[X2Go-Commits] page changed: x2gobroker:inifilebackend

wiki-admin at x2go.org wiki-admin at x2go.org
Tue Jul 2 02:36:57 CEST 2013


A page in your DokuWiki was added or changed. Here are the details:

Date        : 2013/07/02 00:36
Browser     : Mozilla/5.0 (X11; Linux x86_64; rv:18.0) Gecko/20100101 Firefox/18.0 Iceweasel/18.0.1
IP-Address  : 87.180.204.24
Hostname    : p57B4CC18.dip0.t-ipconnect.de
Old Revision: http://wiki.x2go.org/doku.php/x2gobroker:inifilebackend?rev=1372725406
New Revision: http://wiki.x2go.org/doku.php/x2gobroker:inifilebackend
Edit Summary: 
User        : sunweaver

@@ -24,8 +24,21 @@
  height=768
  </file>
  
  Note that every X2Go Client parameter not given here gets filled in from a [[http://code.x2go.org/gitweb?p=x2gobroker.git;a=blob;f=x2gobroker/defaults.py|hard-coded default configuration]].
+ 
+ ===== Special Broker Functionalities =====
+ 
+ Some options in the ''x2gobroker-sessionprofiles.conf'' file are used to tweak the broker itself. The options are:
+ 
+ ==== Provisioning of SSH keys to X2Go Client / Servers ====
+ 
+ X2Go Session Broker normally requires two consecutive
logins. One against the session broker, the second against the X2Go Server that the X2Go session will be launched on. The second login (SSH login against X2Go Server) can be automated via the session broker and its agent. For activation of this feature, the special session profile option ''broker-session-autologin'' has to be set to ''true''.
+ 
+   * ''broker-session-autologin'': send a private SSH key to X2Go Client that the client then internally uses for SSH pub/priv key based authentication. The X2Go Session Broker will send the SSH public key via the X2Go Session Broker Agent to the X2Go Server
+   * ''broker-authorized-keys'' (optional, normally defaults are ok): full path to the server-side ''authorized_keys'' file (on the X2Go server)
+ 
+ If ''broker-session-autologin'' is activated, the session broker will create a temporary SSH pub/priv key pair, deploy the private key to X2Go Client and the public key to the X2Go Server that is targeted for X2Go session login.
  
  =====
Filtering through Access Control List =====
  
  If a user has been successfully authenticated against the X2Go Session Broker (or a user name has been given via the http request for cases where ''check-credentials'' in ''x2gobroker.conf'' is set to ''false'') you can use the user's UID, GID and the client address from that the user connects to filter out session profiles.



-- 
This mail was generated by DokuWiki at
http://wiki.x2go.org/




More information about the x2go-commits mailing list