OpenAFS CVS Commit: openafs/src/pam by shadow
cvs@GRAND.CENTRAL.ORG
cvs@GRAND.CENTRAL.ORG
Fri, 26 Jul 2002 01:56:04 EDT
Update of /cvs/openafs/src/pam
In directory GRAND.CENTRAL.ORG:/data/sb/openafs/src/pam
Modified Files:
afs_auth.c afs_message.c afs_message.h afs_setcred.c
afs_util.c
Log Message:
DELTA pam-multi-cell-support-20020725
AUTHOR security@xauth.net
"will let you do
something like:
auth optional /lib/security/pam_afs.so cell other-cell.domain.net
auth sufficient /lib/security/pam_afs.so try_first_pass refresh_token \
cell main-cell.domain.net
auth required /lib/security/pam_unix.so
You need to specify "refresh_token" the second time you call it to prevent
it from getting a second PAG and making your first token useless.
Or, you can just use it once to authenticate to a cell other than what's
in /usr/vice/etc/ThisCell. Not specifying the "cell" argument causes the
expected behavior of authenticating against the local cell."
--- DELTA config follows ---
pam-multi-cell-support-20020725 openafs/src/pam/afs_auth.c 1.8 1.9
pam-multi-cell-support-20020725 openafs/src/pam/afs_message.c 1.7 1.8
pam-multi-cell-support-20020725 openafs/src/pam/afs_message.h 1.5 1.6
pam-multi-cell-support-20020725 openafs/src/pam/afs_setcred.c 1.9 1.10
pam-multi-cell-support-20020725 openafs/src/pam/afs_util.c 1.8 1.9