UNIX PAM authentication does not work
Bug #820938 reported by
James Page
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
jenkins (Ubuntu) |
Fix Released
|
Medium
|
James Page |
Bug Description
Jenkins has a feature that integrates account security with PAM through libpam4j.
This requires that the jenkins user is added to the shadow group to allow access to /etc/shadow.
However, even when this change is made, authentication does not work.
This appears to be because the upstart configuration uses daemon which specifies both user and group - which restricts the groups associated with the process to just jenkins.
Removing the group element appears to resolve this issue.
Related branches
lp:~james-page/ubuntu/oneiric/jenkins/misc-fixes
- Dave Walker: Pending requested
-
Diff: 87 lines (+23/-4)7 files modified.pc/.quilt_patches (+1/-0)
.pc/.quilt_series (+1/-0)
debian/changelog (+16/-0)
debian/control (+2/-1)
debian/jenkins-slave.upstart (+1/-1)
debian/jenkins.upstart (+1/-1)
debian/maven.rules (+1/-1)
Changed in jenkins (Ubuntu): | |
status: | New → In Progress |
importance: | Undecided → Medium |
assignee: | nobody → James Page (james-page) |
To post a comment you must log in.
This bug was fixed in the package jenkins - 1.409.1-0ubuntu2
---------------
jenkins (1.409.1-0ubuntu2) oneiric; urgency=low
* Resolved issue with specific group being set in upstart Indep.
configuration (LP: #820938).
* Rebuild to pickup new versions of jenkins-xstream to enable ARM
compatibility (LP: #827463).
* Rebuild to pickup new versions of jcaptcha and jenkins-winstone to
resolve compatibiltiy issues with libservlet2.5-java (LP: #827651).
* Fix FTBFS due to missing fonts causing test failure in Jenkins core:
- debian/control: added ttf-dejavu-core to Build-Depends-
* Fix FTBFS due to change in location of jtidy maven artifact:
- debian/maven.rules: switch jtidy -> net.sf.jtidy to pickup new
location.
-- James Page <email address hidden> Tue, 06 Sep 2011 16:53:57 +0100