CJ Keist wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
All,
I have looked over Sun's AMGH script, posted at BOB DOOLITTLE'S WEBLOG.
http://blogs.sun.com/bobd/
One question I have is how do you get the $username with the user
login name? What I'm looking for: We have open kiosk sunrays around
campus. I want when a user inserts their smart card to present them
with the login screen. They login with their user name and password,
then have AMGH direct them to their FOG based on their user name and not
on the token id. How would I do this?
As it is now when you insert your smart card AMGH is called immediately
with no $username value.
Aha - but if the script doesn't return any hosts it will be called again
after the username is input.
So if you really don't want to key off of the smartcard [1] then you
simply check if username=XXX is provided in stdin. If it's not, simply
return with status 0 and no output. If username is set, then output the
hosts and exit with status 0.
-Bob
[1] Most people really *do* want to key off the smartcard, although they
may not realize it :) If you store your smartcard CUID along with your
user data you can look up your user data based on the CUID, then output
username=XXX along with the host list, and then the login experience is
smoother: You insert your card, are immediately redirected, and
presented with "Welcome XXX - enter password". Of course if you haven't
stored your CUID with your user data you'll have to do as I suggested
above and your login experience won't be quite as slick (enter username,
get redirected, enter password - most people are more irritated by a
delay in between user prompts and are more willing to accept a delay
before the prompting begins, plus one prompt is better than two anyway).
_______________________________________________
SunRay-Users mailing list
[email protected]
http://www.filibeto.org/mailman/listinfo/sunray-users
