Add PAM service definition for doas.

author Nathan Holstein <nathan.holstein@gmail.com>

Thu, 6 Aug 2015 05:16:35 +0000 (01:16 -0400)

committer Nathan Holstein <nathan.holstein@gmail.com>

Thu, 6 Aug 2015 05:16:35 +0000 (01:16 -0400)
author Nathan Holstein <nathan.holstein@gmail.com>
Thu, 6 Aug 2015 05:16:35 +0000 (01:16 -0400)
committer Nathan Holstein <nathan.holstein@gmail.com>
Thu, 6 Aug 2015 05:16:35 +0000 (01:16 -0400)
diff --git a/Makefile b/Makefile

index f2277ab8bbc9a649b23569cbcc4da084e753629c..59c4ee76d5d3824587243666f3b14a0657d17c6d 100644 (file)
--- a/Makefile
+++ b/Makefile
@@ -14,3 +14,7 @@ COPTS+= -Wall -Wextra -Werror -pedantic -std=c11
  LDFLAGS+= -lpam
  
  include bsd.prog.mk
+
+/etc/pam.d/doas: pam.d__doas
+       cp $< $@
+install: /etc/pam.d/doas
diff --git a/libopenbsd/auth_userokay.c b/libopenbsd/auth_userokay.c

index ab3d5e08fceb9bbd72282e076ab47ca8d7366b98..5565146bf42c1efdd83fba7baf658ff5ccfe1fe9 100644 (file)
--- a/libopenbsd/auth_userokay.c
+++ b/libopenbsd/auth_userokay.c
@@ -27,7 +27,7 @@
  
  #include "openbsd.h"
  
-#define PAM_SERVICE "sudo"
+#define PAM_SERVICE "doas"
  
  #define __UNUSED __attribute__ ((unused))
  
diff --git a/pam.d__doas b/pam.d__doas

new file mode 100644 (file)

index 0000000..87551fb
--- /dev/null
+++ b/pam.d__doas
@@ -0,0 +1,5 @@
+# sudo: auth account password session
+auth       required       pam_opendirectory.so
+account    required       pam_permit.so
+password   required       pam_deny.so
+session    required       pam_permit.so
author	Nathan Holstein <nathan.holstein@gmail.com>
	Thu, 6 Aug 2015 05:16:35 +0000 (01:16 -0400)
committer	Nathan Holstein <nathan.holstein@gmail.com>
	Thu, 6 Aug 2015 05:16:35 +0000 (01:16 -0400)
Makefile		patch \| blob \| history
libopenbsd/auth_userokay.c		patch \| blob \| history
pam.d__doas	[new file with mode: 0644]	patch \| blob