##// END OF EJS Templates
rhodecode-enterprise-docker
RSS
docs: added 5.8.0 changelog
docs: added 5.8.0 changelog
super-admin - - Load All Authors

File last commit:

r224:f53416f2
r423:f4b42dc7 v5.8.0
Show More
ssh-entrypoint.sh
71 lines | 1.8 KiB | application/x-sh | BashLexer
/ entrypoints.d / ssh-entrypoint.sh
History | Annotation | Raw |Copy content |Copy permalink
#!/usr/bin/env bash
set -Eeo pipefail
keys_dir=/etc/rhodecode/conf/ssh
function ensure_perms() {
chmod 0600 $keys_dir/ssh_host_rsa_key
chmod 0600 $keys_dir/ssh_host_ecdsa_key
chmod 0600 $keys_dir/ssh_host_ed25519_key
if [[ ! -f $keys_dir/authorized_keys ]]; then
echo "Generating $keys_dir/authorized_keys..."
touch $keys_dir/authorized_keys
chmod 0600 $keys_dir/authorized_keys
fi
}
function generate_ssh_keys() {
if [[ ! -d $keys_dir ]]; then
echo "Creating ssh dir $keys_dir ..."
mkdir -p $keys_dir
## 999:999 are set uid/guid in docker build images
chown -v 999:999 $keys_dir
fi
if [[ ! -f $keys_dir/authorized_keys ]]; then
echo "Generating $keys_dir/authorized_keys..."
touch $keys_dir/authorized_keys
chmod 0600 $keys_dir/authorized_keys
fi
# Generate ssh host key for the first time
if [[ ! -f $keys_dir/ssh_host_rsa_key ]]; then
echo "Generating $keys_dir/ssh_host_rsa_key ..."
ssh-keygen -f $keys_dir/ssh_host_rsa_key -N '' -t rsa
chmod 0600 $keys_dir/ssh_host_rsa_key
fi
if [[ ! -f $keys_dir/ssh_host_ecdsa_key ]]; then
echo "Generating $keys_dir/ssh_host_ecdsa_key ..."
ssh-keygen -f $keys_dir/ssh_host_ecdsa_key -N '' -t ecdsa
chmod 0600 $keys_dir/ssh_host_ecdsa_key
fi
if [[ ! -f $keys_dir/ssh_host_ed25519_key ]]; then
echo "Generating $keys_dir/ssh_host_ed25519_key ..."
ssh-keygen -f $keys_dir/ssh_host_ed25519_key -N '' -t ed25519
chmod 0600 $keys_dir/ssh_host_ed25519_key
fi
sed -i "s/AllowUsers USER/AllowUsers $RC_USER/" $SSHD_CONF_FILE
}
echo "ENTRYPOINT: Running with cmd '$1'"
if [ "$SSH_BOOTSTRAP" = 1 ]; then
# generate SSH keys
generate_ssh_keys
fi
if [ "$SSH_ENSURE_PERMS" = 1 ]; then
# generate SSH keys
ensure_perms
fi
mkdir -p /run/sshd
exec "$@"