webssh/README.md

## WebSSH

[![Build Status](https://travis-ci.org/huashengdun/webssh.svg?branch=master)](https://travis-ci.org/huashengdun/webssh)
[![codecov](https://codecov.io/gh/huashengdun/webssh/branch/master/graph/badge.svg)](https://codecov.io/gh/huashengdun/webssh)
![PyPI - Python Version](https://img.shields.io/pypi/pyversions/webssh.svg)
![PyPI](https://img.shields.io/pypi/v/webssh.svg)


## Introduction

A simple web application to be used as an ssh client to connect to your ssh servers. It is written in Python, base on tornado and paramiko.
```
+---------+     http     +--------+    ssh    +-----------+                         
| browser | <==========> | webssh | <=======> | ssh server|
+---------+   websocket  +--------+    ssh    +-----------+
```

## Features

* SSH password authentication supported, including empty password.
* SSH public-key authentication supported, including DSA RSA ECDSA Ed25519 keys.
* Encrypted keys supported.
* Fullscreen terminal supported.
* Terminal window resizable.
* Auto detect the ssh server's default encoding.


## Preview

![Login](https://github.com/huashengdun/webssh/raw/master/preview/login.png)
![Terminal](https://github.com/huashengdun/webssh/raw/master/preview/terminal.png)


### Requirement

* Python 2.7/3.4+


### Instructions

```
pip install webssh
wssh
```

### Options

```
# listen address and port
wssh --address='0.0.0.0' --port=8000

# missing host key policy
wssh --policy=reject

# logging level
wssh --logging=debug

# log to file
wssh --log-file-prefix=main.log

# more options
wssh --help
```

### Tests

Use unittest to run all tests
```
python -m unittest discover tests
```

Use pytest to run all tests
```
python -m pytest tests
```

### An example of config  for running this app behind an Nginx server

```
location / {
    proxy_pass http://127.0.0.1:8888;
    proxy_http_version 1.1;
    proxy_read_timeout 300;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_set_header Host $http_host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Real-PORT $remote_port;
}
```

## Tips

* Try to use Nginx as a front web server (see config example above) and enable SSL, this will prevent your ssh credentials from being uncovered. Also afterwards the communication between your browser and the web server will be encrypted as they use secured websockets.
* Try to use reject policy as the missing host key policy along with your verified known_hosts, this will prevent man-in-the-middle attacks. The idea is that it checks the system host keys file("~/.ssh/known_hosts") and the application host keys file("./known_hosts") in order, if the ssh server's hostname is not found or the key is not matched, the connection will be aborted.
Initialize 7 years ago			`## WebSSH`
Updated README 6 years ago
Prepare to write unit tests 7 years ago			`[![Build Status](https://travis-ci.org/huashengdun/webssh.svg?branch=master)](https://travis-ci.org/huashengdun/webssh)`
Updated README.md 7 years ago			`[![codecov](https://codecov.io/gh/huashengdun/webssh/branch/master/graph/badge.svg)](https://codecov.io/gh/huashengdun/webssh)`
Updated README 7 years ago			`![PyPI - Python Version](https://img.shields.io/pypi/pyversions/webssh.svg)`
			`![PyPI](https://img.shields.io/pypi/v/webssh.svg)`
Prepare to write unit tests 7 years ago
Updated README 6 years ago
			`## Introduction`

Prepare to write unit tests 7 years ago			`A simple web application to be used as an ssh client to connect to your ssh servers. It is written in Python, base on tornado and paramiko.`
Updated README 6 years ago			```
			`+---------+ http +--------+ ssh +-----------+`
			`\| browser \| <==========> \| webssh \| <=======> \| ssh server\|`
			`+---------+ websocket +--------+ ssh +-----------+`
			```
Initialize 7 years ago
Updated README 6 years ago			`## Features`
Initialize 7 years ago
Updated README.md 7 years ago			`* SSH password authentication supported, including empty password.`
			`* SSH public-key authentication supported, including DSA RSA ECDSA Ed25519 keys.`
			`* Encrypted keys supported.`
Updated README.md 7 years ago			`* Fullscreen terminal supported.`
Updated README.md 7 years ago			`* Terminal window resizable.`
Updated README 6 years ago			`* Auto detect the ssh server's default encoding.`


			`## Preview`

			`![Login](https://github.com/huashengdun/webssh/raw/master/preview/login.png)`
			`![Terminal](https://github.com/huashengdun/webssh/raw/master/preview/terminal.png)`


			`### Requirement`

			`* Python 2.7/3.4+`

Updated README.md 7 years ago
Updated README.md 7 years ago			`### Instructions`
Updated README 6 years ago
Initialize 7 years ago			```
Added README.rst 7 years ago			`pip install webssh`
Added setup.py setup.cfg 7 years ago			`wssh`
Initialize 7 years ago			```

Updated README.md 7 years ago			`### Options`
Updated README 6 years ago
Initialize 7 years ago			```
Updated version 6 years ago			`# listen address and port`
Added setup.py setup.cfg 7 years ago			`wssh --address='0.0.0.0' --port=8000`
Added running examples 7 years ago
Updated version 6 years ago			`# missing host key policy`
Added setup.py setup.cfg 7 years ago			`wssh --policy=reject`
Updated README.md 7 years ago
Updated version 6 years ago			`# logging level`
Added setup.py setup.cfg 7 years ago			`wssh --logging=debug`
Updated README.md 7 years ago
Updated README.md 7 years ago			`# log to file`
Added setup.py setup.cfg 7 years ago			`wssh --log-file-prefix=main.log`
Initialize 7 years ago
Updated README.md 7 years ago			`# more options`
Added setup.py setup.cfg 7 years ago			`wssh --help`
Updated README 6 years ago			```

			`### Tests`

Updated README 6 years ago			`Use unittest to run all tests`
Updated README 6 years ago			```
			`python -m unittest discover tests`
			```

Updated README 6 years ago			`Use pytest to run all tests`
Updated README 6 years ago			```
			`python -m pytest tests`
			```

			`### An example of config for running this app behind an Nginx server`
Modified README.md 7 years ago
Modified README.md 7 years ago			```
Prepare to write unit tests 7 years ago			`location / {`
Modified README.md 7 years ago			`proxy_pass http://127.0.0.1:8888;`
			`proxy_http_version 1.1;`
			`proxy_read_timeout 300;`
			`proxy_set_header Upgrade $http_upgrade;`
			`proxy_set_header Connection "upgrade";`
Updated nginx config 7 years ago			`proxy_set_header Host $http_host;`
Modified README.md 7 years ago			`proxy_set_header X-Real-IP $remote_addr;`
			`proxy_set_header X-Real-PORT $remote_port;`
Prepare to write unit tests 7 years ago			`}`
Added tips 7 years ago			```

Updated README 6 years ago			`## Tips`

Modified README.md 7 years ago			`* Try to use Nginx as a front web server (see config example above) and enable SSL, this will prevent your ssh credentials from being uncovered. Also afterwards the communication between your browser and the web server will be encrypted as they use secured websockets.`
Changed default policy to warning policy 7 years ago			`* Try to use reject policy as the missing host key policy along with your verified known_hosts, this will prevent man-in-the-middle attacks. The idea is that it checks the system host keys file("~/.ssh/known_hosts") and the application host keys file("./known_hosts") in order, if the ssh server's hostname is not found or the key is not matched, the connection will be aborted.`