Skip to main content

IdentityFilter

pam_ssh_agent::filter

Struct IdentityFilter

pub struct IdentityFilter { /* private fields */ }

Expand description

An IdentityFilter can determine if an Identity provided by the ssh-agent is trusted or not by this plugin. It is constructed from files or commands providing regular ssh keys or cert-authority keys.

Implementations§

impl IdentityFilter

pub fn new( authorized_keys_file: &Path, ca_keys_file: Option<&Path>, authorized_keys_command: Option<&str>, authorized_keys_command_user: Option<&str>, calling_user: &str, ) -> Result<Self>

Construct a new Identity filter with the provided authorized_keys file and optionally also ca_keys_file, authorized_keys_command and authorized_keys_command_user. The authorized_keys_command will be invoked when specified, and its output will be treated as additional lines in the authorized_keys file. If authorized_keys_command_user is not specified, the identity of the calling user will be used when executing he command.

pub fn from_authorized_file(authorized_keys_file: &Path) -> Result<Self>

pub fn filter(&self, identity: &Identity<'_>) -> bool

Returns true if the provided Identity is a PublicKey and this filter is configured with the same public key, or if the Identity is a Certificate and this filter is configured with a matching cert authority key. Please note that for certificates this is not enough, see auth::validate_cert for more information.

Auto Trait Implementations§

impl Freeze for IdentityFilter

impl RefUnwindSafe for IdentityFilter

impl Send for IdentityFilter

impl Sync for IdentityFilter

impl Unpin for IdentityFilter

impl UnsafeUnpin for IdentityFilter

impl UnwindSafe for IdentityFilter

Blanket Implementations§

impl<T> Any for T
where T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for T
where T: ?Sized,

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T
where T: ?Sized,

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<ST, DT> CastableFrom<ST, Initialized, Initialized> for DT
where ST: ?Sized, DT: ?Sized,

impl<ST, DT> CastableFrom<ST, Uninit, Uninit> for DT
where ST: ?Sized, DT: ?Sized,

impl<T> From<T> for T

fn from(t: T) -> T

Returns the argument unchanged.

impl<T, U> Into<U> for T
where U: From<T>,

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T> Read<Exclusive, BecauseExclusive> for T
where T: ?Sized,

impl<T> Same for T

type Output = T

Should always be Self

impl<T, U> TryFrom<U> for T
where U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

fn vzip(self) -> V