key explanation in modal
3944058
@simonLeary42
invalid encoding
6252597
@simonLeary42
Update webroot/panel/account.php
2449aa5 
Co-authored-by: Copilot <[email protected]>
@simonLeary42
remove unused import
e5595eb
@simonLeary42
remove console.log
b1b458a
@simonLeary42
add tests for shortenString
2ccc1d0
@simonLeary42
add tests for removing ssh key comment
8aee5ea
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@bryank-cs bryank-cs Awaiting requested review from bryank-cs

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@simonLeary42