Sample code for 30+ languages & platforms
Lianja

SSH Auth Failure Reason (AuthenticatePwPk)

See more SSH Examples

This example demonstrates how to determine the failure reason for the case where both a password and private key are required for authentication. If authentication fails, was it because of an invalid private key, or an invalid password?

Chilkat Lianja Downloads

Lianja
llSuccess = .F.

// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// Load a private key to be used for SSH authentication.
loKey = createobject("CkSshKey")
loKey.Password = "key_password"

llSuccess = loKey.FromOpenSshPrivateKey(loKey.LoadText("qa_data/my_private_key_file"))
if (llSuccess = .F.) then
    ? loKey.LastErrorText
    release loKey
    return
endif

loSsh = createobject("CkSsh")

llSuccess = loSsh.Connect("ssh.example.com",22)
if (llSuccess = .F.) then
    ? loSsh.LastErrorText
    release loKey
    release loSsh
    return
endif

// Authenticate using both a password and private key.
llSuccess = loSsh.AuthenticatePwPk("myLogin","myPassword",loKey)
if (llSuccess = .T.) then
    ? "Authentication is successful!"
    release loKey
    release loSsh
    return
endif

// If we get here, it means the authentication failed.
// Examine the last JSON data to get information..

loJson = createobject("CkJsonObject")
loSsh.GetLastJsonData(loJson)

loJson.EmitCompact = .F.

// This is the JSON if the key is correct, but the password is incorrect:

// {
//   "public_key_type": "rsa",
//   "partialAuthResult": "publickey success. continue to authenticate with password...",
//   "authResult": "failed",
//   "authFailReason": "Password is incorrect"
// }

// This is the JSON if the key is incorrect.  We won't know if the password is also incorrect until
// the key is made correct so that authentication proceeds to check the password.

// {
//   "public_key_type": "rsa",
//   "authResult": "failed",
//   "authFailReason": "Key is incorrect"
// }

// To get the authResult anbd authFailReason:
? "authResult: " + loJson.StringOf("authResult")
? "authFailReason: " + loJson.StringOf("authFailReason")


release loKey
release loSsh
release loJson