This repository has been archived by the owner on Jun 29, 2022. It is now read-only.
packet: disable syncing allowed SSH keys on nodes #471
Commits on May 29, 2020
-
packet: disable syncing allowed SSH keys on nodes
This commit disables syncing authorized SSH keys for core user on nodes from Packet's user's keys and project's keys, so only keys which are specified in the Lokomotive configuration are actually authorized, as having more keys allowed than specified in the configuration might be a potential security threat. Closes #465 Signed-off-by: Mateusz Gozdek <mateusz@kinvolk.io>
-
This commit adds e2e test, to verify, that there is no extra SSH keys added to the Kubernetes nodes, other than one specified in the SSH_KEY environment variable, which is used by the CI for provisioning the clusters. Ideally, the test should pull the keys directly from the cluster configuration, however this is currently not trivial to implement. Refs #465 Signed-off-by: Mateusz Gozdek <mateusz@kinvolk.io>
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.