From a42ccd2d165c4872962b591280198acb77d7a7ca Mon Sep 17 00:00:00 2001
From: Greg Alexander <gitgreg@galexander.org>
Date: Sun, 16 Oct 2016 19:12:28 -0400
Subject: [PATCH] update document for single use passwords

---
 doc/index.html          | 34 ++++++++++++++++++-------------
 res/layout/authkeys.xml | 45 -----------------------------------------
 2 files changed, 20 insertions(+), 59 deletions(-)
 delete mode 100644 res/layout/authkeys.xml

diff --git a/doc/index.html b/doc/index.html
index 2296d0a..40ad1a4 100644
--- a/doc/index.html
+++ b/doc/index.html
@@ -12,34 +12,38 @@ pre {
 
 <p>SimpleSSHD is an SSH2 server based on dropbear that supports scp,
 sftp, and rsync.  It only supports public-key based authentication (no
-password/interactive auth).  It does not use root, which means it must
-listen on a port over 1024 (defaults to port 2222).</p>
+password/interactive auth except for bootstrapping).  It does not use
+root, which means it must listen on a port over 1024 (defaults to port
+2222).</p>
 
 <h2>Quick start</h2>
 
 <ul>
 <li> Install SimpleSSHD.
-<li> Either:
-<ul>
-<li> Go to SimpleSSHD -> Menu (upper right) -> Authorized Keys, and
-either cut and paste an SSH public key or "Fetch" one via HTTP.
-<li> OR: Make a directory <tt>/sdcard/ssh</tt>, and put an
-<tt>authorized_keys</tt> file in that directory.
-</ul>
 <li> On any computer which will connect to your Android device, set the
-port to 2222. With OpenSSH, this can be done by putting these lines in
+port to 2222.  With OpenSSH, this can be done by putting these lines in
 <tt>~/.ssh/config</tt>:
 <pre>
 Host myphone
 Port 2222
 </pre>
-<li> Launch SimpleSSHD, and in Settings enable "Start on Boot", and
+<li> Launch SimpleSSHD, and in Settings enable "Start on Boot", then
 manually start it for the first time.
-<li> You might want to put a <tt>.profile</tt> in <tt>/sdcard/ssh</tt>,
-too.
+<li> Create <tt>/sdcard/ssh/authorized_keys</tt>
+<li> Optionally make <tt>/sdcard/ssh/.profile</tt>
 </ul>
 
-<p>Voila!  You can use ssh/scp/sftp/rsync to talk to your Android device!</p>
+<p>If SimpleSSHD does not find a <tt>authorized_keys</tt> file when a
+client connects, then it generates a single-use password at that time and
+displays it in the console log.  So the procedure to login the first time
+is to initiate the ssh connection, then look at the phone and type in the
+password that is on the screen in the SimpleSSHD app.  It is recommended
+to use that shell session to install the <tt>authorized_keys</tt>
+file.</p>
+
+<p>Once <tt>authorized_keys</tt> exists, only public key authentication
+is supported.  If you screw up your <tt>authorized_keys</tt> file, use
+the options menu (upper right) -> Reset Keys.</p>
 
 <h2>Settings</h2>
 
@@ -107,6 +111,8 @@ commandline.</dd>
 <h2>Change Log</h2>
 
 <ul>
+<li> <b>2016/10/xx Version 14:</b> Support single-use passwords for
+bootstrapping.
 <li> <b>2016/10/16 Version 13:</b> Support foreground service (fewer
 stalls with newer Android).  Add "Start on Open" mode.
 <li> <b>2016/08/08 Version 1.11:</b> Fix stall initializing random number generator.
diff --git a/res/layout/authkeys.xml b/res/layout/authkeys.xml
deleted file mode 100644
index a8d2c5e..0000000
--- a/res/layout/authkeys.xml
+++ /dev/null
@@ -1,45 +0,0 @@
-<?xml version="1.0" encoding="utf-8"?>
-<LinearLayout xmlns:android="http://schemas.android.com/apk/res/android"
-    android:orientation="vertical"
-    android:layout_width="fill_parent"
-    android:layout_height="fill_parent">
-    <EditText android:id="@+id/authtext"
-	android:layout_width="fill_parent"
-	android:layout_height="1dp"
-	android:layout_weight="1"
-	android:ellipsize="start"
-	android:textAppearance="?android:attr/textAppearanceSmall"
-	android:typeface="monospace"
-	android:gravity="top"
-	android:singleLine="false"
-	android:background="#00000000" />
-    <LinearLayout
-	android:orientation="horizontal"
-	android:layout_width="fill_parent"
-	android:layout_height="wrap_content">
-	<Button android:id="@+id/fetch_auth"
-	    android:layout_width="1dp"
-	    android:layout_weight="1"
-	    android:layout_height="wrap_content"
-	    android:layout_gravity="center"
-	    android:text="Fetch"
-	    android:textAppearance="?android:attr/textAppearanceLarge"
-	    android:onClick="fetch_clicked" />
-	<Button android:id="@+id/cancel_auth"
-	    android:layout_width="1dp"
-	    android:layout_weight="1"
-	    android:layout_height="wrap_content"
-	    android:layout_gravity="center"
-	    android:text="Cancel"
-	    android:textAppearance="?android:attr/textAppearanceLarge"
-	    android:onClick="cancel_clicked" />
-	<Button android:id="@+id/save_auth"
-	    android:layout_width="1dp"
-	    android:layout_weight="1"
-	    android:layout_height="wrap_content"
-	    android:layout_gravity="center"
-	    android:text="Save"
-	    android:textAppearance="?android:attr/textAppearanceLarge"
-	    android:onClick="save_clicked" />
-   </LinearLayout>
-</LinearLayout>