mirror of
https://github.com/aljazceru/addons.git
synced 2025-12-17 21:24:20 +01:00
98b234f9f7
* SSH: Add local TCP forwarding option Add allow_tcp_forwarding option, to allow local port forwarding by the SSH add-on. Code lifted from the more advanced [SSH & Web Terminal](https://github.com/hassio-addons/addon-ssh) add-on. * Bump version to 8.6.0 * SSH: Rename tcp_forwarding option * Update ssh.sh * Update DOCS.md Co-authored-by: Pascal Vizeli <pascal.vizeli@syshack.ch>
37 lines
1.4 KiB
Bash
37 lines
1.4 KiB
Bash
#!/usr/bin/with-contenv bashio
|
|
# ==============================================================================
|
|
# SSH setup & user
|
|
# ==============================================================================
|
|
if bashio::config.has_value 'authorized_keys'; then
|
|
bashio::log.info "Setup authorized_keys"
|
|
|
|
mkdir -p /data/.ssh
|
|
chmod 700 /data/.ssh
|
|
rm -f /data/.ssh/authorized_keys
|
|
while read -r line; do
|
|
echo "$line" >> /data/.ssh/authorized_keys
|
|
done <<< "$(bashio::config 'authorized_keys')"
|
|
|
|
chmod 600 /data/.ssh/authorized_keys
|
|
sed -i s/#PasswordAuthentication.*/PasswordAuthentication\ no/ /etc/ssh/sshd_config
|
|
|
|
# Unlock account
|
|
PASSWORD="$(pwgen -s 64 1)"
|
|
echo "root:${PASSWORD}" | chpasswd 2&> /dev/null
|
|
elif bashio::config.has_value 'password'; then
|
|
bashio::log.info "Setup password login"
|
|
|
|
PASSWORD=$(bashio::config 'password')
|
|
echo "root:${PASSWORD}" | chpasswd 2&> /dev/null
|
|
|
|
sed -i s/#PasswordAuthentication.*/PasswordAuthentication\ yes/ /etc/ssh/sshd_config
|
|
sed -i s/#PermitEmptyPasswords.*/PermitEmptyPasswords\ no/ /etc/ssh/sshd_config
|
|
elif bashio::var.has_value "$(bashio::addon.port 22)"; then
|
|
bashio::exit.nok "You need to setup a login!"
|
|
fi
|
|
|
|
# Allow TCP forwarding
|
|
if bashio::config.true 'server.tcp_forwarding'; then
|
|
sed -i "s/AllowTcpForwarding.*/AllowTcpForwarding\\ yes/" /etc/ssh/sshd_config
|
|
fi
|