system/systemd
system/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd synced 2024-07-21 10:17:21 +00:00
Code Issues Actions 7 Packages Projects Releases Wiki Activity

man: add example with one-liner for ssh provisioning via tmpfiles.d + Creds

Browse source
This commit is contained in:
Luca Boccassi 2022-09-08 16:27:52 +01:00
parent f53d56f1a3
commit 87d1886346
1 changed files with 13 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
man/tmpfiles.d.xml
View file

@ -826,6 +826,19 @@ e! /var/cache/krb5rcache - - - 0
will be removed on boot. The directory will not be created.
</para>
</example>
<example>
<title>Provision SSH public key access for root user via Credentials in QEMU</title>
<programlisting>-smbios type=11,value=io.systemd.credential.binary:tmpfiles.extra=$(echo "f~ /root/.ssh/authorized_keys 700 root root - $(ssh-add -L | base64 -w 0)" | base64 -w 0)
</programlisting>
<para>By passing this line to QEMU, the public key of the current user will be encoded in
base64, added to a tmpfiles.d line that tells systemd-tmpfiles to decode it into
<filename>/root/.ssh/authorized_keys</filename>, encode that line itself in base64 and
pass it as a Credential that will be picked up by systemd from SMBIOS on boot.
</para>
</example>
</refsect1>
<refsect1>