Oneterm Save

Provide secure access and control over all infrastructure

Project README

OneTerm

OneTerm Bastion Host, based on the 4A concept, i.e., Authentication, Authorization, Account, and Audit, is designed and developed.

Main use: It is mainly used for products that enhance IT internal control and compliance security by implementing control and audit of IT personnel's operating behaviors in enterprises.

Main functions: role management, authorization approval, resource access control, session audit, etc.

English / 中文

Product document：https://veops.cn/docs/
Preview online: OneTerm
- username: demo or admin
- password: 123456

ATTENTION: branch main may be unstable as the result of continued development, please pull code from release or deploy via docker image

🚀Install

docker-compose

git clone https://github.com/veops/oneterm.git
cd oneterm
docker-compose up -d

✅ Validation

View: http://127.0.0.1:8000
username: admin
password: 123456

SSH

View

Example GIF

ssh -p12229 [email protected] # Note that the port, user, and address need to be replaced with your current environment

Terminal passwordless login is designed for enhanced security and convenience.

Generate and retrieve the public key, get the MAC address

ssh-keygen -t ed25519 # Generate the key following the prompts
cat /root/.ssh/id_ed25519.pub # Copy the public key. The public key address is obtained from the generation process as shown in the previous step
ifconfig | grep -B1 "xxx.xxx.xxx.xxx" | awk '/ether/{print $2}' # Get the MAC address, replace xxx.xxx.xxx.xxx with your local IP

Place the public key and MAC on the platform

ssh oneterm

To achieve this effect, you can configure as follows:

Create the ssh config file

touch ~/.ssh/config

Add the following content to ~/.ssh/config

Host oneterm
    HostName 127.0.0.1 # Replace with the address of your oneterm's ssh server
    Port 12229 # Replace with the port of your oneterm's ssh server
    User admin # Replace with your platform user on oneterm

VNC/RDP

🎯TODO

The asset list is associated with the CMDB authorization service tree.
The web terminal page supports multiple sessions with tabs, etc.

📚Docs

doc link：https://veops.cn/docs/docs/oneterm/onterm_design

🔗Releated Projects

go-ansiterm：Linux terminal emulator

🤝Community

Welcome to follow our WeChat official account and join our group channels

Wechat Official Account: 维易科技OneOps

Open Source Agenda is not affiliated with "Oneterm" Project. README Source: veops/oneterm

Stars

231

Open Issues

Last Commit

1 week ago

Repository

veops/oneterm

License

AGPL-3.0

Homepage

https://term.veops.cn/oneterm

Open Source Agenda Badge

<a href="https://www.opensourceagenda.com/projects/oneterm"><img src="https://www.opensourceagenda.com/projects/oneterm/reviews/badge.svg" alt="Open Source Agenda"></a>

Submit Review Review Your Favorite Project

Submit Resource Articles, Courses, Videos

Submit Article Submit a post to our blog