diff --git a/agent/utils/cloud_storage/client/sftp.go b/agent/utils/cloud_storage/client/sftp.go
index 3a79d9e9c..d47da26a2 100644
--- a/agent/utils/cloud_storage/client/sftp.go
+++ b/agent/utils/cloud_storage/client/sftp.go
@@ -25,11 +25,28 @@ func NewSftpClient(vars map[string]interface{}) (*sftpClient, error) {
if len(port) == 0 {
global.LOG.Errorf("load param port from vars failed, err: not exist!")
}
- password := loadParamFromVars("password", vars)
+ authMode := loadParamFromVars("authMode", vars)
+ passPhrase := loadParamFromVars("passPhrase", vars)
username := loadParamFromVars("username", vars)
+ password := loadParamFromVars("password", vars)
bucket := loadParamFromVars("bucket", vars)
- auth := []ssh.AuthMethod{ssh.Password(password)}
+ var auth []ssh.AuthMethod
+ if authMode == "key" {
+ var signer ssh.Signer
+ var err error
+ if len(passPhrase) != 0 {
+ signer, err = ssh.ParsePrivateKeyWithPassphrase([]byte(password), []byte(passPhrase))
+ } else {
+ signer, err = ssh.ParsePrivateKey([]byte(password))
+ }
+ if err != nil {
+ return nil, err
+ }
+ auth = []ssh.AuthMethod{ssh.PublicKeys(signer)}
+ } else {
+ auth = []ssh.AuthMethod{ssh.Password(password)}
+ }
clientConfig := &ssh.ClientConfig{
User: username,
Auth: auth,
diff --git a/core/app/service/backup.go b/core/app/service/backup.go
index 987899f44..34fea463e 100644
--- a/core/app/service/backup.go
+++ b/core/app/service/backup.go
@@ -142,6 +142,15 @@ func (u *BackupService) SearchWithPage(req dto.SearchPageWithType) (int64, inter
if !item.RememberAuth {
item.AccessKey = ""
item.Credential = ""
+ if account.Type == constant.Sftp {
+ varMap := make(map[string]interface{})
+ if err := json.Unmarshal([]byte(item.Vars), &varMap); err != nil {
+ continue
+ }
+ delete(varMap, "passPhrase")
+ itemVars, _ := json.Marshal(varMap)
+ item.Vars = string(itemVars)
+ }
} else {
item.AccessKey = base64.StdEncoding.EncodeToString([]byte(item.AccessKey))
item.Credential = base64.StdEncoding.EncodeToString([]byte(item.Credential))
diff --git a/core/utils/cloud_storage/client/sftp.go b/core/utils/cloud_storage/client/sftp.go
index a9f552963..b9e1defd3 100644
--- a/core/utils/cloud_storage/client/sftp.go
+++ b/core/utils/cloud_storage/client/sftp.go
@@ -26,17 +26,23 @@ func NewSftpClient(vars map[string]interface{}) (*sftpClient, error) {
global.LOG.Errorf("load param port from vars failed, err: not exist!")
}
authMode := loadParamFromVars("authMode", vars)
- privateKey := loadParamFromVars("privateKey", vars)
+ passPhrase := loadParamFromVars("passPhrase", vars)
password := loadParamFromVars("password", vars)
bucket := loadParamFromVars("bucket", vars)
var auth []ssh.AuthMethod
if authMode == "key" {
- itemPrivateKey, err := ssh.ParsePrivateKey([]byte(privateKey))
+ var signer ssh.Signer
+ var err error
+ if len(passPhrase) != 0 {
+ signer, err = ssh.ParsePrivateKeyWithPassphrase([]byte(password), []byte(passPhrase))
+ } else {
+ signer, err = ssh.ParsePrivateKey([]byte(password))
+ }
if err != nil {
return nil, err
}
- auth = []ssh.AuthMethod{ssh.PublicKeys(itemPrivateKey)}
+ auth = []ssh.AuthMethod{ssh.PublicKeys(signer)}
} else {
auth = []ssh.AuthMethod{ssh.Password(password)}
}
diff --git a/frontend/src/views/setting/backup-account/operate/index.vue b/frontend/src/views/setting/backup-account/operate/index.vue
index 3d9a71cba..d67d51829 100644
--- a/frontend/src/views/setting/backup-account/operate/index.vue
+++ b/frontend/src/views/setting/backup-account/operate/index.vue
@@ -55,7 +55,34 @@
-
+
+
+
+
+ {{ $t('terminal.passwordMode') }}
+ {{ $t('terminal.keyMode') }}
+
+
+
+
+
+
+
+
+
+
+
+
@@ -437,6 +464,7 @@ const changeType = async () => {
}
case 'SFTP':
dialogData.value.rowData.varsJson['port'] = 22;
+ dialogData.value.rowData.varsJson['authMode'] = 'password';
}
};
const changeFrom = () => {