[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]


From: Mathias Herberts
Subject: Re: PATCH
Date: Fri, 24 Oct 2003 05:17:57 +0000
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20021130

Well I thought about that at first but it could not solve my problem, as the directory I authenticate the users on depends on the repository accessed.


Steve McIntyre wrote:
On Thu, Oct 23, 2003 at 08:54:44PM +0000, Mathias Herberts wrote:

Ok, here it is then.

My patch modifies src/server.c:check_repository_password so it can check a user password using an external authentication process. I basically wrote that so I could authenticate my CVS users against our corporate Active Directory.

The patch relies on a special syntax of the password field in CVSROOT/passwd. If the password starts with an at sign '@' then everything following the '@' up to the ':' is considered a path to an authentication program. As the salt used by crypt(3) cannot contain '@' we can still use regular encrypted passwords.

I know you've done the work now, but wouldn't it be easier to use PAM
and the pam_winbind (IIRC) module to do the authentication...?

reply via email to

[Prev in Thread] Current Thread [Next in Thread]