agit only stores host keys while session is active #107
Comments
|
After looking into how connectbot does this, I think that we should utilize a similar approach, with an SQLite database dedicated to hosts (rather than prefs): Perhaps we could actually leverage connectbot to keep track of these for us, so we don't have to keep track of our own hosts? It would be really great if, when querying for an ssh connection, we simply determined if the host to which we're connecting is among the known hosts of our ssh client. |
|
Hi @jwir3 - apologies for not getting back to you, will review PRs this weekend with any luck. Regarding saving HTTP credentials, bear in mind the user /can/ put them into the clone url: https://github.com/rtyley/agit/wiki/HTTP ...given that, is there a good argument for putting another persistence path into place? One possible action might be to amend the remote url with the credentials after they're supplied by the user. |
|
Whoops, your post was about trusted SSH hosts, not HTTP. Apologies again.
Agreed, this is exactly what we would want. Requires an additional patch to ConnectBot though |
I can look into this, but one thing that is suboptimal about this approach is that we're going to be tying ourselves specifically to ConnectBot. I'm not particularly opposed to this, but it might be nice for a user who wanted to use some other SSH client to be able to. (I suppose this would require some type of system-level manager of keys, which probably is beyond the scope of this issue). At any rate, perhaps we should consider adding support for SQLite. The rationale being that preference storage isn't really designed for storing things like host keys, and we'd need to persist them somehow. If we really don't want to add the logic to agit, then perhaps we should consider shipping a version of ConnectBot with agit so that we don't have users thinking they can use a separate client when they actually can't. |
The following code, at the beginning of
CuriousHostKeyRepository, initializes theknownKeyshashmap for the application:Unfortunately, as soon as the application closes, this
knownKeyshashmap is removed. This forces the user to accept a prompt for a host key that is deemed "curious" the next time the app is run. This degrades sync on these repos, because it requires the user to accept the host key if agit wasn't previously running (thus it can't happen in the background).My suggestion would be (as a naive implementation) to store accepted host keys in the preference store. The down side to this, though, is that when a repository is removed, the associated keys should also be removed from the preference store for the host on which the repo was located (unless there exists another repo with the same host).
The text was updated successfully, but these errors were encountered: