0458179597
Each user can have a set of authorized keys for public key authentication. This is better to support as it lets us use different algorithms and not just RSA. In the age of security, it's good to have variety. I also added additional libraries to support ed25519-based public keys. I updated the SSH libraries so any upstream bug fixes are applied, fixed some warnings and a few other things.
89 lines
2.3 KiB
Java
89 lines
2.3 KiB
Java
package com.ryanmichela.sshd;
|
|
|
|
import org.apache.sshd.common.file.virtualfs.VirtualFileSystemFactory;
|
|
import org.apache.sshd.server.SshServer;
|
|
import org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider;
|
|
import org.apache.sshd.server.subsystem.sftp.SftpSubsystemFactory;
|
|
import org.bukkit.plugin.java.JavaPlugin;
|
|
|
|
import com.ryanmichela.sshd.ConsoleShellFactory;
|
|
|
|
import java.io.File;
|
|
import java.io.IOException;
|
|
import java.nio.file.FileSystems;
|
|
import java.util.Collections;
|
|
import java.util.logging.Level;
|
|
|
|
/**
|
|
* Copyright 2013 Ryan Michela
|
|
*/
|
|
public
|
|
class SshdPlugin extends JavaPlugin
|
|
{
|
|
|
|
private SshServer sshd;
|
|
public static SshdPlugin instance;
|
|
|
|
@Override public void onLoad()
|
|
{
|
|
saveDefaultConfig();
|
|
File authorizedKeys = new File(getDataFolder(), "authorized_keys");
|
|
if (!authorizedKeys.exists())
|
|
{
|
|
authorizedKeys.mkdirs();
|
|
}
|
|
|
|
// Don't go any lower than INFO or SSHD will cause a stack overflow exception.
|
|
// SSHD will log that it wrote bites to the output stream, which writes
|
|
// bytes to the output stream - ad nauseaum.
|
|
getLogger().setLevel(Level.INFO);
|
|
}
|
|
|
|
@Override public void onEnable()
|
|
{
|
|
instance = this;
|
|
|
|
sshd = SshServer.setUpDefaultServer();
|
|
sshd.setPort(getConfig().getInt("port", 22));
|
|
String host = getConfig().getString("listenAddress", "all");
|
|
sshd.setHost(host.equals("all") ? null : host);
|
|
|
|
File hostKey = new File(getDataFolder(), "hostkey");
|
|
File authorizedKeys = new File(getDataFolder(), "authorized_keys");
|
|
|
|
sshd.setKeyPairProvider(new SimpleGeneratorHostKeyProvider(hostKey.toPath()));
|
|
sshd.setShellFactory(new ConsoleShellFactory());
|
|
sshd.setPasswordAuthenticator(new ConfigPasswordAuthenticator());
|
|
sshd.setPublickeyAuthenticator(new PublicKeyAuthenticator(authorizedKeys));
|
|
|
|
if (getConfig().getBoolean("enableSFTP"))
|
|
{
|
|
sshd.setSubsystemFactories(Collections.singletonList(new SftpSubsystemFactory()));
|
|
sshd.setFileSystemFactory(
|
|
new VirtualFileSystemFactory(FileSystems.getDefault().getPath(getDataFolder().getAbsolutePath()).getParent().getParent()));
|
|
}
|
|
|
|
sshd.setCommandFactory(new ConsoleCommandFactory());
|
|
try
|
|
{
|
|
sshd.start();
|
|
}
|
|
catch (IOException e)
|
|
{
|
|
getLogger().log(Level.SEVERE, "Failed to start SSH server! ", e);
|
|
}
|
|
}
|
|
|
|
@Override public void onDisable()
|
|
{
|
|
try
|
|
{
|
|
sshd.stop();
|
|
}
|
|
catch (Exception e)
|
|
{
|
|
// do nothing
|
|
}
|
|
}
|
|
}
|