[PR #256] [MERGED] new access option: --force-password <HASH>, to only try one specific password #349

New issue

Closed

opened 2026-05-07 00:20:28 +02:00 by BreizhHardware · 0 comments

BreizhHardware commented

2026-05-07 00:20:28 +02:00

Owner

📋 Pull Request Information

Original PR: https://github.com/ovh/the-bastion/pull/256
Author: @madchrist
Created: 10/26/2021
Status: ✅ Merged
Merged: 12/9/2021
Merged by: @speed47

Base: master ← Head: force-password

📝 Commits (4)

042e55c new access option: --force-password , to only try one specific password
59861ed update of --force-password: guest support, autocompletion, new tests, code cleanups
51cdaf4 update of --force-password: removed guest support
c87ee4c update of --force-password: code style cleanup

📊 Changes

18 files changed (+544 additions, -146 deletions)

View changed files

📝 bin/helper/osh-accountModifyPersonalAccess (+21 -19)
📝 bin/helper/osh-groupAddServer (+21 -18)
📝 bin/plugin/group-aclkeeper/groupAddServer (+27 -18)
📝 bin/plugin/group-aclkeeper/groupAddServer.json (+4 -1)
📝 bin/plugin/restricted/accountAddPersonalAccess (+17 -8)
📝 bin/plugin/restricted/accountAddPersonalAccess.json (+9 -6)
📝 bin/plugin/restricted/selfAddPersonalAccess (+18 -9)
📝 bin/plugin/restricted/selfAddPersonalAccess.json (+9 -6)
📝 bin/shell/autologin (+18 -11)
📝 bin/shell/osh.pl (+62 -13)
📝 doc/sphinx/plugins/group-aclkeeper/groupAddServer.rst (+4 -0)
📝 doc/sphinx/plugins/restricted/accountAddPersonalAccess.rst (+4 -0)
📝 doc/sphinx/plugins/restricted/selfAddPersonalAccess.rst (+4 -0)
📝 lib/perl/OVH/Bastion.pm (+2 -1)
📝 lib/perl/OVH/Bastion/allowdeny.inc (+40 -24)
📝 lib/perl/OVH/Bastion/allowkeeper.inc (+24 -12)
📝 lib/perl/OVH/Bastion/password.inc (+20 -0)
➕ tests/functional/tests.d/341-selfaccesses-force-password.sh (+240 -0)

📄 Description

This is like --force-key, but for passwords

When this option is set, instead of autologin trying all the passwords until one works, only the one matching the hash is tried
If no password matches the hash then it aborts

This works for both personal accesses and group accesses

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/ovh/the-bastion/pull/256 **Author:** [@madchrist](https://github.com/madchrist) **Created:** 10/26/2021 **Status:** ✅ Merged **Merged:** 12/9/2021 **Merged by:** [@speed47](https://github.com/speed47) **Base:** `master` ← **Head:** `force-password` --- ### 📝 Commits (4) - [`042e55c`](https://github.com/ovh/the-bastion/commit/042e55c177d85e9060df3fc9d27a94c89071de4a) new access option: --force-password <HASH>, to only try one specific password - [`59861ed`](https://github.com/ovh/the-bastion/commit/59861ed608db45a1efd0ec36439033f7fc4dd4b3) update of --force-password: guest support, autocompletion, new tests, code cleanups - [`51cdaf4`](https://github.com/ovh/the-bastion/commit/51cdaf4236d5c7cee8b7eefb43c4b90032854930) update of --force-password: removed guest support - [`c87ee4c`](https://github.com/ovh/the-bastion/commit/c87ee4c1c849d9e6b4091da2eff14f2aacf3ff86) update of --force-password: code style cleanup ### 📊 Changes **18 files changed** (+544 additions, -146 deletions) <details> <summary>View changed files</summary> 📝 `bin/helper/osh-accountModifyPersonalAccess` (+21 -19) 📝 `bin/helper/osh-groupAddServer` (+21 -18) 📝 `bin/plugin/group-aclkeeper/groupAddServer` (+27 -18) 📝 `bin/plugin/group-aclkeeper/groupAddServer.json` (+4 -1) 📝 `bin/plugin/restricted/accountAddPersonalAccess` (+17 -8) 📝 `bin/plugin/restricted/accountAddPersonalAccess.json` (+9 -6) 📝 `bin/plugin/restricted/selfAddPersonalAccess` (+18 -9) 📝 `bin/plugin/restricted/selfAddPersonalAccess.json` (+9 -6) 📝 `bin/shell/autologin` (+18 -11) 📝 `bin/shell/osh.pl` (+62 -13) 📝 `doc/sphinx/plugins/group-aclkeeper/groupAddServer.rst` (+4 -0) 📝 `doc/sphinx/plugins/restricted/accountAddPersonalAccess.rst` (+4 -0) 📝 `doc/sphinx/plugins/restricted/selfAddPersonalAccess.rst` (+4 -0) 📝 `lib/perl/OVH/Bastion.pm` (+2 -1) 📝 `lib/perl/OVH/Bastion/allowdeny.inc` (+40 -24) 📝 `lib/perl/OVH/Bastion/allowkeeper.inc` (+24 -12) 📝 `lib/perl/OVH/Bastion/password.inc` (+20 -0) ➕ `tests/functional/tests.d/341-selfaccesses-force-password.sh` (+240 -0) </details> ### 📄 Description This is like --force-key, but for passwords When this option is set, instead of autologin trying all the passwords until one works, only the one matching the hash is tried If no password matches the hash then it aborts This works for both personal accesses and group accesses --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>