OpenAFS CVS Commit: openafs/src/pam by shadow
cvs@GRAND.CENTRAL.ORG
cvs@GRAND.CENTRAL.ORG
Fri, 26 Jul 2002 01:56:27 EDT
Update of /cvs/openafs/src/pam
In directory GRAND.CENTRAL.ORG:/data/sb/openafs-prototypes-1.3/openafs/src/pam
Modified Files:
Tag: openafs-prototypes-1_3_x
afs_auth.c afs_message.c afs_message.h afs_setcred.c
afs_util.c
Log Message:
DELTA PROTO13-pam-multi-cell-support-20020725
AUTHOR security@xauth.net
"will let you do
something like:
auth optional /lib/security/pam_afs.so cell other-cell.domain.net
auth sufficient /lib/security/pam_afs.so try_first_pass refresh_token \
cell main-cell.domain.net
auth required /lib/security/pam_unix.so
You need to specify "refresh_token" the second time you call it to prevent
it from getting a second PAG and making your first token useless.
Or, you can just use it once to authenticate to a cell other than what's
in /usr/vice/etc/ThisCell. Not specifying the "cell" argument causes the
expected behavior of authenticating against the local cell."
--- DELTA config for openafs-prototypes-1_3_x follows ---
PROTO13-pam-multi-cell-support-20020725 openafs/src/pam/afs_auth.c 1.8.2.1 1.8.2.2
PROTO13-pam-multi-cell-support-20020725 openafs/src/pam/afs_message.c 1.7 1.7.6.1
PROTO13-pam-multi-cell-support-20020725 openafs/src/pam/afs_message.h 1.5 1.5.6.1
PROTO13-pam-multi-cell-support-20020725 openafs/src/pam/afs_setcred.c 1.9 1.9.2.1
PROTO13-pam-multi-cell-support-20020725 openafs/src/pam/afs_util.c 1.8.2.1 1.8.2.2