pam-exec-oauth2

Maintained by WASHNote for use in rstudio.washnote.org.

Install

go get github.com/shimt/pam-exec-oauth2

PREFIX=/opt/pam-exec-oauth2

sudo mkdir $PREFIX
sudo cp go/bin/pam-exec-oauth2 $PREFIX/pam-exec-oauth2
sudo touch $PREFIX/pam-exec-oauth2.yaml
sudo chmod 755 $PREFIX/pam-exec-oauth2
sudo chmod 600 $PREFIX/pam-exec-oauth2.yaml

Configuration

PAM

add the following lines to /etc/pam.d/common-auth.

auth sufficient pam_exec.so expose_authtok /opt/pam-exec-oauth2/pam-exec-oauth2

pam-exec-oauth2.yaml

edit /opt/pam-exec-oauth2/pam-exec-oauth2.yaml

Azure AD

{
  client-id: "xxxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
  client-secret: "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx",
  redirect-url: "urn:ietf:wg:oauth:2.0:oob",
  scopes: ["email"],
  endpoint-auth-url: "https://login.windows.net/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/oauth2/authorize",
  endpoint-token-url: "https://login.windows.net/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/oauth2/token",
  extra-parameters: { resource: "https://graph.windows.net/" },
  username-format: "%[email protected]",
}

Name		Name	Last commit message	Last commit date
Latest commit History 37 Commits
internal/oauth2		internal/oauth2
.drone.yml		.drone.yml
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
build-linux-amd64.bat		build-linux-amd64.bat
build-linux-arm.bat		build-linux-arm.bat
build-linux-arm64.bat		build-linux-arm64.bat
go.mod		go.mod
go.mod.orig		go.mod.orig
go.sum		go.sum
main.go		main.go

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

pam-exec-oauth2

Install

Configuration

PAM

pam-exec-oauth2.yaml

Azure AD

About

Releases 1

Packages

Languages

License

WASHNote/pam-exec-oauth2

Folders and files

Latest commit

History

Repository files navigation

pam-exec-oauth2

Install

Configuration

PAM

pam-exec-oauth2.yaml

Azure AD

About

Resources

License

Stars

Watchers

Forks

Releases 1

Packages 0

Languages

Packages