diff options
| author | Michael Scherer <misc@mageia.org> | 2011-01-13 18:12:31 +0000 |
|---|---|---|
| committer | Michael Scherer <misc@mageia.org> | 2011-01-13 18:12:31 +0000 |
| commit | d3afcb16658f3486a4a41fcd57a2b067e4848ce7 (patch) | |
| tree | e91d81a8383dcf93e0a422aa2838de00627874dc /modules/pam/templates | |
| parent | 4d79949ce968bfef4b699d67ad2b647afcbe3c8f (diff) | |
| download | puppet-d3afcb16658f3486a4a41fcd57a2b067e4848ce7.tar puppet-d3afcb16658f3486a4a41fcd57a2b067e4848ce7.tar.gz puppet-d3afcb16658f3486a4a41fcd57a2b067e4848ce7.tar.bz2 puppet-d3afcb16658f3486a4a41fcd57a2b067e4848ce7.tar.xz puppet-d3afcb16658f3486a4a41fcd57a2b067e4848ce7.zip | |
allow to use multiple group for the access with pam
Diffstat (limited to 'modules/pam/templates')
| -rw-r--r-- | modules/pam/templates/system-auth | 12 |
1 files changed, 6 insertions, 6 deletions
diff --git a/modules/pam/templates/system-auth b/modules/pam/templates/system-auth index 79c95264..4df9555e 100644 --- a/modules/pam/templates/system-auth +++ b/modules/pam/templates/system-auth @@ -9,13 +9,13 @@ auth required pam_deny.so account sufficient pam_localuser.so -<%- if access_class == 'admin' -%> -account required pam_succeed_if.so quiet user ingroup mga-sysadmin +# not sure if the following bring something useful +account required pam_ldap.so +<%- if access_classes -%> +<%- access_classes.each { |ldap_group| -%> +account sufficient pam_succeed_if.so quiet user ingroup <%= ldap_group %> +<%- } -%> <%- end -%> -<%- if access_class == 'committers' -%> -account required pam_succeed_if.so quiet user ingroup mga-committers -<%- end -%> -account sufficient pam_ldap.so account required pam_deny.so |