I want to access from one user/client combination (say, user1@cl) to a user/server combination (say, user2@srv) via ssh, with two different types of Access:
Access type #1 would be restricted to interactions with a bazaar repository. For this, I added a line (#1) in
~user2/.ssh/authorized_keyslikecommand="bzr serve --inet --directory=/repodir --allow-writes",no-port-forwarding,no-X11-forwarding,no-agent-forwarding ssh-rsa ... user1@clAccess type #2 would be a login shell. For this, I added a "usual" line (#2) in
~user2/.ssh/authorized_keyslikessh-rsa ... user1@cl
As I understand, and as I tested, both lines cannot be used simultaneously.
I.e., if line #1 appears first in ~user2/.ssh/authorized_keys, then I would be able to interact with the bzr repo, but I will not be able to do
[user1@cl]$ ssh user2@srv
If line #2 appears first in ~user2/.ssh/authorized_keys, then I would be able to do ssh, but any bzr operation gives
bzr: ERROR: Not a branch ...
Is there any way to work this out?
Related posts (but not addressing my case, as I understand):
https://stackoverflow.com/questions/2419566/best-way-to-use-multiple-ssh-private-keys-on-one-client
What options can be put into a SSH authorized_keys file?
SSH authorized_keys command option: multiple commands?
https://askubuntu.com/questions/1962/how-can-multiple-private-keys-be-used-with-ssh
PS: This is also posted in https://askubuntu.com/questions/949470/multiple-ssh-access-types-from-a-given-user1-client-to-the-same-user2-server. I wouldn´t be sure which is the most appropriate, since the question does not pertain to Ubuntu exclusively (perhaps Linux might be a good target).
