aboutsummaryrefslogtreecommitdiffstats
path: root/modules/pam
diff options
context:
space:
mode:
Diffstat (limited to 'modules/pam')
-rw-r--r--modules/pam/manifests/init.pp5
-rw-r--r--modules/pam/templates/ldap.conf2
2 files changed, 5 insertions, 2 deletions
diff --git a/modules/pam/manifests/init.pp b/modules/pam/manifests/init.pp
index 246bb4f6..b7860a4d 100644
--- a/modules/pam/manifests/init.pp
+++ b/modules/pam/manifests/init.pp
@@ -44,7 +44,10 @@ class pam {
}
}
- define multiple_ldap_access($access_classes) {
+ define multiple_ldap_access($access_classes,$restricted_shell = false) {
+ if $restricted_shell {
+ include restricted_shell
+ }
include base
}
}
diff --git a/modules/pam/templates/ldap.conf b/modules/pam/templates/ldap.conf
index f346873a..a1d751cf 100644
--- a/modules/pam/templates/ldap.conf
+++ b/modules/pam/templates/ldap.conf
@@ -15,7 +15,7 @@ nss_map_attribute uniqueMember member
sudoers_base ou=sudoers,<%= dc_suffix %>
#sudoers_debug 2
-<% if access_class = 'commiters' %>
+<% if restricted_shell %>
# for restricted access
nss_override_attribute_value loginShell /usr/local/bin/sv_membersh.pl
<% end %>
generated by cgit v1.2.1 (git 2.21.0) at 2024-09-28 07:47:44 +0000