feat: Use Port IDs on Grant, Revoke SSH by drewmalin · Pull Request #397 · brevdev/brev-cli

drewmalin · 2026-05-19T21:32:15Z

Companion to https://github.com/brevdev/dev-plane/pull/2182

Port IDs must be explicitly used and persisted going forward, as SSH-type ports are simply TCP.

drewmalin · 2026-05-20T19:42:46Z

 	t.Vprint("")

-	// Check if the node already has an SSH port allocated (e.g. for another linux user)
-	port, err := existingSSHPort(ctx, deps, tokenProvider, reg)


This is not a thing anymore. We now need to ask either: do you want to open a port, or do you want to use an existing port?

drewmalin · 2026-05-20T19:43:11Z

-		t.Vprintf("  %s\n", t.Yellow(fmt.Sprintf("Warning: could not check for existing ports: %v", err)))
+		return fmt.Errorf("enable SSH failed: %w", err)


Some of these errors just ¯\(ツ)/¯ 'd before, so tightening them to immediately fail.

drewmalin · 2026-05-20T19:44:01Z

-		if p.GetProtocol() == nodev1.PortProtocol_PORT_PROTOCOL_SSH {
-			return p.GetPortNumber(), nil
-		}


Core to this PR: this will now always return false, so there is no point in doing any of this checking for the SSH protocol.

drewmalin · 2026-05-20T19:45:13Z

-		return fmt.Errorf("invalid SSH port %d: port must be between 1 and 65535", port)
+		return "", fmt.Errorf("invalid port %d: port must be between 1 and 65535", port)


Calling it "SSH" here (and elsewhere) isn't exactly wrong, but making consistent with the rest of the system.

drewmalin · 2026-05-20T19:46:10Z

-	taggedKey := pubKey + " " + BrevKeyTag(brevUserID)
+	taggedLine := pubKey + " " + DevplaneAuthorizedKeysComment(portID, brevUserID)


Honor the devplane comment/tag here. Today we can leave keys dangling in authorized_keys.

drewmalin · 2026-05-20T19:46:46Z

+	buf.build/gen/go/brevdev/devplane/connectrpc/go v1.19.2-20260520183101-9f4cb67aff2c.1
+	buf.build/gen/go/brevdev/devplane/protocolbuffers/go v1.36.11-20260520183101-9f4cb67aff2c.1


Will update once https://github.com/brevdev/dev-plane/pull/2182 is merged.

drewmalin · 2026-05-20T19:47:06Z

@@ -346,11 +346,11 @@ develop-with-nix:
 	nix develop .

 .PHONY: update-devplane-deps


This was failing to find the appropriate connect modules before.

drewmalin added 4 commits May 19, 2026 14:31

fix: update ssh port test

de4153d

fix

c82da6c

another one

48fb593

use port ids

6887ca7

drewmalin changed the title ~~fix: update ssh port test~~ feat: Use Port IDs on Grant, Revoke SSH May 20, 2026

drewmalin commented May 20, 2026

View reviewed changes

drewmalin added 2 commits May 20, 2026 12:48

lint

3e74c9e

go mod tidy

e104e51

drewmalin marked this pull request as ready for review May 20, 2026 19:56

drewmalin requested a review from a team as a code owner May 20, 2026 19:56

patelspratik approved these changes May 21, 2026

View reviewed changes

drewmalin merged commit f87411f into main May 21, 2026
9 checks passed

drewmalin deleted the dm/testfix branch May 21, 2026 23:07

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: Use Port IDs on Grant, Revoke SSH#397

feat: Use Port IDs on Grant, Revoke SSH#397
drewmalin merged 6 commits into
mainfrom
dm/testfix

drewmalin commented May 19, 2026 •

edited

Loading

Uh oh!

drewmalin May 20, 2026

Uh oh!

drewmalin May 20, 2026 •

edited

Loading

Uh oh!

drewmalin May 20, 2026

Uh oh!

drewmalin May 20, 2026

Uh oh!

drewmalin May 20, 2026

Uh oh!

drewmalin May 20, 2026

Uh oh!

drewmalin May 20, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

		t.Vprintf(" %s\n", t.Yellow(fmt.Sprintf("Warning: could not check for existing ports: %v", err)))
		return fmt.Errorf("enable SSH failed: %w", err)

		return fmt.Errorf("invalid SSH port %d: port must be between 1 and 65535", port)
		return "", fmt.Errorf("invalid port %d: port must be between 1 and 65535", port)

		taggedKey := pubKey + " " + BrevKeyTag(brevUserID)
		taggedLine := pubKey + " " + DevplaneAuthorizedKeysComment(portID, brevUserID)

		buf.build/gen/go/brevdev/devplane/connectrpc/go v1.19.2-20260520183101-9f4cb67aff2c.1
		buf.build/gen/go/brevdev/devplane/protocolbuffers/go v1.36.11-20260520183101-9f4cb67aff2c.1

		@@ -346,11 +346,11 @@ develop-with-nix:
		nix develop .

		.PHONY: update-devplane-deps

Conversation

drewmalin commented May 19, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

drewmalin May 20, 2026

Choose a reason for hiding this comment

Uh oh!

drewmalin May 20, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

drewmalin May 20, 2026

Choose a reason for hiding this comment

Uh oh!

drewmalin May 20, 2026

Choose a reason for hiding this comment

Uh oh!

drewmalin May 20, 2026

Choose a reason for hiding this comment

Uh oh!

drewmalin May 20, 2026

Choose a reason for hiding this comment

Uh oh!

drewmalin May 20, 2026

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

drewmalin commented May 19, 2026 •

edited

Loading

drewmalin May 20, 2026 •

edited

Loading