|
|
@ -70,10 +70,6 @@
|
|
|
|
|
|
|
|
|
|
|
|
(define-configuration sssd-configuration
|
|
|
|
(define-configuration sssd-configuration
|
|
|
|
(sssd (file-like sssd) "sssd package to use")
|
|
|
|
(sssd (file-like sssd) "sssd package to use")
|
|
|
|
(pam-services (list-of-strings (list "su" "sddm" "login" "sshd" "passwd"))
|
|
|
|
|
|
|
|
"list of pam services to configure login for"
|
|
|
|
|
|
|
|
(lambda (a b)
|
|
|
|
|
|
|
|
""))
|
|
|
|
|
|
|
|
(services (list-of-strings (list "nss" "sudo" "pam" "ssh" "ifp"))
|
|
|
|
(services (list-of-strings (list "nss" "sudo" "pam" "ssh" "ifp"))
|
|
|
|
"list of services")
|
|
|
|
"list of services")
|
|
|
|
(domains (list-of-sssd-domain-configurations '())
|
|
|
|
(domains (list-of-sssd-domain-configurations '())
|
|
|
@ -85,9 +81,6 @@
|
|
|
|
config)
|
|
|
|
config)
|
|
|
|
"/lib/security/pam_sss.so")))))
|
|
|
|
"/lib/security/pam_sss.so")))))
|
|
|
|
(pam-extension (transformer (lambda (pam)
|
|
|
|
(pam-extension (transformer (lambda (pam)
|
|
|
|
(if (member (pam-service-name pam)
|
|
|
|
|
|
|
|
(sssd-configuration-pam-services
|
|
|
|
|
|
|
|
config))
|
|
|
|
|
|
|
|
(pam-service (inherit pam)
|
|
|
|
(pam-service (inherit pam)
|
|
|
|
(auth (cons sufficient
|
|
|
|
(auth (cons sufficient
|
|
|
|
(pam-service-auth
|
|
|
|
(pam-service-auth
|
|
|
@ -100,7 +93,7 @@
|
|
|
|
pam)))
|
|
|
|
pam)))
|
|
|
|
(session (cons sufficient
|
|
|
|
(session (cons sufficient
|
|
|
|
(pam-service-session
|
|
|
|
(pam-service-session
|
|
|
|
pam)))) pam))))))
|
|
|
|
pam)))))))))
|
|
|
|
|
|
|
|
|
|
|
|
(define (sssd-pam-services config)
|
|
|
|
(define (sssd-pam-services config)
|
|
|
|
(list (sssd-pam-service config)))
|
|
|
|
(list (sssd-pam-service config)))
|
|
|
|