summaryrefslogtreecommitdiffstats
path: root/core/modules/pam-slx-plug/data/opt/openslx/pam/auth-source.d/99-slx-ldap
diff options
context:
space:
mode:
Diffstat (limited to 'core/modules/pam-slx-plug/data/opt/openslx/pam/auth-source.d/99-slx-ldap')
-rw-r--r--core/modules/pam-slx-plug/data/opt/openslx/pam/auth-source.d/99-slx-ldap9
1 files changed, 8 insertions, 1 deletions
diff --git a/core/modules/pam-slx-plug/data/opt/openslx/pam/auth-source.d/99-slx-ldap b/core/modules/pam-slx-plug/data/opt/openslx/pam/auth-source.d/99-slx-ldap
index 3e20d8ed..cab6c0a6 100644
--- a/core/modules/pam-slx-plug/data/opt/openslx/pam/auth-source.d/99-slx-ldap
+++ b/core/modules/pam-slx-plug/data/opt/openslx/pam/auth-source.d/99-slx-ldap
@@ -83,6 +83,9 @@ run_auth() {
[ -z "$BINDDN" ] && BINDDN=$(extract_field "distinguishedName" "$SEARCH_ANON")
[ -z "$BINDDN" ] && return 1
# User exists
+ # Get proper capitalization
+ RET=$(extract_field "uid" "$SEARCH_ANON")
+ [ -n "$RET" ] && USER_NAME="$RET"
if [ "$PAM_TYPE" = "account" ]; then
# 'account' checks just if the user is allowed to log in, bail out
USER_UID=$(extract_field "uidNumber" "$SEARCH_ANON")
@@ -92,7 +95,11 @@ run_auth() {
fi
SEARCH_USER=$(mktemp)
TEMPFILES_LDAP="$TEMPFILES_LDAP $SEARCH_USER"
- PW="/run/pw.${RANDOM}.${RANDOM}.${PAM_USER}.${RANDOM}.$$"
+ if [ -z "$SCRIPT_USER" ] || [ "$SCRIPT_USER" = "root" ]; then
+ PW="/run/pw.${RANDOM}.${PAM_USER}.${RANDOM}.$$"
+ else
+ PW="/run/user/${USER_UID}/pw.${RANDOM}.${PAM_USER}.${RANDOM}.$$"
+ fi
for retries in 0 1 1 0; do
if ! mkfifo -m 0600 "${PW}"; then
slxlog "pam-slxldap-fifo" "Could not create FIFO at ${PW}"
generated by cgit v1.2.3-55-g7522 (git 2.39.0) at 2024-07-15 15:27:16 +0200