[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCH v6 10/11] authz: add QAuthZPAM object type for a
|
From: |
Daniel P . Berrangé |
|
Subject: |
Re: [Qemu-devel] [PATCH v6 10/11] authz: add QAuthZPAM object type for authorizing using PAM |
|
Date: |
Thu, 15 Nov 2018 10:32:20 +0000 |
|
User-agent: |
Mutt/1.10.1 (2018-07-13) |
On Thu, Nov 08, 2018 at 02:23:18AM +0400, Marc-André Lureau wrote:
> Hi
>
> On Fri, Oct 19, 2018 at 5:47 PM Daniel P. Berrangé <address@hidden> wrote:
> > diff --git a/qemu-options.hx b/qemu-options.hx
> > index a1c3e0e59c..a9654b8115 100644
> > --- a/qemu-options.hx
> > +++ b/qemu-options.hx
> > @@ -4447,6 +4447,41 @@ would look like:
> > ...
> > @end example
> >
> > address@hidden -object authz-pam,address@hidden,address@hidden
> > +
> > +Create an authorization object that will control access to network
> > services.
> > +
> > +The @option{service} parameter provides the name of a PAM service to use
> > +for authorization. It requires that a file @code{/etc/pam.d/@var{service}}
> > +exist to provide the configuration for the @code{account} subsystem.
> > +
> > +An example authorization object to validate a TLS x509 distinguished
> > +name would look like:
> > +
> > address@hidden
> > + # $QEMU \
> > + ...
> > + -object authz-simple,id=auth0,service=qemu-vnc
>
> oops, wrong example,
Heh, fixed.
>
> other than that,
> Reviewed-by: Marc-André Lureau <address@hidden>
Regards,
Daniel
--
|: https://berrange.com -o- https://www.flickr.com/photos/dberrange :|
|: https://libvirt.org -o- https://fstop138.berrange.com :|
|: https://entangle-photo.org -o- https://www.instagram.com/dberrange :|