Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-30897

pam_user_map but with role mapping instead of user mapping

    XMLWordPrintable

Details

    • Task
    • Status: Open (View Workflow)
    • Minor
    • Resolution: Unresolved
    • None
    • Plugin - pam
    • None

    Description

      COuld it be feasible to have anothe pam plugin that maps and automatically assign a given role to users depending on their group ?

      for example Alice and Bob are both part of the dba group in ldap./unix/AD/whatever, so they are automatically assigned to the dba group upon succesfull login.

      reasoning for this is the following :
      since user who delegate authentication to third party ike ldap/AD/unix socket/whatever care about security, there is littel chance they accept to map admin user to a single one since it removes all ability to effectively have an account accountability process with the audit plugin for exempla, but not only.

      Attachments

        Activity

          People

            Unassigned Unassigned
            SylvainArbaudie Sylvain ARBAUDIE
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:

              Git Integration

                Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.