Remove access manager (#470)

* remove access manager from code base * document new node ssh workflow * keep config backwards compatible * slow down link checking to prevent http 429 Signed-off-by: Fabian Kammel <fk@edgeless.systems>
2025-11-27 23:21:00 -05:00 · 2022-11-11 08:44:36 +01:00 · 2022-11-11 08:44:36 +01:00 · b92b3772ca
commit b92b3772ca
parent b0f4a09ebe
59 changed files with 251 additions and 2831 deletions
--- a/bootstrapper/internal/initserver/initserver.go
+++ b/bootstrapper/internal/initserver/initserver.go
@ -131,7 +131,6 @@ func (s *Server) Init(ctx context.Context, req *initproto.InitRequest) (*initpro
 		req.EnforceIdkeydigest,
 		s.issuerWrapper.IDKeyDigest(),
 		s.issuerWrapper.VMType() == vmtype.AzureCVM,
-		sshProtoKeysToMap(req.SshUserKeys),
 		req.HelmDeployments,
 		req.ConformanceMode,
 		s.log,
@ -199,14 +198,6 @@ func (i *IssuerWrapper) IDKeyDigest() []byte {
 	return i.idkeydigest
 }

-func sshProtoKeysToMap(keys []*initproto.SSHUserKey) map[string]string {
-	keyMap := make(map[string]string)
-	for _, key := range keys {
-		keyMap[key.Username] = key.PublicKey
-	}
-	return keyMap
-}
-
 func deriveMeasurementValues(masterSecret, hkdfSalt []byte) (salt, clusterID []byte, err error) {
 	salt, err = crypto.GenerateRandomBytes(crypto.RNGLengthDefault)
 	if err != nil {
@ -236,7 +227,6 @@ type ClusterInitializer interface {
 		enforceIDKeyDigest bool,
 		idKeyDigest []byte,
 		azureCVM bool,
-		sshUserKeys map[string]string,
 		helmDeployments []byte,
 		conformanceMode bool,
 		log *logger.Logger,