mirror of
1
Fork 0
forgejo/modules/auth/pam/pam.go

46 lines
1022 B
Go
Raw Normal View History

2015-04-23 13:58:57 +02:00
// Copyright 2014 The Gogs Authors. All rights reserved.
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.
//go:build pam
// +build pam
2015-04-23 13:58:57 +02:00
package pam
import (
"errors"
"github.com/msteinert/pam"
)
// Supported is true when built with PAM
var Supported = true
2016-11-27 07:03:59 +01:00
// Auth pam auth service
func Auth(serviceName, userName, passwd string) (string, error) {
2015-04-23 13:58:57 +02:00
t, err := pam.StartFunc(serviceName, userName, func(s pam.Style, msg string) (string, error) {
switch s {
case pam.PromptEchoOff:
return passwd, nil
case pam.PromptEchoOn, pam.ErrorMsg, pam.TextInfo:
return "", nil
}
return "", errors.New("Unrecognized PAM message style")
})
if err != nil {
return "", err
2015-04-23 13:58:57 +02:00
}
if err = t.Authenticate(0); err != nil {
return "", err
2015-04-23 13:58:57 +02:00
}
if err = t.AcctMgmt(0); err != nil {
return "", err
}
2015-04-23 13:58:57 +02:00
// PAM login names might suffer transformations in the PAM stack.
// We should take whatever the PAM stack returns for it.
return t.GetItem(pam.User)
2015-04-23 13:58:57 +02:00
}