OpenSSH has a limit of 256 principals per certificate.
This patch adds following features:
server: support max_principals_per_certificate URL parameter to request
up to n principals where n >= 10.
client: add max-principals-per-certificate global flag as well as
SSH_INSCRIBE_MAX_PRINCIPALS_PER_CERTIFICATE envvar.
client: if --write flag is given and server returns multiple certificates,
write the certs using {{identify}}-cert{{idx}}.pub format for
the filename. The index starts from one.
A user can then use the certificate file directly with:
ssh -i /path/to/private_key -o CertificateFile=/path/to/cert
At the time of writing, OpenSSH doesn't support multiple certs in
one file.
OpenSSH has a limit of 256 principals per certificate.
This patch adds following features:
client: if --write flag is given and server returns multiple certificates, write the certs using {{identify}}-cert{{idx}}.pub format for the filename. The index starts from one. A user can then use the certificate file directly with:
ssh -i /path/to/private_key -o CertificateFile=/path/to/certResolves #15