Authenticate against PAM
Provides an authenticate function that will allow the caller to authenticate a user against the Pluggable Authentication Modules (PAM) on the system.
Implemented using ctypes, so no compilation is necessary.
There is one extra configuration option for pam. The pam_service that is authenticated against. This defaults to login
Solaris-like (SmartOS, OmniOS, ...) systems may need
auth.pam.service set to
PAM authentication will not work for the
The Python interface to PAM does not support authenticating as
This module executes itself in a subprocess in order to user the system python and pam libraries. We do this to avoid openssl version conflicts when running under a salt onedir build.
Wrapper class for pam_conv structure
Wrapper class for pam_message structure
Wrapper class for pam_response structure
Authenticate via pam
Returns True if the given username and password authenticate for the given service. Returns False otherwise
username: the username to authenticate
password: the password in plain text
Retrieve groups for a given user for this auth provider
Uses system groups