#20 - fix location of ssh authorized keys

Author: ivan-khvostishkov

sagemaker_ssh_helper/sm-connect-ssh-proxy

@@ -36,10 +36,10 @@ aws --no-cli-pager ssm send-command \
     --parameters "commands=[
         'id',
         'aws sts get-caller-identity',
-        'mkdir -p /root/.ssh/authorized_keys.d/',
-        'aws s3 cp --recursive ${SSH_AUTHORIZED_KEYS} /root/.ssh/authorized_keys.d/',
-        'cat /root/.ssh/authorized_keys.d/* > /root/.ssh/authorized_keys',
-        'cat /root/.ssh/authorized_keys'
+        'mkdir -p /etc/ssh/authorized_keys.d/',
+        'aws s3 cp --recursive ${SSH_AUTHORIZED_KEYS} /etc/ssh/authorized_keys.d/',
+        'cat /etc/ssh/authorized_keys.d/* > /etc/ssh/authorized_keys',
+        'cat /etc/ssh/authorized_keys'
       ]" \
     --no-paginate --output text
 

sagemaker_ssh_helper/sm-ssh-ide

@@ -63,7 +63,11 @@ EOF
     echo "startxfce4" > ~/.xsession
     chmod +x ~/.xsession
 
-    sed -i~~ -e 's/^\#ClientAliveInterval 0$/ClientAliveInterval 15/' /etc/ssh/sshd_config
+    sed -i -e 's~^ClientAliveInterval~#ClientAliveInterval~' /etc/ssh/sshd_config
+    echo "ClientAliveInterval 15" >> /etc/ssh/sshd_config
+
+    sed -i -e 's~^AuthorizedKeysFile~#AuthorizedKeysFile~' /etc/ssh/sshd_config
+    echo "AuthorizedKeysFile /etc/ssh/authorized_keys" >> /etc/ssh/sshd_config
 
 elif [[ "$1" == "set-jb-license-server" ]]; then
 

sagemaker_ssh_helper/sm-start-ssh

@@ -34,6 +34,9 @@ ps wwwe -p 1 | tail -1
 sed -i -e 's~^PermitRootLogin~#PermitRootLogin~' /etc/ssh/sshd_config
 echo PermitRootLogin yes >> /etc/ssh/sshd_config
 
+sed -i -e 's~^AuthorizedKeysFile~#AuthorizedKeysFile~' /etc/ssh/sshd_config
+echo "AuthorizedKeysFile /etc/ssh/authorized_keys" >> /etc/ssh/sshd_config
+
 # Start SSH server
 if _is_centos; then
   # NOTE: systemctl will not work in CentOS SageMaker container (e.g. Spark processing) because lack of