diff options
author | Sergey Poznyakoff <gray@gnu.org> | 2018-08-12 19:20:04 +0300 |
---|---|---|
committer | Sergey Poznyakoff <gray@gnu.org> | 2018-08-12 19:20:04 +0300 |
commit | 6bba235d667f25a9ae6bcd1c560b0ae28ea16505 (patch) | |
tree | 0d9e26952d7ae381f7dd78e6954fdda366a9eed7 | |
parent | 23b718d2a385bb07bcbd4584a694e9e75050098b (diff) | |
download | pam-modules-6bba235d667f25a9ae6bcd1c560b0ae28ea16505.tar.gz pam-modules-6bba235d667f25a9ae6bcd1c560b0ae28ea16505.tar.bz2 |
New module pam_innetgr.
* Makefile.am: Add new module.
* NEWS: Upgrade
* configure.ac: Add configuration for pam_innetgr
* pam_innetgr/Makefile.am: New file.
* pam_innetgr/pam_innetgr.c: New file.
* doc/Makefile.am: Add pam_innetgr.8
* doc/pam-modules.texi: Document pam_innetgr.
* doc/pam_innetgr.8: New file.
* examples/ldappubkey: Bugfixes
(publickeyattribute setting): Accept a list of attributes
(publickeyfilter): New setting.
-rw-r--r-- | Makefile.am | 36 | ||||
-rw-r--r-- | NEWS | 22 | ||||
-rw-r--r-- | configure.ac | 20 | ||||
-rw-r--r-- | doc/Makefile.am | 3 | ||||
-rw-r--r-- | doc/pam-modules.texi | 116 | ||||
-rw-r--r-- | doc/pam_innetgr.8 | 173 | ||||
-rwxr-xr-x | examples/ldappubkey | 65 | ||||
-rw-r--r-- | pam_groupmember/pam_groupmember.c | 2 | ||||
-rw-r--r-- | pam_innetgr/Makefile.am | 22 | ||||
-rw-r--r-- | pam_innetgr/pam_innetgr.c | 319 | ||||
-rw-r--r-- | pam_umotd/pam_umotd.c | 2 |
11 files changed, 735 insertions, 45 deletions
diff --git a/Makefile.am b/Makefile.am index 0b5c6d5..f2f416b 100644 --- a/Makefile.am +++ b/Makefile.am | |||
@@ -17,37 +17,35 @@ | |||
17 | AUTOMAKE_OPTIONS = gnits 1.8 | 17 | AUTOMAKE_OPTIONS = gnits 1.8 |
18 | ACLOCAL_AMFLAGS = -I m4 -I imprimatur | 18 | ACLOCAL_AMFLAGS = -I m4 -I imprimatur |
19 | 19 | ||
20 | SUBDIRS = \ | ||
21 | imprimatur\ | ||
22 | doc\ | ||
23 | examples\ | ||
24 | lib\ | ||
25 | pam_sql\ | ||
26 | pamck | ||
27 | |||
20 | if PAM_COND_FSHADOW | 28 | if PAM_COND_FSHADOW |
21 | FSHADOW_DIR=pam_fshadow | 29 | SUBDIRS += pam_fshadow |
22 | endif | 30 | endif |
23 | if PAM_COND_REGEX | 31 | if PAM_COND_REGEX |
24 | REGEX_DIR=pam_regex | 32 | SUBDIRS += pam_regex |
25 | endif | 33 | endif |
26 | if PAM_COND_LOG | 34 | if PAM_COND_LOG |
27 | LOG_DIR=pam_log | 35 | SUBDIRS += pam_log |
28 | endif | 36 | endif |
29 | if PAM_COND_LDAPHOME | 37 | if PAM_COND_LDAPHOME |
30 | LDAPHOME_DIR=pam_ldaphome | 38 | SUBDIRS += pam_ldaphome |
31 | endif | 39 | endif |
32 | if PAM_COND_UMOTD | 40 | if PAM_COND_UMOTD |
33 | UMOTD_DIR=pam_umotd | 41 | SUBDIRS += pam_umotd |
34 | endif | 42 | endif |
35 | if PAM_COND_GROUPMEMBER | 43 | if PAM_COND_GROUPMEMBER |
36 | GROUPMEMBER_DIR=pam_groupmember | 44 | SUBDIRS += pam_groupmember |
45 | endif | ||
46 | if PAM_COND_INNETGR | ||
47 | SUBDIRS += pam_innetgr | ||
37 | endif | 48 | endif |
38 | SUBDIRS = \ | ||
39 | imprimatur\ | ||
40 | doc\ | ||
41 | examples\ | ||
42 | lib\ | ||
43 | $(FSHADOW_DIR)\ | ||
44 | $(REGEX_DIR)\ | ||
45 | $(LOG_DIR)\ | ||
46 | pam_sql\ | ||
47 | $(LDAPHOME_DIR)\ | ||
48 | $(UMOTD_DIR)\ | ||
49 | $(GROUPMEMBER_DIR)\ | ||
50 | pamck | ||
51 | 49 | ||
52 | EXTRA_DIST=ChangeLog.svn | 50 | EXTRA_DIST=ChangeLog.svn |
53 | 51 | ||
@@ -1,9 +1,25 @@ | |||
1 | pam-modules -- history of user-visible changes. 2018-01-02 | 1 | pam-modules -- history of user-visible changes. 2018-08-12 |
2 | Copyright (C) 2001, 2004-2005, 2007-2012, 2015, 2018 Sergey Poznyakoff | ||
3 | See the end of file for copying conditions. | 2 | See the end of file for copying conditions. |
4 | 3 | ||
5 | Please send pam-modules bug reports to <bug-pam-modules@gnu.org.ua> | 4 | Please send pam-modules bug reports to <bug-pam-modules@gnu.org.ua> |
6 | 5 | ||
6 | Version 2.2.90 (git) | ||
7 | |||
8 | * New module pam_innetgr | ||
9 | |||
10 | This module checks if the current hostname and the name of the user | ||
11 | trying to log in are mentioned in a triple of the specified NIS | ||
12 | netgroup. | ||
13 | |||
14 | * The ldappubkey utility imporoved. | ||
15 | |||
16 | The PublicKeyAttribute setting accepts a whitespace-separated list of | ||
17 | attribute names. | ||
18 | |||
19 | The new setting PublicKeyFilter can be used to supply a LDAP filter | ||
20 | expression to use in place of the default. | ||
21 | |||
22 | |||
7 | Version 2.2, 2018-01-02 | 23 | Version 2.2, 2018-01-02 |
8 | 24 | ||
9 | * Improve pam_fshadow | 25 | * Improve pam_fshadow |
@@ -223,7 +239,7 @@ Version 0.1 | |||
223 | ========================================================================= | 239 | ========================================================================= |
224 | Copyright information: | 240 | Copyright information: |
225 | 241 | ||
226 | Copyright (C) 2001, 2004-2005, 2007-2015 Sergey Poznyakoff | 242 | Copyright (C) 2001, 2004-2005, 2007-2012, 2015, 2018 Sergey Poznyakoff |
227 | 243 | ||
228 | Permission is granted to anyone to make or distribute verbatim copies | 244 | Permission is granted to anyone to make or distribute verbatim copies |
229 | of this document as received, in any medium, provided that the | 245 | of this document as received, in any medium, provided that the |
diff --git a/configure.ac b/configure.ac index 0a4eb33..6869248 100644 --- a/configure.ac +++ b/configure.ac | |||
@@ -16,7 +16,7 @@ | |||
16 | 16 | ||
17 | AC_PREREQ(2.63) | 17 | AC_PREREQ(2.63) |
18 | 18 | ||
19 | AC_INIT(pam-modules, 2.2, bug-pam-modules@gnu.org.ua) | 19 | AC_INIT(pam-modules, 2.2.90, bug-pam-modules@gnu.org.ua) |
20 | AC_CONFIG_SRCDIR(pam_fshadow/pam_fshadow.c) | 20 | AC_CONFIG_SRCDIR(pam_fshadow/pam_fshadow.c) |
21 | AC_CONFIG_AUX_DIR([build-aux]) | 21 | AC_CONFIG_AUX_DIR([build-aux]) |
22 | AC_CONFIG_MACRO_DIR([m4]) | 22 | AC_CONFIG_MACRO_DIR([m4]) |
@@ -171,6 +171,18 @@ yes) | |||
171 | esac | 171 | esac |
172 | ]) | 172 | ]) |
173 | 173 | ||
174 | # | ||
175 | AC_CHECK_FUNCS([getdomainname]) | ||
176 | PM_ENABLE(innetgr,[ | ||
177 | case $build_innetgr in | ||
178 | probe) | ||
179 | AC_CHECK_FUNC([innetgr],[build_innetgr=yes],[build_innetgr=no]) | ||
180 | ;; | ||
181 | yes) | ||
182 | AC_CHECK_FUNC([innetgr],[],[AC_MSG_ERROR([cannot build the requested module pam_innetgr because function innetgr is not present in libc])]) | ||
183 | ;; | ||
184 | esac]) | ||
185 | |||
174 | ## ***************** | 186 | ## ***************** |
175 | ## debugging support | 187 | ## debugging support |
176 | ## ***************** | 188 | ## ***************** |
@@ -219,7 +231,7 @@ delim="-------------------------------------------------------------------" | |||
219 | echo $delim | tr '-' '*' | 231 | echo $delim | tr '-' '*' |
220 | echo "Modules to build:" | 232 | echo "Modules to build:" |
221 | res= | 233 | res= |
222 | for module in fshadow regex log pgsql mysql ldaphome umotd groupmember | 234 | for module in fshadow regex log pgsql mysql ldaphome umotd groupmember innetgr |
223 | do | 235 | do |
224 | modname=pam_$module | 236 | modname=pam_$module |
225 | eval enable=\${build_$module} | 237 | eval enable=\${build_$module} |
@@ -242,7 +254,8 @@ build_pgsql=$build_pgsql | |||
242 | build_mysql=$build_mysql | 254 | build_mysql=$build_mysql |
243 | build_ldaphome=$build_ldaphome | 255 | build_ldaphome=$build_ldaphome |
244 | build_umotd=$build_umotd | 256 | build_umotd=$build_umotd |
245 | build_groupmember=$build_groupmember]) | 257 | build_groupmember=$build_groupmember |
258 | build_innetgr=$build_innetgr]) | ||
246 | 259 | ||
247 | AC_OUTPUT(Makefile | 260 | AC_OUTPUT(Makefile |
248 | doc/Makefile | 261 | doc/Makefile |
@@ -255,4 +268,5 @@ AC_OUTPUT(Makefile | |||
255 | pam_ldaphome/Makefile | 268 | pam_ldaphome/Makefile |
256 | pam_umotd/Makefile | 269 | pam_umotd/Makefile |
257 | pam_groupmember/Makefile | 270 | pam_groupmember/Makefile |
271 | pam_innetgr/Makefile | ||
258 | pamck/Makefile) | 272 | pamck/Makefile) |
diff --git a/doc/Makefile.am b/doc/Makefile.am index 3d588e3..368d3b0 100644 --- a/doc/Makefile.am +++ b/doc/Makefile.am | |||
@@ -43,6 +43,9 @@ endif | |||
43 | if PAM_COND_GROUPMEMBER | 43 | if PAM_COND_GROUPMEMBER |
44 | dist_man_MANS += pam_groupmember.8 | 44 | dist_man_MANS += pam_groupmember.8 |
45 | endif | 45 | endif |
46 | if PAM_COND_INNETGR | ||
47 | dist_man_MANS += pam_innetgr.8 | ||
48 | endif | ||
46 | 49 | ||
47 | config.so: $(top_srcdir)/configure.ac $(top_srcdir)/doc/Makefile.am | 50 | config.so: $(top_srcdir)/configure.ac $(top_srcdir)/doc/Makefile.am |
48 | $(AM_V_GEN){\ | 51 | $(AM_V_GEN){\ |
diff --git a/doc/pam-modules.texi b/doc/pam-modules.texi index 31f69ed..840a4c1 100644 --- a/doc/pam-modules.texi +++ b/doc/pam-modules.texi | |||
@@ -31,10 +31,11 @@ | |||
31 | session management. | 31 | session management. |
32 | * pam_log: (pam-modules)log. Format and log arbitrary | 32 | * pam_log: (pam-modules)log. Format and log arbitrary |
33 | messages to syslog. | 33 | messages to syslog. |
34 | * pam_ldaphome (pam-modules)ldaphome Maintain home directories and | 34 | * pam_ldaphome (pam-modules)ldaphome. Maintain home directories and |
35 | SSH keys od LDAP users. | 35 | SSH keys od LDAP users. |
36 | * pam_umotd (pam-modules)umotd Display a user-specific MOTD. | 36 | * pam_umotd (pam-modules)umotd. Display a user-specific MOTD. |
37 | * pam_groupmember (pam_modules)groupmember Test group membership. | 37 | * pam_groupmember (pam_modules)groupmember. Test group membership. |
38 | * pam_innetgr (pam-modules)innetgr. Check NIS netgroup. | ||
38 | * pamck: (pam-modules)pamck. Verify PAM Access. | 39 | * pamck: (pam-modules)pamck. Verify PAM Access. |
39 | * usergitconfig: (pam-modules)usergitconfig. Initialize user @file{.gitconfig} file. | 40 | * usergitconfig: (pam-modules)usergitconfig. Initialize user @file{.gitconfig} file. |
40 | * ldappubkey: (pam-modules)ldappubkey. Get user's public ssh keys from the LDAP database. | 41 | * ldappubkey: (pam-modules)ldappubkey. Get user's public ssh keys from the LDAP database. |
@@ -90,6 +91,7 @@ Individual modules | |||
90 | * ldaphome:: Maintain home directories and SSH keys of LDAP users. | 91 | * ldaphome:: Maintain home directories and SSH keys of LDAP users. |
91 | * umotd:: Display a user-specific MOTD. | 92 | * umotd:: Display a user-specific MOTD. |
92 | * groupmember:: Test group membership. | 93 | * groupmember:: Test group membership. |
94 | * innetgr:: Check NIS netgroup. | ||
93 | 95 | ||
94 | * Reporting Bugs:: How to Report a Bug. | 96 | * Reporting Bugs:: How to Report a Bug. |
95 | 97 | ||
@@ -1670,11 +1672,33 @@ LDAP record is searched using the following filter: | |||
1670 | @end example | 1672 | @end example |
1671 | @end deffn | 1673 | @end deffn |
1672 | 1674 | ||
1673 | @deffn {ldap.conf} publickeyattribute @var{attr} | 1675 | @deffn {ldap.conf} publickeyattribute @var{attr} [@var{attr}...] |