Skip to content

Commit

Permalink
Add pam service module for user-linked API keys (#409)
Browse files Browse the repository at this point in the history
This commit adds a dedicated PAM service module for evaluating
user-linked API keys per discussion in NEP-053. Each user may
have one or more keys associated with themselves. Each key is
hashed using pbkdf2-sha512 with a minimum of 300000 iterations.

The module only provides pam_sm_authenticate, other pam
service module functions are stubbed-out.
  • Loading branch information
anodos325 authored Sep 13, 2024
1 parent 8cb5606 commit 25e3fcf
Show file tree
Hide file tree
Showing 5 changed files with 1,297 additions and 0 deletions.
1 change: 1 addition & 0 deletions debian/truenas-samba.install
Original file line number Diff line number Diff line change
Expand Up @@ -76,6 +76,7 @@ usr/share/ctdb/events/legacy/*.script
lib/*/libnss_winbind.so.2
lib/*/libnss_wins.so.2
lib/*/security/pam_winbind.so
lib/*/security/pam_tdb.so
usr/share/pam-configs/winbind
usr/lib/*/samba/*
usr/include/samba-4.0/libsmbclient.h
Expand Down
1 change: 1 addition & 0 deletions lib/tdb/wscript
Original file line number Diff line number Diff line change
Expand Up @@ -127,6 +127,7 @@ def build(bld):
bld.SAMBA_LIBRARY('tdb',
COMMON_SRC,
deps=tdb_deps,
provide_builtin_linking=True,
includes='include',
abi_directory='ABI',
abi_match='tdb_*',
Expand Down
Loading

0 comments on commit 25e3fcf

Please sign in to comment.