ssh ForwardAgent #59
Comments
|
There is the possibility to introduce a hack in LittleChef to add ssh key forwarding, but it would be quite ugly. This needs to be solved upstream, in the fabric and paramiko libraries. There are already issues for that: I added a comment there so that they know we would also like to have that feature. It seems only final testing needs to be done, so we'll keep track of the issues and when paramiko and fabric versions come out we can check it out |
|
Thanks. Out of curiosity what would the hack be. The reason I ask. I have a chef-solo deployment of multiple apps, but it's integrated with vlad the deployer. I really like littlechef. However, I am blocked converting from vlad to littlechef until we can do forwarding. I don't mind holding off on it, I just would hate to see it delayed for many months. Littlechef would actually solve a few problems I am currently facing in my existing setup. |
|
The hack is explained here: http://lincolnloop.com/blog/2009/sep/22/easy-fabric-deployment-part-1-gitmercurial-and-ssh/ Basically, instead of calling fabric's How would you need to patch LittleChef? so that instead of cmd = 'sudo chef-solo -l {0} -j /etc/chef/node.json'.format(env.loglevel)
output = local('ssh -A %s "%s"' % (env.host_string, cmd))Just try it out and tell us how it goes! |
|
This has been fixed upstream in fabric 1.3.5/1.4.0 This means we can implement support in LittleChef by passing |
It appears littlechef doesn't respect ForwardAgent.
I have a chef cookbook which attempts to do a git checkout of a repository. Rather than having to generate a deploy key on the server, and adding that to github, you can enable ForwardAgent.
It seems this does not work. I can manually login to the server using ssh -A root@domain and git clone fine.
Setting ForwardAgent yes in my ~/.ssh/config doesn't have the same effect.
Any ideas?
The text was updated successfully, but these errors were encountered: