[PR #597] [CLOSED] feat: add local portforwarding accesses #602

New issue

Closed

opened 2026-05-07 00:21:43 +02:00 by BreizhHardware · 0 comments

BreizhHardware commented 2026-05-07 00:21:43 +02:00

Owner

Copy link

📋 Pull Request Information

Original PR: https://github.com/ovh/the-bastion/pull/597
Author: @jon4hz
Created: 12/4/2025
Status: ❌ Closed

Base: master ← Head: feat-port-forwarding

---

📝 Commits (10+)

• 107a659 feat: add try-personal-keys policy for groups (#2)
• 2a60b3e feat: implement proxy jump for egress connections (#3)
• 8238cce ci: publish to ghcr
• d713c22 fix: return accountInfo if grace period is set (#5)
• 9742d85 fix: return booleans as 1 and 0 in the api (#6)
• ed01b33 chore: fix perlcritic warnings
• 66aa638 chore: perl tidy
• 03e435f chore: regenerate docs
• 77346ef feat(portforwarding): acl and random local port allocation
• ba48fa8 feat(portforwarding): implement all commands, access checks, logging and ssh flag parsing

📊 Changes

78 files changed (+4723 additions, -515 deletions)

View changed files

📝 .github/workflows/dockerhub.yml (+10 -6)
📝 bin/admin/osh-sync-watcher.sh (+1 -1)
📝 bin/admin/rename-account.sh (+6 -0)
📝 bin/helper/osh-accountAddGroupServer (+41 -20)
➕ bin/helper/osh-accountGenerateSshdConfig (+77 -0)
📝 bin/helper/osh-accountModifyPersonalAccess (+48 -9)
➕ bin/helper/osh-adminGenerateAllSshdConfigs (+146 -0)
📝 bin/helper/osh-groupAddServer (+42 -4)
➕ bin/helper/osh-groupGenerateSshdConfig (+119 -0)
📝 bin/helper/osh-groupModify (+28 -3)
➕ bin/plugin/admin/adminGenerateAllSshdConfigs (+73 -0)
📝 bin/plugin/group-aclkeeper/groupAddServer (+84 -34)
📝 bin/plugin/group-aclkeeper/groupAddServer.json (+16 -8)
📝 bin/plugin/group-aclkeeper/groupDelServer (+67 -19)
📝 bin/plugin/group-aclkeeper/groupDelServer.json (+12 -5)
📝 bin/plugin/group-gatekeeper/groupAddGuestAccess (+85 -37)
📝 bin/plugin/group-gatekeeper/groupAddGuestAccess.json (+9 -1)
📝 bin/plugin/group-gatekeeper/groupAddMember (+14 -0)
📝 bin/plugin/group-gatekeeper/groupDelGuestAccess (+79 -31)
📝 bin/plugin/group-gatekeeper/groupDelGuestAccess.json (+7 -1)

...and 58 more files

📄 Description

No description provided

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/ovh/the-bastion/pull/597 **Author:** [@jon4hz](https://github.com/jon4hz) **Created:** 12/4/2025 **Status:** ❌ Closed **Base:** `master` ← **Head:** `feat-port-forwarding` --- ### 📝 Commits (10+) - [`107a659`](https://github.com/ovh/the-bastion/commit/107a6592a1ef350edb69d949101f18865c32ea76) feat: add try-personal-keys policy for groups (#2) - [`2a60b3e`](https://github.com/ovh/the-bastion/commit/2a60b3e68ce5b6112d0a7a1065adddb40a2b9ab6) feat: implement proxy jump for egress connections (#3) - [`8238cce`](https://github.com/ovh/the-bastion/commit/8238ccedf632aa378849150ba5abd7a7d8a81a92) ci: publish to ghcr - [`d713c22`](https://github.com/ovh/the-bastion/commit/d713c224b13354daecaf6de3e707a41a0fd6c745) fix: return accountInfo if grace period is set (#5) - [`9742d85`](https://github.com/ovh/the-bastion/commit/9742d858269e3b49fe880353c5c59ff67fb6c0a6) fix: return booleans as 1 and 0 in the api (#6) - [`ed01b33`](https://github.com/ovh/the-bastion/commit/ed01b3321b1c59ca4b78d33529b76d500a04b191) chore: fix perlcritic warnings - [`66aa638`](https://github.com/ovh/the-bastion/commit/66aa63883ba87c6023d4f0b522b0ed03e0d8f02c) chore: perl tidy - [`03e435f`](https://github.com/ovh/the-bastion/commit/03e435f07a7a08040fe2256cd3e7ca2ea34d093c) chore: regenerate docs - [`77346ef`](https://github.com/ovh/the-bastion/commit/77346ef81967acd9943dd389d56cc01a5125139b) feat(portforwarding): acl and random local port allocation - [`ba48fa8`](https://github.com/ovh/the-bastion/commit/ba48fa8c909d64b3354c4be22768be238267bcac) feat(portforwarding): implement all commands, access checks, logging and ssh flag parsing ### 📊 Changes **78 files changed** (+4723 additions, -515 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/dockerhub.yml` (+10 -6) 📝 `bin/admin/osh-sync-watcher.sh` (+1 -1) 📝 `bin/admin/rename-account.sh` (+6 -0) 📝 `bin/helper/osh-accountAddGroupServer` (+41 -20) ➕ `bin/helper/osh-accountGenerateSshdConfig` (+77 -0) 📝 `bin/helper/osh-accountModifyPersonalAccess` (+48 -9) ➕ `bin/helper/osh-adminGenerateAllSshdConfigs` (+146 -0) 📝 `bin/helper/osh-groupAddServer` (+42 -4) ➕ `bin/helper/osh-groupGenerateSshdConfig` (+119 -0) 📝 `bin/helper/osh-groupModify` (+28 -3) ➕ `bin/plugin/admin/adminGenerateAllSshdConfigs` (+73 -0) 📝 `bin/plugin/group-aclkeeper/groupAddServer` (+84 -34) 📝 `bin/plugin/group-aclkeeper/groupAddServer.json` (+16 -8) 📝 `bin/plugin/group-aclkeeper/groupDelServer` (+67 -19) 📝 `bin/plugin/group-aclkeeper/groupDelServer.json` (+12 -5) 📝 `bin/plugin/group-gatekeeper/groupAddGuestAccess` (+85 -37) 📝 `bin/plugin/group-gatekeeper/groupAddGuestAccess.json` (+9 -1) 📝 `bin/plugin/group-gatekeeper/groupAddMember` (+14 -0) 📝 `bin/plugin/group-gatekeeper/groupDelGuestAccess` (+79 -31) 📝 `bin/plugin/group-gatekeeper/groupDelGuestAccess.json` (+7 -1) _...and 58 more files_ </details> ### 📄 Description _No description provided_ --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

BreizhHardware 2026-05-07 00:21:43 +02:00

• closed this issue
• added the
  pull-request
  label

BreizhHardware referenced this issue 2026-05-07 00:21:44 +02:00

[PR #602] [MERGED] enh: allow colon in remote user names #605

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

expifix

groupcreate_fix_uid

fix_group_gid_fast

gh-pages

clush

expiration

jsonvalidator

v3.23.01

v3.23.00

v3.22.00

v3.21.00

v3.20.00

v3.19.01

v3.19.00

v3.18.99-rc1

v3.18.00

v3.17.01

v3.17.00

v3.16.99-rc3

v3.16.99-rc2

v3.16.99-rc1

v3.16.01

v3.16.00

v3.15.00

v3.14.16

v3.14.15

v3.14.00

v3.13.01

v3.13.00

v3.12.00

v3.11.02

v3.11.01

v3.11.00

v3.10.00

v3.09.02

v3.09.00-really

v3.09.00

v3.09.00-rc3

v3.09.00-rc2

v3.09.00-rc1

v3.08.01

v3.08.00

v3.07.00

v3.06.00

v3.05.01

v3.05.00

v3.04.00

v3.03.99-rc2

v3.03.99-rc1

v3.03.01

v3.03.00

v3.02.00

v3.01.99-rc4

v3.01.99-rc3

v3.01.99-rc2

v3.01.99-rc1

v3.01.03

v3.01.02

v3.01.01

v3.01.00

v3.00.02

v3.00.01

v3.00.00

Labels

Clear labels   

answered

  

bug

  

documentation

  

enhancement

  

enhancement

  

feature

  

feature

  

kept-open-for-info

  

pull-request

Mirrored from GitHub Pull Request

  

question

No labels

answered

bug

documentation

enhancement

enhancement

feature

feature

kept-open-for-info

pull-request

question

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/the-bastion#602

No description provided.