pass remoteAddr to the other calls

[bennetgallein]

Hi,

thanks for this interesting solution. I'm trying to implement some kind of ACL that'll allow me to basicalyl whitelist IPs, for that I would want the downstream IP in the rest_auth plugin.

I saw that the remoteAddr is posted with the challenge reponse, but I want the end result to be non-interactive so having the user hit enter there would be blocking.

[williamstein]

This is a good idea, and it looks like it would be easy to implement.

Incidentally, yesterday we made a project with pre-built standalone very small binaries that include just sshpiper and this rest_auth plugin here:

https://github.com/sagemathinc/sshpiper-binaries

The binaries are about 7MB. It took a little bit of work to figure out how to compile everything standalone. but it's more flexible than requiring Docker.

[11notes]

@bennetgallein so you basically want to change the GET request for the challenge with a POST and add payload like client IP so the backend can decide if a challenge is even needed or not (whitelisting)?

[bennetgallein]

Yep- without having anything done prior in golang, this is my implementation: master...bennetgallein:docker-sshpiper:main