summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorSimon Rettberg2013-06-20 17:19:20 +0200
committerSimon Rettberg2013-06-20 17:19:20 +0200
commitcd167b25bd7218c2a4253554598d30e39f6c1259 (patch)
tree5d96e59d5a4927ec1ecfd04ede9f1fa6f39ba504
parentstage32 target: add redsocks module (diff)
parent[pam] only umount if guid = 1001 (student) (diff)
downloadtm-scripts-cd167b25bd7218c2a4253554598d30e39f6c1259.tar.gz
tm-scripts-cd167b25bd7218c2a4253554598d30e39f6c1259.tar.xz
tm-scripts-cd167b25bd7218c2a4253554598d30e39f6c1259.zip
Merge branch 'master' of simonslx:openslx-ng/tm-scripts
Diffstat
-rwxr-xr-xremote/modules/pam/data/etc/pam-script/pam_script_ses_close2
-rwxr-xr-xremote/modules/pam/data/etc/pam-script/pam_script_ses_open28
2 files changed, 17 insertions, 13 deletions
diff --git a/remote/modules/pam/data/etc/pam-script/pam_script_ses_close b/remote/modules/pam/data/etc/pam-script/pam_script_ses_close
index 48e778e2..b5fa5ba7 100755
--- a/remote/modules/pam/data/etc/pam-script/pam_script_ses_close
+++ b/remote/modules/pam/data/etc/pam-script/pam_script_ses_close
@@ -2,4 +2,4 @@
echo "[$PAM_TYPE] Closing session for $PAM_USER"
-umount /home/$PAM_USER
+[ $(id -g $PAM_USER) -eq 1001 ] && umount /home/$PAM_USER
diff --git a/remote/modules/pam/data/etc/pam-script/pam_script_ses_open b/remote/modules/pam/data/etc/pam-script/pam_script_ses_open
index 86386267..4acc74cc 100755
--- a/remote/modules/pam/data/etc/pam-script/pam_script_ses_open
+++ b/remote/modules/pam/data/etc/pam-script/pam_script_ses_open
@@ -3,19 +3,23 @@
export PATH="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/opt/openslx/bin:/opt/openslx/sbin:/opt/openslx/usr/bin:/opt/openslx/usr/sbin"
echo "[$PAM_TYPE] Opening session for $PAM_USER"
-echo "[$PAM_TYPE] Mounting home directory for $PAM_USER"
-# generate keytab
-sslconnect npserv.ruf.uni-freiburg.de:3 > /etc/krb5.keytab
-chmod 600 /etc/krb5.keytab
+if [ $(id -g $PAM_USER) -eq 1001 ]; then
+ echo "[$PAM_TYPE] Mounting home directory for $PAM_USER"
-# determine fileserver and share for home directories
-ldapsearch -x -LLL uid="$PAM_USER" homeDirectory rufFileserver > /tmp/ldapsearch."$PAM_USER"
+ # generate keytab
+ sslconnect npserv.ruf.uni-freiburg.de:3 > /etc/krb5.keytab
+ chmod 600 /etc/krb5.keytab
-FILESERVER=$(cat /tmp/ldapsearch.$PAM_USER | grep rufFileserver | cut -d" " -f2)
-VOLUME=$(cat /tmp/ldapsearch.$PAM_USER | grep homeDirectory | cut -d" " -f2)
+ # determine fileserver and share for home directories
+ ldapsearch -x -LLL uid="$PAM_USER" homeDirectory rufFileserver > /tmp/ldapsearch."$PAM_USER"
+
+ FILESERVER=$(cat /tmp/ldapsearch.$PAM_USER | grep rufFileserver | cut -d" " -f2)
+ VOLUME=$(cat /tmp/ldapsearch.$PAM_USER | grep homeDirectory | cut -d" " -f2)
+
+ # now we can mount the home directory
+ mkdir -p /home/$PAM_USER
+ mount -t nfs4 -o rw,nosuid,nodev,nolock,intr,hard,sloppy,sec=krb5p "$FILESERVER":"$VOLUME" /home/"$PAM_USER" \
+ || echo "[$PAM_TYPE] Failed to mount home directory for $PAM_USER"
+fi
-# now we can mount the home directory
-mkdir -p /home/$PAM_USER
-mount -t nfs4 -o rw,nosuid,nodev,nolock,intr,hard,sloppy,sec=krb5p "$FILESERVER":"$VOLUME" /home/"$PAM_USER" \
- || echo "[$PAM_TYPE] Failed to mount home directory for $PAM_USER"
generated by cgit v1.2.3-55-g7522 (git 2.39.0) at 2026-03-02 00:09:22 +0100