Bug 195079

Summary:	sys-auth/pam_ldap doesn't work with multiple config files (at least not in one pam-config)
Product:	Gentoo Linux	Reporter:	Huemi <gentoobugs>
Component:	[OLD] Unspecified	Assignee:	Gentoo Linux bug wranglers <bug-wranglers>
Status:	RESOLVED UPSTREAM
Severity:	enhancement	CC:	pam-bugs+disabled
Priority:	High
Version:	unspecified
Hardware:	All
OS:	Linux
Whiteboard:
Package list:		Runtime testing required:	---
Attachments:	Modified pam_ldap parallel pam_ldap2.so parallel pam_ldap2.so (patch for pam_ldap.h)

Description Huemi 2007-10-08 11:04:47 UTC

Works as described in the documentation:
Configuring  multiple instances of pam_ldap for the same service with different configuration files is not supported, because the configuration information is cached.

I don't like this behavior, because for things like the pam_auth (php-module) it would be possible to ask more than one ldap server (with different dn-bases).

Reproducible: Always

Steps to Reproduce:

Comment 1 Huemi 2007-10-08 11:05:47 UTC

Created attachment 132901 [details]
Modified pam_ldap

might be a quick fix, although not well tested

Comment 2 Huemi 2007-10-08 11:07:17 UTC

Created attachment 132903 [details]
parallel pam_ldap2.so

Used with pam_ldap_multiple_h_patch, when compiled as pam_ldap2.so can be used parallel with pam_ldap.so, so that you can use configfile1 with pam_ldap.so and configfile2 with pam_ldap2.so (you could extend this to pam_ldapxx.so

Comment 3 Huemi 2007-10-08 11:08:01 UTC

Created attachment 132905 [details]
parallel pam_ldap2.so (patch for pam_ldap.h)

see description for parallel pam_ldap2.so

Comment 4 Jakub Moc (RETIRED) gentoo-dev

2007-10-08 11:17:14 UTC

Please, get this accepted upstream, we are not going to do something they explicitely do not wish to support.