{"id":13815205,"url":"https://github.com/geofront-auth/geofront","last_synced_at":"2026-03-10T22:38:09.190Z","repository":{"id":15531144,"uuid":"18265739","full_name":"geofront-auth/geofront","owner":"geofront-auth","description":"Simple SSH key management service","archived":false,"fork":false,"pushed_at":"2019-03-13T12:11:04.000Z","size":440,"stargazers_count":347,"open_issues_count":11,"forks_count":37,"subscribers_count":41,"default_branch":"master","last_synced_at":"2025-12-21T02:55:11.546Z","etag":null,"topics":["geofront","python","ssh","ssh-key"],"latest_commit_sha":null,"homepage":"https://geofront.readthedocs.io/","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"agpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/geofront-auth.png","metadata":{"files":{"readme":"README.rst","changelog":null,"contributing":"CONTRIBUTING.rst","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2014-03-30T14:34:46.000Z","updated_at":"2024-08-20T02:39:49.000Z","dependencies_parsed_at":"2022-08-27T00:11:59.430Z","dependency_job_id":null,"html_url":"https://github.com/geofront-auth/geofront","commit_stats":null,"previous_names":["spoqa/geofront"],"tags_count":9,"template":false,"template_full_name":null,"purl":"pkg:github/geofront-auth/geofront","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/geofront-auth%2Fgeofront","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/geofront-auth%2Fgeofront/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/geofront-auth%2Fgeofront/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/geofront-auth%2Fgeofront/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/geofront-auth","download_url":"https://codeload.github.com/geofront-auth/geofront/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/geofront-auth%2Fgeofront/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":30359333,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-10T21:41:54.280Z","status":"ssl_error","status_checked_at":"2026-03-10T21:40:59.357Z","response_time":106,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["geofront","python","ssh","ssh-key"],"created_at":"2024-08-04T04:03:08.055Z","updated_at":"2026-03-10T22:38:09.163Z","avatar_url":"https://github.com/geofront-auth.png","language":"Python","readme":"Geofront\n========\n\n.. image:: https://badges.gitter.im/spoqa/geofront.svg\n   :alt: Join the chat at https://gitter.im/spoqa/geofront\n   :target: https://gitter.im/spoqa/geofront?utm_source=badge\u0026utm_medium=badge\u0026utm_campaign=pr-badge\u0026utm_content=badge\n\n.. image:: https://badge.fury.io/py/Geofront.svg?\n   :target: https://pypi.python.org/pypi/Geofront\n   :alt: Latest PyPI version\n\n.. image:: https://readthedocs.org/projects/geofront/badge/\n   :target: https://geofront.readthedocs.io/\n   :alt: Read the Docs\n\n.. image:: https://travis-ci.org/spoqa/geofront.svg?branch=master\n   :target: https://travis-ci.org/spoqa/geofront\n\n.. image:: https://codecov.io/gh/spoqa/geofront/branch/master/graph/badge.svg\n   :target: https://codecov.io/gh/spoqa/geofront\n\nGeofront is a simple SSH key management server.  It helps to maintain servers\nto SSH, and ``authorized_keys`` list for them.  `Read the docs`__ for more\ndetails.\n\n__ https://geofront.readthedocs.io/\n\n\nSituations\n----------\n\n- If the team maintains ``authorized_keys`` list of all servers owned\n  by the team:\n\n  - When someone joins or leaves the team, all lists have to be updated.\n  - *Who* do update the list?\n\n- If the team maintains shared private keys to SSH servers:\n\n  - These keys have to be expired when someone leaves the team.\n  - There should be a shared storage for the keys.  (Dropbox?  srsly?)\n  - Everyone might need to add ``-i`` option to use team's own key.\n\n- The above ways are both hard to scale servers.  Imagine your team\n  has more than 10 servers.\n\n\nIdea\n----\n\n1. Geofront has its own *master key*.  The private key is never shared.\n   The master key is periodically and automatically regened.\n2. Every server has a simple ``authorized_keys`` list, which authorizes\n   only the master key.\n3. Every member registers their own public key to Geofront.\n   The registration can be omitted if the key storage is GitHub, Bitbucket,\n   etc.\n4. A member requests to SSH a server, then Geofront *temporarily*\n   (about 30 seconds, or a minute) adds their public key to ``authorized_keys``\n   of the requested server.\n\n\nPrerequisites\n-------------\n\n- Linux, BSD, Mac\n- Python 3.3+\n- Third-party packages (automatically installed together)\n\n  - Paramiko_ 2.0.1+ (which requires cryptography_)\n  - Werkzeug_ 0.11+\n  - Flask_ 0.10.1+\n  - Flask-Sockets_ 0.2.1+\n  - gevent_ 1.1.2+\n  - OAuthLib_ 1.1.1+\n  - Apache Libcloud_ 1.1.0+\n  - singledispatch_ (only if Python is older than 3.4)\n  - typing_ (only if Python is older than 3.5)\n  - typeguard_ 2.1.1+\n\n.. _Paramiko: http://www.paramiko.org/\n.. _cryptography: https://cryptography.io/\n.. _Werkzeug: http://werkzeug.pocoo.org/\n.. _Flask: http://flask.pocoo.org/\n.. _Flask-Sockets: https://github.com/kennethreitz/flask-sockets\n.. _gevent: http://www.gevent.org/\n.. _OAuthLib: https://github.com/idan/oauthlib\n.. _Libcloud: http://libcloud.apache.org/\n.. _singledispatch: https://pypi.python.org/pypi/singledispatch\n.. _typing: https://pypi.python.org/pypi/typing\n.. _typeguard: https://github.com/agronholm/typeguard\n\n\nAuthor and license\n------------------\n\nGeofront is written by `Hong Minhee`__, maintained by Spoqa_, and licensed\nunder AGPL3_ or later.  You can find the source code from GitHub__:\n\n.. code-block:: console\n\n   $ git clone git://github.com/spoqa/geofront.git\n\n\n__ https://hongminhee.org/\n.. _Spoqa: http://www.spoqa.com/\n.. _AGPL3: http://www.gnu.org/licenses/agpl-3.0.html\n__ https://github.com/spoqa/geofront\n\n\nMissing features\n----------------\n\n- Google Apps backend [`#3`_]\n- Fabric_ integration\n- PuTTY_ integration\n\n(Contributions would be appreciated!)\n\n.. _Fabric: http://www.fabfile.org/\n.. _PuTTY: http://www.chiark.greenend.org.uk/~sgtatham/putty/\n.. _#3: https://github.com/spoqa/geofront/issues/3\n","funding_links":[],"categories":["Python"],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgeofront-auth%2Fgeofront","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fgeofront-auth%2Fgeofront","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgeofront-auth%2Fgeofront/lists"}