From 5c9cd24767bcbc8cdb39eebf2fd81e9c814c01af Mon Sep 17 00:00:00 2001 From: "Chris St. Pierre" Date: Wed, 4 Sep 2013 15:27:02 -0400 Subject: Cfg: More flexible and complete way to specify authorized keys options --- schemas/authorizedkeys.xsd | 70 ++++++++++++++++++++++++++++++++++++++++++++-- 1 file changed, 67 insertions(+), 3 deletions(-) (limited to 'schemas') diff --git a/schemas/authorizedkeys.xsd b/schemas/authorizedkeys.xsd index 848f99bae..dbf32cc25 100644 --- a/schemas/authorizedkeys.xsd +++ b/schemas/authorizedkeys.xsd @@ -42,6 +42,43 @@ + + + + An **OptionContainerType** is a tag used to provide logic. + Child entries of an OptionContainerType tag only apply to + machines that match the condition specified -- either + membership in a group, or a matching client name. + :xml:attribute:`OptionContainerType:negate` can be set to + negate the sense of the match. + + + + + + + + + + + + The name of the client or group to match on. Child entries + will only apply to this client or group (unless + :xml:attribute:`OptionContainerType:negate` is set). + + + + + + + Negate the sense of the match, so that child entries only + apply to a client if it is not a member of the given group + or does not have the given name. + + + + + @@ -50,6 +87,9 @@ + + + @@ -77,12 +117,36 @@ + + + + Specify options for public key authentication and connection. + See :manpage:`sshd(8)` for details on allowable options. + + + + + + The name of the sshd option. + + + + + + + The value of the sshd option. This can be omitted for + options that take no value. + + + + + - Specify parameters for public key authentication and - connection. See :manpage:`sshd(8)` for details on allowable - parameters. + **Deprecated** way to specify options for public key + authentication and connection. See :manpage:`sshd(8)` for + details on allowable parameters. -- cgit v1.2.3-1-g7c22