[OpenAFS-port-darwin] aklog/afslog at console login and Mac OS 10.2
David Botsch
dwb7@ccmr.cornell.edu
Mon, 7 Oct 2002 17:25:54 -0400
If we are authing against kerberos, which we can do, where does this
fit into that process? Before or after the auth takes place? Ie could
one just insert the "aklog" command after the pagsh command and thereby
get tokens (looks like I need to find some docs on what does what when
here)? As a later email said, we are shooting for home directories in
afs space.
On 2002.10.06 22:20 Dan Hyde wrote:
>
> Here's the hack I've been using for a long while; the order of steps
> two and three aren't important, but you'd better do step two or it
> won't work. The trick is to get WindowServer to do a setpag, and then
> later, when a child process (login or klog or kinit/aklog) get
> credentials, the apply to all the WindowServer's subprocesses. You
> can
> verify with id. NB: the first time WindowServer runs, the afs kernel
> extensions aren't there, so you have to login/logout to get a new one.
>
> 0) cd /System/Library/CoreServices/
> 1) mv WindowServer WindowServer.real
> 2) touch WindowServer; chmod +x WindowServer
> 3) cat << EOF > WindowServer
> #!/bin/sh
>
> case $# in
> 0)
>
> if /usr/bin/pagsh -c /usr/bin/true
> then
> exec /usr/bin/pagsh -c
> "/System/Library/CoreServices/WindowServer.real"
> else
> exec "/System/Library/CoreServices/WindowServer.real"
> fi
> ;;
>
> *)
>
> if /usr/bin/pagsh -c /usr/bin/true
> then
> exec /usr/bin/pagsh -c
> "/System/Library/CoreServices/WindowServer.real
> $*"
> else
> exec "/System/Library/CoreServices/WindowServer.real"
> "$@"
> fi
> ;;
>
> esac
> EOF
>
> Enjoy!
> _______________________________________________
> port-darwin mailing list
> port-darwin@openafs.org
> https://lists.openafs.org/mailman/listinfo/port-darwin
>
--
********************************
David William Botsch
Consultant/Advisor II
CCMR Computing Facility
dwb7@ccmr.cornell.edu
********************************