mirror of
https://codeberg.org/forgejo/forgejo.git
synced 2025-03-31 07:39:39 +00:00
40df1875da
- While doing some sanity checks over OpenSSH's code for how they
handle certificates authentication. I stumbled on an condition that
checks the certificate type is really an user certificate on the
server-side authentication. This checks seems to be a formality and just
for the sake of good domain seperation, because an user and host
certificate don't differ in their generation, verification or flags that
can be included.
- Add this check to the builtin SSH server to stay close to the
unwritten SSH specification.
- This is an breaking change for setups where the builtin SSH server is
being used and for some reason host certificates were being used for
authentication.
(cherry picked from commit
|
||
|---|---|---|
| .. | ||
| init.go | ||
| ssh.go | ||
| ssh_graceful.go | ||