#69 Shorter or custom usernames for sftp access

[Anonymous]

Originally created by: jonas.ba...@gmail.com
Originally owned by: jonas.ba...@gmail.com

To whom is this feature relevant?
-sftp/sshfs users

Please provide a one line description of the feature:
-Enable sftp logins with shorter usernames than the 100+ char encoding of cert DN

How would the new feature work (appear in use)?
Users would be able to use e.g. just their email or maybe a custom string as username.

How would the new feature be implemented?
Add a cert_id field to the user object/dict in the sftp server and insert two entries for each user:
the usual one with the encoded cert as ID and a new one with just the custom username as ID. Both should have their cert_id field set to the real cert ID for mapping back to the user home. It is important that usernames remain unique because they are used as keys in the user map.

Please provide any additional information below.
Some sftp clients truncate the username after 100 characters rendering login impossible for long usernames.
Email addresses are already expected to be unique and should be valid as usernames at least with OpenSSH. Maybe we need to encode the '@' for those same clients. Otherwise we could allow arbitrary ascii-numerical usernames provided in user settings but then we need to enforce uniqueness.

[Anonymous]

Originally posted by: jonas.ba...@gmail.com

http://serverfault.com/questions/99160/special-characters-in-ssh-usernames
mentions @ validity.