Add SSHPOP default provisioner if SSH enabled during init

2020-07-31 10:32:08 -07:00 · 2020-07-31 10:32:08 -07:00 · 3fb116f1b4
commit 3fb116f1b4
parent 3f844c5e23
1 changed files with 10 additions and 0 deletions
--- a/pki/pki.go
+++ b/pki/pki.go
@ -446,9 +446,19 @@ func (p *PKI) GenerateConfig(opt ...Option) (*authority.Config, error) {
 			HostKey: p.sshHostKey,
 			UserKey: p.sshUserKey,
 		}
+		// Enable SSH authorization for default JWK provisioner
 		prov.Claims = &provisioner.Claims{
 			EnableSSHCA: &enableSSHCA,
 		}
+		// Add default SSHPOP provisioner
+		sshpop := &provisioner.SSHPOP{
+			Type: "SSHPOP",
+			Name: "sshpop",
+			Claims: &provisioner.Claims{
+				EnableSSHCA: &enableSSHCA,
+			},
+		}
+		config.AuthorityConfig.Provisioners = append(config.AuthorityConfig.Provisioners, sshpop)
 	}

 	// Apply configuration modifiers