Metadata-Version: 1.1
Name: Geofront
Version: 0.1.1
Summary: Simple SSH key management service
Home-page: https://github.com/spoqa/geofront
Author: Spoqa
Author-email: dev@spoqa.com
License: AGPLv3 or later
Description: Geofront
        ========
        
        .. image:: https://pypip.in/v/Geofront/badge.png
           :target: https://pypi.python.org/pypi/Geofront
           :alt: Latest PyPI version
        
        .. image:: https://travis-ci.org/spoqa/geofront.svg?branch=master
           :target: https://travis-ci.org/spoqa/geofront
        
        .. image:: https://coveralls.io/repos/spoqa/geofront/badge.png?branch=master
           :target: https://coveralls.io/r/spoqa/geofront
        
        Geofront is a simple SSH key management server.  It helps to maintain servers
        to SSH, and ``authorized_keys`` list for them.
        
        
        Situations
        ----------
        
        - If the team maintains ``authorized_keys`` list of all servers owned
          by the team:
        
          - When someone joins or leaves the team, all lists have to be updated.
          - *Who* do update the list?
        
        - If the team maintains shared private keys to SSH servers:
        
          - These keys have to be expired when someone leaves the team.
          - There should be a shared storage for the keys.  (Dropbox?  srsly?)
          - Everyone might need to add ``-i`` option to use team's own key.
        
        - The above ways are both hard to scale servers.  Imagine your team
          have more than 10 servers.
        
        
        Idea
        ----
        
        1. Geofront has its own *master key*.  The private key is never shared.
           The master key is periodically and automatically regened.
        2. Every server has a simple ``authorized_keys`` list, which authorizes
           only the master key.
        3. Every member registers their own public key to Geofront.
           The registration can be omitted if the key storage is GitHub, Bitbucket,
           etc.
        4. A member requests to SSH a server, then Geofront *temporarily*
           (about 30 seconds, or a minute) adds their public key to ``authorized_keys``
           of the requested server.
        
        
        Prerequisites
        -------------
        
        - Linux, BSD, Mac
        - Python 3.3+
        - Third-party packages (automatically installed together)
        
          - Paramiko_ 1.13.0+
          - Werkzeug_ 0.9+
          - Flask_ 0.10+
          - Apache Libcloud_ 0.14.0+
          - Waitress_ 0.8.8+
        
        .. _Paramiko: http://www.paramiko.org/
        .. _Werkzeug: http://werkzeug.pocoo.org/
        .. _Flask: http://flask.pocoo.org/
        .. _Libcloud: http://libcloud.apache.org/
        .. _Waitress: https://github.com/Pylons/waitress
        
        
        Author and license
        ------------------
        
        Geofront is written by `Hong Minhee`__, maintained by Spoqa_, and licensed
        under AGPL3 or later.
        
        
        __ http://dahlia.kr/
        .. _Spoqa: http://www.spoqa.com/
        
        
        Missing features
        ----------------
        
        - Google Apps backend
        - Bitbucket backend
        - Fabric_ integration
        - PuTTY_ integration
        
        (Contributions would be appreciated!)
        
        .. _Fabric: http://www.fabfile.org/
        .. _PuTTY: http://www.chiark.greenend.org.uk/~sgtatham/putty/
        
Platform: UNKNOWN
Classifier: Development Status :: 3 - Alpha
Classifier: Environment :: Web Environment
Classifier: Intended Audience :: Developers
Classifier: Intended Audience :: System Administrators
Classifier: License :: OSI Approved :: GNU Affero General Public License v3 or later (AGPLv3+)
Classifier: Operating System :: POSIX
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.3
Classifier: Programming Language :: Python :: 3.4
Classifier: Programming Language :: Python :: Implementation :: CPython
Classifier: Topic :: Internet :: WWW/HTTP :: WSGI :: Application
Classifier: Topic :: System :: Systems Administration :: Authentication/Directory
