• This PR is from Cloudflare to the OpenPubkey linux foundation project. It open-sources OPK-SSH under Apache 2.0 license and moves it to the OpenPubkey project on github.
• OPK-SSH adds production-ready SSH in OpenPubkey, automated installation of the OPKSSH verifier, and better SSH configuration tools.
• During merge, it switched to use the new compact pktoken serialization format with a 2972-byte size for SSH cert with pktoken (compact) and 3861-byte size for standard JSON representation.
• The long-term goal is to split OPK-SSH into a separate project but not in this PR.
• This PR introduces a fakeop for integrations tests to fix specific issues.
• It doesn't squash git commits to maintain history and authorship.
• TODOs include importing OPK-SSH while preserving git history, integrating into one go project, getting project building and unittests passing, figuring out context canceling bug, adding copyright header, removing duplicated code, using improved compact pktoken format, removing ConfigAdapter, finalizing directory structure, manual CLI test, getting docker test passing, switching google clientID, and fixing error message.
• Deferred TODOs include integrating refreshed token exp policy, Config file OpenID Provider, getting working with WebChooser and Azure, and merging example/opkssh and opkssh.
• Tests include testing on windows11 to ubuntu and OSX15.3 to ubuntu, with integration tests covering linux to linux.