sgard

sc/sgard

Files

Kyle Isom 4b841cdd82 Step 14: SSH key auth for gRPC.

Server: AuthInterceptor parses authorized_keys, extracts SSH signature
from gRPC metadata (nonce + timestamp signed by client's SSH key),
verifies against authorized public keys with 5-minute timestamp window.

Client: SSHCredentials implements PerRPCCredentials, signs nonce+timestamp
per request. LoadSigner resolves key from flag, ssh-agent, or default paths.

8 tests: valid auth, reject unauthenticated, reject unauthorized key,
reject expired timestamp, metadata generation, plus 2 integration tests
(authenticated succeeds, unauthenticated rejected).

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-23 23:58:09 -07:00

auth_test.go

Step 14: SSH key auth for gRPC.

2026-03-23 23:58:09 -07:00

auth.go

Step 14: SSH key auth for gRPC.

2026-03-23 23:58:09 -07:00

convert_test.go

Steps 10 & 11: Garden accessors and proto-manifest conversion.

2026-03-23 23:25:07 -07:00

convert.go

Steps 10 & 11: Garden accessors and proto-manifest conversion.

2026-03-23 23:25:07 -07:00

server_test.go

Steps 12 & 12b: gRPC server and directory recursion + mirror.

2026-03-23 23:48:04 -07:00

server.go

Steps 12 & 12b: gRPC server and directory recursion + mirror.

2026-03-23 23:48:04 -07:00