On ti, 29 maalis 2022, Roger Seguin via FreeIPA-users wrote:
Thank you for your response. This seems a bit more complicated than what I was hoping for :)
If your current application has a read access to /etc/shadow, you are already performing what pam_unix.so is doing. As a result, your current application could have been already using PAM API instead of directly accessing /etc/shadow. I am just trying to point out that there are standardized ways of achieving what you want on Linux systems already. Sticking to these methods would allow to extend and integrate with FreeIPA regardless how authentication is performed internally in FreeIPA. -- / Alexander Bokovoy Sr. Principal Software Engineer Security / Identity Management Engineering Red Hat Limited, Finland _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
