Add sshd_config snippet for users not git

Added another snippet for sshd_config to use principal-files for users which are NOT git. There you can also use another AuthorizedPrincipalsCommand, if you want instead.
2019-08-28 09:17:18 +02:00 · 2019-08-28 09:17:18 +02:00 · 2039e7fb10
parent 34e373864f
commit 2039e7fb10
1 changed files with 6 additions and 0 deletions
--- a/README.rst
+++ b/README.rst
@ -216,6 +216,12 @@ To use principals and ssh-certificates with this fork of gitosis, please add thi
        AuthorizedPrincipalsCommandUser git
        AuthorizedPrincipalsCommand    /usr/local/bin/gitosis-authorized-principals %i 

+And for all users except git, use only principal-files::
+    
+    Match User !git,*
+        AuthorizedPrincipalsFile /etc/ssh/userprincipals/%u
+
+
 This will run the command as user "git", which will you have installed, when you serve your gitrepos with gitosis. 
 %i is the key-identity of your certificate, which will you give on your sign-process to the user-certificate.