GateOne

After a bit of research I found a product called GateOne that would enable me to use a web browser to connect to ssh using standard https – cool!

sudo apt-get install python-setuptools
git clone https://github.com/liftoff/GateOne.git
cd GateOne
sudo python setup.py install
cd ..
sudo rm -rf GateOne
sudo gateone

sudo apt-get install python-setuptools

git clone https://github.com/liftoff/GateOne.git

cd GateOne

sudo python setup.py install

cd ..

sudo rm -rf GateOne

sudo gateone

Then ctrl+c so we can edit the config

sudo vi /etc/gateone/conf.d/10server.conf

1	sudo vi /etc/gateone/conf.d/10server.conf

at the end of the line with origins, add the IP of the Pi, i.e. , “192.168.0.123” then restart the daemon:

sudo /etc/init.d/gateone restart

1	sudo /etc/init.d/gateone restart

to check it out browse to https://192.168.0.123/

All that remains is to ensure it starts automatically on reboot – I think the update-rc.d script must be a bit buggy on the Pi. I ended up doing all of this as I was having some trial and error fun:

sudo update-rc.d gateone defaults
sudo update-rc.d gateone start 20 2 3 4 5 . stop 80 0 1 6 .
cd /etc/rc2.d/
sudo mv K01gateone S01gateone

sudo update-rc.d gateone defaults

sudo update-rc.d gateone start 20 2 3 4 5 . stop 80 0 1 6 .

cd /etc/rc2.d/

sudo mv K01gateone S01gateone

Next up – some authentication …

within /etc/gateone/conf.d/20authentication.conf the authenication type was changed to google

"auth": "google",

1	"auth": "google",

and the terminal configuration (/etc/gateone/conf.d/50terminal.conf) was modified to turn off the terminal for all users (allow: false) and then add it back on just for me:

// This is Gate One's Terminal application settings file.
{
    // "*" means "apply to all users" or "default"
    "*": {
        "terminal": { // These settings apply to the "terminal" application
            "commands": {"SSH": {"command": "/usr/local/lib/python2.7/dist-packages/gateone-1.2.0-py2.7.egg/gateone/applications/terminal/plugins/ssh/scripts/ssh_connect.py -S '%SESSION_DIR%/%SESSION%/%SHORT_SOCKET%' --sshfp -a 'oUserKnownHostsFile=\\\"%USERDIR%/%USER%/.ssh/known_hosts\\\"'", "description": "Connect to hosts via SSH."}},
            "default_command": "SSH",
            "dtach": true,
            "enabled_filetypes": "all",
            "environment_vars": {"TERM": "xterm-256color"},
            "session_logging": true,
            "syslog_session_logging": false,
            "allow": false
        }
    },
    // "*" means "apply to all users" or "default"
    "user.upn=(my.email@gmail.com)": {
        "terminal": { // These settings apply to the "terminal" application
            "commands": {"SSH": {"command": "/usr/local/lib/python2.7/dist-packages/gateone-1.2.0-py2.7.egg/gateone/applications/terminal/plugins/ssh/scripts/ssh_connect.py -S '%SESSION_DIR%/%SESSION%/%SHORT_SOCKET%' --sshfp", "description": "Connect to hosts via SSH."}},
            "default_command": "SSH",
            "dtach": true,
            "enabled_filetypes": "all",
            "environment_vars": {"TERM": "xterm-256color"},
            "session_logging": true,
            "syslog_session_logging": false,
            "allow": true
        }
    }
}

// This is Gate One's Terminal application settings file.

{

// "*" means "apply to all users" or "default"

"*": {

"terminal": { // These settings apply to the "terminal" application

"commands": {"SSH": {"command": "/usr/local/lib/python2.7/dist-packages/gateone-1.2.0-py2.7.egg/gateone/applications/terminal/plugins/ssh/scripts/ssh_connect.py -S '%SESSION_DIR%/%SESSION%/%SHORT_SOCKET%' --sshfp -a 'oUserKnownHostsFile=\\\"%USERDIR%/%USER%/.ssh/known_hosts\\\"'", "description": "Connect to hosts via SSH."}},

"default_command": "SSH",

"dtach": true,

"enabled_filetypes": "all",

"environment_vars": {"TERM": "xterm-256color"},

"session_logging": true,

"syslog_session_logging": false,

"allow": false

}

// "*" means "apply to all users" or "default"

"user.upn=(my.email@gmail.com)": {

"terminal": { // These settings apply to the "terminal" application

"default_command": "SSH",

"dtach": true,

"enabled_filetypes": "all",

"environment_vars": {"TERM": "xterm-256color"},

"session_logging": true,

"syslog_session_logging": false,

"allow": true

}

Back in /etc/gateone/conf.d/10server.conf I added my external dns to the list of allowed origins and forwarded port 443 on my router to my Pi

Job done!

Blue Phone Box

A personal site of tech, games, rpg's, pi and stuff

Setting up web ssh on a Raspberry Pi