Please specify a user. https://sour.is/pubkeys/[username]


What is this thing?
===================

This tool provides a way to export the public keys stored for users of git.dn42. This can be used by others to create services that let you login using your ssh keys.


How does this thing work?
=========================

You can query the keys for usernames in different formats. The key name that appears after the publickey has been changed to that of the associated user.

authorized_keys text format: https://sour.is/pubkeys/[username]

CSV: https://sour.is/pubkeys/[username].csv

JSON: https://sour.is/pubkeys/[username].json
* This one is similar to how GitHub does their pubkey api
.

JSON has some [weird characters][json-1] at the start WTF?
===========================================================

The characters are to prevent javascript from interpreting the json as code. This has been linked to some not so friendly [browser exploits][json-2].

If you do not want to have them show up, send your request with the following header: 'X-No-Json-Protect: true'

[json-1]: https://docs.angularjs.org/api/ng/service/#json-vulnerability-protection
[json-2]: http://stackoverflow.com/a/28806749

Can I used this with AuthorizedKeyCommand? (openssh 6.9+, or [patched][sshd-1])
===============================================================================

Yes! If you send a request like so: https://sour.is/pubkeys/[fingerprint]

it will send back an authorized_keys formatted file that ssh can use.

[sshd-1]: https://blog.heckel.xyz/2015/05/04/openssh-authorizedkeyscommand-with-fingerprint/


*have a nice day!*