This is a containerised ssh server set up to easily share files over the internet over sftp.
I've now adjusted this image to create a unique user for each public key file given to it. This means two significant changes:
- Key file mount path: As an admin, you will want to mount the volume containing your authorized key text files at
/authorized_keysinstead of/home/sftp/.ssh/keys. - User logins: Each user will need to use their own user name to log into the server, rather than the shared
sftpuser. You can retain the old login behaviour by simply concatenating all the authorized key text files into a single file calledsftp.puband mounting it at/authorized_keysas above.
-
Image Repositories:
- Docker Hub:
florianpiesche/sftp-server - GitHub Packages:
ghcr.io/fpiesche/sftp-server
- Docker Hub:
-
Maintained by:
Florian Piesche -
Where to file issues:
https://github.com/fpiesche/docker-sftp-server/issues -
Dockerfile: https://github.com/fpiesche/docker-sftp-server/blob/main/Dockerfile
-
Supported architectures: Each image is a multi-arch manifest for the following architectures:
amd64,arm64,armv7,armv6 -
Source of this description: Github README (history)
- Mount a directory of text files containing the public SSH keys you want to be able to connect as a volume at
/authorized_keys; for each of these the entrypoint script will create a new user using the file's name as a user name and copy the key into the new user'sauthorized_keysfile on container startup. A file can contain multiple public keys to allow multiple users to log in using the same name. - Make /etc/ssh a volume so that you can edit the configuration file if you want, and so that the container's host keys are persistent across restarts
- If you want to run any custom shell scripts on container start, mount them into
/etc/sftp.d/as a volume.
$ docker run \
--rm -it \
-v sftp-config:/etc/ssh/ \
-v sftp-init:/etc/sftp.d/ \
-v authorized-keys:/authorized_keys/ \
florianpiesche/sftp-server