s0.barwen.ch with an in-browser terminal window and openid.shellinabox is not ssh (although web-based ssh is a good approximation). Instead it seems to be AJAX-over-https (which is kinda wtf for terminal access, but hey it seems to work).
The way I've glued it together is: First you visit the login page. That is an openid protected CGI script. The script runs with your openid in
$REMOTE_USER, and does three things: it maps your openid to a local username; it generates (via sudo) an authentication token for you; and it HTTP-meta-redirects you to a hacked version of shellinabox.shellinabox gives you a login prompt, asking for username and password. My hacked version stuffs the username and authentication token from the previous step into the keyboard.
The token ends up at a custom PAM module which verifies that the token is valid (for that user, and within a small time window after issue) and lets you in.
Then you get your shell prompt.
This seems like an interesting addition to barwen.ch's collection of login methods.
If you want a play, you can sign up at s0.barwen.ch
Also, if you break this, let me know rather than deleting
/ ...