#!/bin/sh

cat >&2 <<-EOF
*
* 1) You need to unlock the git account to allow incoming ssh connection:
*   # \`echo "git:*" | chpasswd -e\`
*
* 2) Set OpenSSH server to look up users' public keys from knot,
* add a file to /etc/ssh/sshd_config.d/knot-git-keys.conf and reload sshd:
*
* Match User git
*     PasswordAuthentication no
*     AuthorizedKeysCommand /usr/bin/knot-git keys -o authorized-keys --log-path /var/lib/git/knot-keys.log --git-dir /var/lib/git/repositories
*     AuthorizedKeysCommandUser nobody
*
EOF

exit 0
