From 0ffebe6d24b8eb32347ce932c142613663947043 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Fri, 22 Nov 2024 12:10:57 +0100 Subject: [PATCH 01/17] examplebroker: Add support for local groups integration users --- examplebroker/broker.go | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/examplebroker/broker.go b/examplebroker/broker.go index 9bdb0624f..37774ecd0 100644 --- a/examplebroker/broker.go +++ b/examplebroker/broker.go @@ -217,6 +217,10 @@ func (b *Broker) NewSession(ctx context.Context, username, lang, mode string) (s info.pwdChange = canReset } + if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, "user-local-groups-integration") { + exampleUsers[username] = userInfoBroker{Password: "goodpass"} + } + pubASN1, err := x509.MarshalPKIXPublicKey(&b.privateKey.PublicKey) if err != nil { return "", "", err @@ -904,6 +908,10 @@ func userInfoFromName(name string) string { user.Groups = append(user.Groups, groupJSONInfo{Name: "sudo", UGID: ""}, groupJSONInfo{Name: "admin", UGID: ""}) } + if strings.HasPrefix(name, "user-local-groups-integration") { + user.Groups = append(user.Groups, groupJSONInfo{Name: "localgroup", UGID: ""}) + } + // only used for tests, we can ignore the template execution error as the returned data will be failing. var buf bytes.Buffer _ = template.Must(template.New("").Parse(`{ From 160fb40957a49250a100915b25fbcc4520dc1a42 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Fri, 22 Nov 2024 12:09:33 +0100 Subject: [PATCH 02/17] examplebroker: Move users to another file We can then expose these cleanly --- examplebroker/broker.go | 22 ---------------------- examplebroker/users.go | 25 +++++++++++++++++++++++++ 2 files changed, 25 insertions(+), 22 deletions(-) create mode 100644 examplebroker/users.go diff --git a/examplebroker/broker.go b/examplebroker/broker.go index 37774ecd0..e69ed744b 100644 --- a/examplebroker/broker.go +++ b/examplebroker/broker.go @@ -88,28 +88,6 @@ type Broker struct { sleepMultiplier float64 } -type userInfoBroker struct { - Password string -} - -var ( - exampleUsersMu = sync.RWMutex{} - exampleUsers = map[string]userInfoBroker{ - "user1": {Password: "goodpass"}, - "user2": {Password: "goodpass"}, - "user3": {Password: "goodpass"}, - "user-mfa": {Password: "goodpass"}, - "user-mfa-with-reset": {Password: "goodpass"}, - "user-needs-reset": {Password: "goodpass"}, - "user-needs-reset2": {Password: "goodpass"}, - "user-can-reset": {Password: "goodpass"}, - "user-can-reset2": {Password: "goodpass"}, - "user-local-groups": {Password: "goodpass"}, - "user-pre-check": {Password: "goodpass"}, - "user-sudo": {Password: "goodpass"}, - } -) - // New creates a new examplebroker object. func New(name string) (b *Broker, fullName, brandIcon string) { // Generate a new private key for the broker. diff --git a/examplebroker/users.go b/examplebroker/users.go new file mode 100644 index 000000000..cd4d61325 --- /dev/null +++ b/examplebroker/users.go @@ -0,0 +1,25 @@ +package examplebroker + +import "sync" + +type userInfoBroker struct { + Password string +} + +var ( + exampleUsersMu = sync.RWMutex{} + exampleUsers = map[string]userInfoBroker{ + "user1": {Password: "goodpass"}, + "user2": {Password: "goodpass"}, + "user3": {Password: "goodpass"}, + "user-mfa": {Password: "goodpass"}, + "user-mfa-with-reset": {Password: "goodpass"}, + "user-needs-reset": {Password: "goodpass"}, + "user-needs-reset2": {Password: "goodpass"}, + "user-can-reset": {Password: "goodpass"}, + "user-can-reset2": {Password: "goodpass"}, + "user-local-groups": {Password: "goodpass"}, + "user-pre-check": {Password: "goodpass"}, + "user-sudo": {Password: "goodpass"}, + } +) From 4355edcf7573bc9583d8f6c3bab712b1bba175b6 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Fri, 22 Nov 2024 12:52:47 +0100 Subject: [PATCH 03/17] examplebroker: Expose user integration prefixes and use them in tests Use const variables to build expected example broker user names so that we can be more reliable when testing them --- examplebroker/broker.go | 20 ++-- examplebroker/users.go | 23 ++++ pam/integration-tests/cli_test.go | 25 +++-- pam/integration-tests/gdm_test.go | 20 ++-- pam/integration-tests/native_test.go | 159 +++++++++++++++++---------- pam/integration-tests/ssh_test.go | 7 +- 6 files changed, 165 insertions(+), 89 deletions(-) diff --git a/examplebroker/broker.go b/examplebroker/broker.go index e69ed744b..780bf2dfc 100644 --- a/examplebroker/broker.go +++ b/examplebroker/broker.go @@ -151,7 +151,7 @@ func (b *Broker) NewSession(ctx context.Context, username, lang, mode string) (s case "user-mfa-with-reset": info.neededAuthSteps = 3 info.pwdChange = canReset - case "user-unexistent": + case UserIntegrationUnexistent: return "", "", fmt.Errorf("user %q does not exist", username) } @@ -162,40 +162,40 @@ func (b *Broker) NewSession(ctx context.Context, username, lang, mode string) (s exampleUsersMu.Lock() defer exampleUsersMu.Unlock() - if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, "user-integration") { + if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, UserIntegrationPrefix) { exampleUsers[username] = userInfoBroker{Password: "goodpass"} } - if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, "user-mfa-integration") { + if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, UserIntegrationMfaPrefix) { exampleUsers[username] = userInfoBroker{Password: "goodpass"} info.neededAuthSteps = 3 } - if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, "user-mfa-needs-reset-integration") { + if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, UserIntegrationMfaNeedsResetPrefix) { exampleUsers[username] = userInfoBroker{Password: "goodpass"} info.neededAuthSteps = 3 info.pwdChange = mustReset } - if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, "user-mfa-with-reset-integration") { + if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, UserIntegrationMfaWithResetPrefix) { exampleUsers[username] = userInfoBroker{Password: "goodpass"} info.neededAuthSteps = 3 info.pwdChange = canReset } - if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, "user-needs-reset-integration") { + if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, UserIntegrationNeedsResetPrefix) { exampleUsers[username] = userInfoBroker{Password: "goodpass"} info.neededAuthSteps = 2 info.pwdChange = mustReset } - if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, "user-can-reset-integration") { + if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, UserIntegrationCanResetPrefix) { exampleUsers[username] = userInfoBroker{Password: "goodpass"} info.neededAuthSteps = 2 info.pwdChange = canReset } - if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, "user-local-groups-integration") { + if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, UserIntegrationLocalGroupsPrefix) { exampleUsers[username] = userInfoBroker{Password: "goodpass"} } @@ -456,7 +456,7 @@ func qrcodeData(sessionInfo *sessionInfo) (content string, code string) { "https://www.ubuntu-it.org/", } - if strings.HasPrefix(sessionInfo.username, "user-integration-qrcode-static") { + if strings.HasPrefix(sessionInfo.username, UserIntegrationQrcodeStaticPrefix) { return qrcodeURIs[0], fmt.Sprint(baseCode) } @@ -763,7 +763,7 @@ func (b *Broker) cancelIsAuthenticatedUnlocked(_ context.Context, sessionID stri // UserPreCheck checks if the user is known to the broker. func (b *Broker) UserPreCheck(ctx context.Context, username string) (string, error) { - if strings.HasPrefix(username, "user-integration-pre-check") { + if strings.HasPrefix(username, UserIntegrationPreCheckPrefix) { return userInfoFromName(username), nil } if _, exists := exampleUsers[username]; !exists { diff --git a/examplebroker/users.go b/examplebroker/users.go index cd4d61325..0191e6b54 100644 --- a/examplebroker/users.go +++ b/examplebroker/users.go @@ -23,3 +23,26 @@ var ( "user-sudo": {Password: "goodpass"}, } ) + +const ( + // UserIntegrationPrefix is the prefix for an user for integration tests. + UserIntegrationPrefix = "user-integration-" + // UserIntegrationMfaPrefix is the prefix for an mfa user for integration tests. + UserIntegrationMfaPrefix = "user-mfa-integration-" + // UserIntegrationMfaNeedsResetPrefix is the prefix for an mfa-needs-reset user for integration tests. + UserIntegrationMfaNeedsResetPrefix = "user-mfa-needs-reset-integration-" + // UserIntegrationMfaWithResetPrefix is the prefix for an mfa-with-reset user for integration tests. + UserIntegrationMfaWithResetPrefix = "user-mfa-with-reset-integration-" + // UserIntegrationNeedsResetPrefix is the prefix for a needs-reset user for integration tests. + UserIntegrationNeedsResetPrefix = "user-needs-reset-integration-" + // UserIntegrationCanResetPrefix is the prefix for a can-reset user for integration tests. + UserIntegrationCanResetPrefix = "user-can-reset-integration-" + // UserIntegrationLocalGroupsPrefix is the prefix for a local-groups user for integration tests. + UserIntegrationLocalGroupsPrefix = "user-local-groups-integration-" + // UserIntegrationQrcodeStaticPrefix is the prefix for a static qrcode user for integration tests. + UserIntegrationQrcodeStaticPrefix = "user-integration-qrcode-static-" + // UserIntegrationPreCheckPrefix is the prefix for a pre-check user for integration tests. + UserIntegrationPreCheckPrefix = "user-integration-pre-check-" + // UserIntegrationUnexistent is an unexistent user leading to a non-existent user error. + UserIntegrationUnexistent = "user-unexistent" +) diff --git a/pam/integration-tests/cli_test.go b/pam/integration-tests/cli_test.go index b646e7ab3..4f599b2e4 100644 --- a/pam/integration-tests/cli_test.go +++ b/pam/integration-tests/cli_test.go @@ -9,6 +9,7 @@ import ( "github.com/msteinert/pam/v2" "github.com/stretchr/testify/require" + "github.com/ubuntu/authd/examplebroker" "github.com/ubuntu/authd/internal/testutils" localgroupstestutils "github.com/ubuntu/authd/internal/users/localgroups/testutils" "github.com/ubuntu/authd/pam/internal/pam_test" @@ -39,8 +40,10 @@ func TestCLIAuthenticate(t *testing.T) { tape: "simple_auth", }, "Authenticate user successfully with preset user": { - tape: "simple_auth_with_preset_user", - clientOptions: clientOptions{PamUser: "user-integration-simple-preset"}, + tape: "simple_auth_with_preset_user", + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "simple-preset", + }, }, "Authenticate user successfully after trying empty user": { tape: "simple_auth_empty_user", @@ -52,14 +55,16 @@ func TestCLIAuthenticate(t *testing.T) { tape: "form_with_button", }, "Authenticate user with qr code": { - tape: "qr_code", - clientOptions: clientOptions{PamUser: "user-integration-qr-code"}, + tape: "qr_code", + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "qr-code", + }, }, "Authenticate user with qr code in a TTY": { tape: "qr_code", tapeSettings: []tapeSetting{{vhsHeight, 650}}, clientOptions: clientOptions{ - PamUser: "user-integration-qr-code-tty", + PamUser: examplebroker.UserIntegrationPrefix + "qr-code-tty", Term: "linux", }, }, @@ -67,7 +72,7 @@ func TestCLIAuthenticate(t *testing.T) { tape: "qr_code", tapeSettings: []tapeSetting{{vhsHeight, 650}}, clientOptions: clientOptions{ - PamUser: "user-integration-qr-code-tty-session", + PamUser: examplebroker.UserIntegrationPrefix + "qr-code-tty-session", Term: "xterm-256color", SessionType: "tty", }, }, @@ -75,7 +80,7 @@ func TestCLIAuthenticate(t *testing.T) { tape: "qr_code", tapeSettings: []tapeSetting{{vhsHeight, 650}}, clientOptions: clientOptions{ - PamUser: "user-integration-qr-code-screen", + PamUser: examplebroker.UserIntegrationPrefix + "qr-code-screen", Term: "screen", }, }, @@ -121,8 +126,10 @@ func TestCLIAuthenticate(t *testing.T) { }, "Prevent user from switching username": { - tape: "switch_preset_username", - clientOptions: clientOptions{PamUser: "user-integration-pam-preset"}, + tape: "switch_preset_username", + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "pam-preset", + }, }, "Deny authentication if current user is not considered as root": { diff --git a/pam/integration-tests/gdm_test.go b/pam/integration-tests/gdm_test.go index 639349ea3..1788af26e 100644 --- a/pam/integration-tests/gdm_test.go +++ b/pam/integration-tests/gdm_test.go @@ -12,6 +12,7 @@ import ( "github.com/msteinert/pam/v2" "github.com/stretchr/testify/require" "github.com/ubuntu/authd" + "github.com/ubuntu/authd/examplebroker" "github.com/ubuntu/authd/internal/brokers" "github.com/ubuntu/authd/internal/testutils" "github.com/ubuntu/authd/pam/internal/gdm" @@ -177,7 +178,7 @@ func TestGdmModule(t *testing.T) { }, }, "Authenticates with MFA": { - pamUser: ptrValue("user-mfa-integration-basic"), + pamUser: ptrValue(examplebroker.UserIntegrationMfaPrefix + "basic"), wantAuthModeIDs: []string{passwordAuthID, fido1AuthID, phoneAck1ID}, eventPollResponses: map[gdm.EventType][]*gdm.EventData{ gdm.EventType_startAuthentication: { @@ -204,7 +205,7 @@ func TestGdmModule(t *testing.T) { }, }, "Authenticates user with MFA after retry": { - pamUser: ptrValue("user-mfa-integration-retry"), + pamUser: ptrValue(examplebroker.UserIntegrationMfaPrefix + "retry"), wantAuthModeIDs: []string{passwordAuthID, passwordAuthID, fido1AuthID, phoneAck1ID}, eventPollResponses: map[gdm.EventType][]*gdm.EventData{ gdm.EventType_startAuthentication: { @@ -262,7 +263,7 @@ func TestGdmModule(t *testing.T) { }, }, "Authenticates after password change": { - pamUser: ptrValue("user-needs-reset-integration-gdm-pass"), + pamUser: ptrValue(examplebroker.UserIntegrationNeedsResetPrefix + "gdm-pass"), wantAuthModeIDs: []string{passwordAuthID, newPasswordAuthID}, supportedLayouts: []*authd.UILayout{ pam_test.FormUILayout(), @@ -285,7 +286,7 @@ func TestGdmModule(t *testing.T) { }, }, "Authenticates after mfa authentication with wait and password change checking quality": { - pamUser: ptrValue("user-mfa-needs-reset-integration-gdm-wait-and-new-password"), + pamUser: ptrValue(examplebroker.UserIntegrationMfaNeedsResetPrefix + "gdm-wait-and-new-password"), wantAuthModeIDs: []string{ passwordAuthID, fido1AuthID, @@ -353,7 +354,7 @@ func TestGdmModule(t *testing.T) { }, }, "Authenticates after various invalid password changes": { - pamUser: ptrValue("user-needs-reset-integration-gdm-retries"), + pamUser: ptrValue(examplebroker.UserIntegrationNeedsResetPrefix + "gdm-retries"), wantAuthModeIDs: []string{ passwordAuthID, newPasswordAuthID, @@ -756,7 +757,7 @@ func TestGdmModule(t *testing.T) { wantAcctMgmtErr: pam_test.ErrIgnore, }, "Error on invalid fido ack": { - pamUser: ptrValue("user-mfa-integration-error-fido-ack"), + pamUser: ptrValue(examplebroker.UserIntegrationMfaPrefix + "error-fido-ack"), wantAuthModeIDs: []string{passwordAuthID, fido1AuthID}, eventPollResponses: map[gdm.EventType][]*gdm.EventData{ gdm.EventType_startAuthentication: { @@ -797,7 +798,8 @@ func TestGdmModule(t *testing.T) { serviceFile := createServiceFile(t, "gdm-authd", libPath, moduleArgs) saveArtifactsForDebugOnCleanup(t, []string{serviceFile}) - pamUser := "user-integration-" + strings.ReplaceAll(filepath.Base(t.Name()), "_", "-") + pamUser := examplebroker.UserIntegrationPrefix + "" + + strings.ReplaceAll(filepath.Base(t.Name()), "_", "-") if tc.pamUser != nil { pamUser = *tc.pamUser } @@ -902,7 +904,7 @@ func TestGdmModuleAuthenticateWithoutGdmExtension(t *testing.T) { serviceFile := createServiceFile(t, "gdm-authd", libPath, moduleArgs) saveArtifactsForDebugOnCleanup(t, []string{serviceFile}) - pamUser := "user-integration-auth-no-gdm-extension" + pamUser := examplebroker.UserIntegrationPrefix + "auth-no-gdm-extension" gh := newGdmTestModuleHandler(t, serviceFile, pamUser) t.Cleanup(func() { require.NoError(t, gh.tx.End(), "PAM: can't end transaction") }) @@ -936,7 +938,7 @@ func TestGdmModuleAcctMgmtWithoutGdmExtension(t *testing.T) { serviceFile := createServiceFile(t, "gdm-authd", libPath, moduleArgs) saveArtifactsForDebugOnCleanup(t, []string{serviceFile}) - pamUser := "user-integration-acctmgmt-no-gdm-extension" + pamUser := examplebroker.UserIntegrationPrefix + "acctmgmt-no-gdm-extension" gh := newGdmTestModuleHandler(t, serviceFile, pamUser) t.Cleanup(func() { require.NoError(t, gh.tx.End(), "PAM: can't end transaction") }) diff --git a/pam/integration-tests/native_test.go b/pam/integration-tests/native_test.go index 644eb0de5..6c51e6082 100644 --- a/pam/integration-tests/native_test.go +++ b/pam/integration-tests/native_test.go @@ -8,6 +8,7 @@ import ( "testing" "github.com/stretchr/testify/require" + "github.com/ubuntu/authd/examplebroker" "github.com/ubuntu/authd/internal/testutils" localgroupstestutils "github.com/ubuntu/authd/internal/users/localgroups/testutils" "github.com/ubuntu/authd/pam/internal/pam_test" @@ -36,34 +37,42 @@ func TestNativeAuthenticate(t *testing.T) { wantLocalGroups bool }{ "Authenticate user successfully": { - tape: "simple_auth", - clientOptions: clientOptions{PamUser: "user-integration-simple-auth"}, + tape: "simple_auth", + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "simple-auth", + }, }, "Authenticate user successfully with user selection": { tape: "simple_auth_with_user_selection", }, "Authenticate user with mfa": { - tape: "mfa_auth", - tapeSettings: []tapeSetting{{vhsHeight, 800}}, - clientOptions: clientOptions{PamUser: "user-mfa-integration-auth"}, + tape: "mfa_auth", + tapeSettings: []tapeSetting{{vhsHeight, 800}}, + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationMfaPrefix + "auth", + }, }, "Authenticate user with form mode with button": { - tape: "form_with_button", - tapeSettings: []tapeSetting{{vhsHeight, 600}}, - clientOptions: clientOptions{PamUser: "user-integration-form-w-button"}, + tape: "form_with_button", + tapeSettings: []tapeSetting{{vhsHeight, 600}}, + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "form-w-button", + }, }, "Authenticate user with qr code": { tape: "qr_code", tapeSettings: []tapeSetting{{vhsHeight, 2300}}, tapeVariables: map[string]string{"AUTHD_QRCODE_TAPE_ITEM": "7"}, - clientOptions: clientOptions{PamUser: "user-integration-qr-code"}, + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "qr-code", + }, }, "Authenticate user with qr code in a TTY": { tape: "qr_code", tapeSettings: []tapeSetting{{vhsHeight, 3700}}, tapeVariables: map[string]string{"AUTHD_QRCODE_TAPE_ITEM": "7"}, clientOptions: clientOptions{ - PamUser: "user-integration-qr-code-tty", + PamUser: examplebroker.UserIntegrationPrefix + "qr-code-tty", Term: "linux", }, }, @@ -72,7 +81,7 @@ func TestNativeAuthenticate(t *testing.T) { tapeSettings: []tapeSetting{{vhsHeight, 3700}}, tapeVariables: map[string]string{"AUTHD_QRCODE_TAPE_ITEM": "7"}, clientOptions: clientOptions{ - PamUser: "user-integration-qr-code-tty-session", + PamUser: examplebroker.UserIntegrationPrefix + "qr-code-tty-session", Term: "xterm-256color", SessionType: "tty", }, }, @@ -81,7 +90,7 @@ func TestNativeAuthenticate(t *testing.T) { tapeSettings: []tapeSetting{{vhsHeight, 3700}}, tapeVariables: map[string]string{"AUTHD_QRCODE_TAPE_ITEM": "7"}, clientOptions: clientOptions{ - PamUser: "user-integration-qr-code-screen", + PamUser: examplebroker.UserIntegrationPrefix + "qr-code-screen", Term: "screen", }, }, @@ -90,7 +99,7 @@ func TestNativeAuthenticate(t *testing.T) { tapeSettings: []tapeSetting{{vhsHeight, 3500}}, tapeVariables: map[string]string{"AUTHD_QRCODE_TAPE_ITEM": "2"}, clientOptions: clientOptions{ - PamUser: "user-integration-qr-code-polkit", + PamUser: examplebroker.UserIntegrationPrefix + "qr-code-polkit", PamServiceName: "polkit-1", }, }, @@ -99,64 +108,78 @@ func TestNativeAuthenticate(t *testing.T) { tapeSettings: []tapeSetting{{vhsHeight, 3500}}, tapeVariables: map[string]string{"AUTHD_QRCODE_TAPE_ITEM": "2"}, clientOptions: clientOptions{ - PamUser: "user-integration-pre-check-ssh-service-qr-code", + PamUser: examplebroker.UserIntegrationPreCheckPrefix + "ssh-service-qr-code", PamServiceName: "sshd", }, }, "Authenticate user and reset password while enforcing policy": { - tape: "mandatory_password_reset", - clientOptions: clientOptions{PamUser: "user-needs-reset-integration-mandatory"}, + tape: "mandatory_password_reset", + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationNeedsResetPrefix + "mandatory", + }, }, "Authenticate user with mfa and reset password while enforcing policy": { - tape: "mfa_reset_pwquality_auth", - tapeSettings: []tapeSetting{{vhsHeight, 1000}}, - clientOptions: clientOptions{PamUser: "user-mfa-with-reset-integration-pwquality"}, + tape: "mfa_reset_pwquality_auth", + tapeSettings: []tapeSetting{{vhsHeight, 1000}}, + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationMfaWithResetPrefix + "pwquality", + }, }, "Authenticate user and offer password reset": { - tape: "optional_password_reset_skip", - clientOptions: clientOptions{PamUser: "user-can-reset-integration-skip"}, + tape: "optional_password_reset_skip", + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationCanResetPrefix + "skip", + }, }, "Authenticate user and accept password reset": { - tape: "optional_password_reset_accept", - clientOptions: clientOptions{PamUser: "user-can-reset-integration-accept"}, + tape: "optional_password_reset_accept", + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationCanResetPrefix + "accept", + }, }, "Authenticate user switching auth mode": { - tape: "switch_auth_mode", - tapeSettings: []tapeSetting{{vhsHeight, 3000}}, - clientOptions: clientOptions{PamUser: "user-integration-switch-mode"}, + tape: "switch_auth_mode", + tapeSettings: []tapeSetting{{vhsHeight, 3000}}, + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "switch-mode", + }, tapeVariables: map[string]string{"AUTHD_SWITCH_AUTH_MODE_TAPE_PIN_CODE_ITEM": "6"}, }, "Authenticate user switching username": { tape: "switch_username", }, "Authenticate user switching to local broker": { - tape: "switch_local_broker", - tapeSettings: []tapeSetting{{vhsHeight, 700}}, - clientOptions: clientOptions{PamUser: "user-integration-switch-broker"}, + tape: "switch_local_broker", + tapeSettings: []tapeSetting{{vhsHeight, 700}}, + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "switch-broker", + }, }, "Authenticate user and add it to local group": { tape: "local_group", wantLocalGroups: true, - clientOptions: clientOptions{PamUser: "user-local-groups"}, + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationLocalGroupsPrefix + "auth", + }, }, "Authenticate user on ssh service": { tape: "simple_ssh_auth", clientOptions: clientOptions{ - PamUser: "user-integration-pre-check-ssh-service", + PamUser: examplebroker.UserIntegrationPreCheckPrefix + "ssh-service", PamServiceName: "sshd", }, }, "Authenticate user on ssh service with custom name and connection env": { tape: "simple_ssh_auth", clientOptions: clientOptions{ - PamUser: "user-integration-pre-check-ssh-connection", + PamUser: examplebroker.UserIntegrationPreCheckPrefix + "ssh-connection", PamEnv: []string{"SSH_CONNECTION=foo-connection"}, }, }, "Authenticate user on ssh service with custom name and auth info env": { tape: "simple_ssh_auth", clientOptions: clientOptions{ - PamUser: "user-integration-pre-check-ssh-auth-info", + PamUser: examplebroker.UserIntegrationPreCheckPrefix + "ssh-auth-info", PamEnv: []string{"SSH_AUTH_INFO_0=foo-authinfo"}, }, }, @@ -164,80 +187,100 @@ func TestNativeAuthenticate(t *testing.T) { tape: "simple_auth_with_unsupported_args", tapeCommand: strings.ReplaceAll(tapeCommand, "force_native_client=true", "invalid_flag=foo force_native_client=true bar"), - clientOptions: clientOptions{PamUser: "user-integration-with-unsupported-args"}, + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "with-unsupported-args", + }, }, "Remember last successful broker and mode": { - tape: "remember_broker_and_mode", - tapeSettings: []tapeSetting{{vhsHeight, 800}}, - clientOptions: clientOptions{PamUser: "user-integration-remember-mode"}, + tape: "remember_broker_and_mode", + tapeSettings: []tapeSetting{{vhsHeight, 800}}, + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "remember-mode", + }, }, "Autoselect local broker for local user": { tape: "local_user", }, "Autoselect local broker for local user preset": { - tape: "local_user_preset", - clientOptions: clientOptions{PamUser: "root"}, + tape: "local_user_preset", + clientOptions: clientOptions{ + PamUser: "root", + }, }, "Deny authentication if current user is not considered as root": { tape: "not_root", currentUserNotRoot: true, - clientOptions: clientOptions{PamUser: "user-integration-not-root"}, + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "not-root", + }, }, "Deny authentication if max attempts reached": { - tape: "max_attempts", - tapeSettings: []tapeSetting{{vhsHeight, 700}}, - clientOptions: clientOptions{PamUser: "user-integration-max-attempts"}, + tape: "max_attempts", + tapeSettings: []tapeSetting{{vhsHeight, 700}}, + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "max-attempts", + }, }, "Deny authentication if user does not exist": { - tape: "unexistent_user", - clientOptions: clientOptions{PamUser: "user-unexistent"}, + tape: "unexistent_user", + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationUnexistent, + }, }, "Deny authentication if user does not exist and matches cancel key": { tape: "cancel_key_user", }, "Deny authentication if newpassword does not match required criteria": { - tape: "bad_password", - tapeSettings: []tapeSetting{{vhsHeight, 800}}, - clientOptions: clientOptions{PamUser: "user-needs-reset-integration-bad-password"}, + tape: "bad_password", + tapeSettings: []tapeSetting{{vhsHeight, 800}}, + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationNeedsResetPrefix + "bad-password", + }, }, "Prevent preset user from switching username": { - tape: "switch_preset_username", - tapeSettings: []tapeSetting{{vhsHeight, 800}}, - clientOptions: clientOptions{PamUser: "user-integration-pam-preset"}, + tape: "switch_preset_username", + tapeSettings: []tapeSetting{{vhsHeight, 800}}, + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "pam-preset", + }, }, "Exit authd if local broker is selected": { - tape: "local_broker", - clientOptions: clientOptions{PamUser: "user-local-broker"}, + tape: "local_broker", + clientOptions: clientOptions{ + PamUser: "user-local-broker", + }, }, "Exit if user is not pre-checked on ssh service": { tape: "local_ssh", clientOptions: clientOptions{ - PamUser: "user-integration-ssh-service", + PamUser: examplebroker.UserIntegrationPrefix + "ssh-service", PamServiceName: "sshd", }, }, "Exit if user is not pre-checked on custom ssh service with connection env": { tape: "local_ssh", clientOptions: clientOptions{ - PamUser: "user-integration-ssh-connection", + PamUser: examplebroker.UserIntegrationPrefix + "ssh-connection", PamEnv: []string{"SSH_CONNECTION=foo-connection"}, }, }, "Exit if user is not pre-checked on custom ssh service with auth info env": { tape: "local_ssh", clientOptions: clientOptions{ - PamUser: "user-integration-ssh-auth-info", + PamUser: examplebroker.UserIntegrationPrefix + "ssh-auth-info", PamEnv: []string{"SSH_AUTH_INFO_0=foo-authinfo"}, }, }, // FIXME: While this works now, it requires proper handling via signal_fd "Exit authd if user sigints": { - tape: "sigint", - clientOptions: clientOptions{PamUser: "user-integration-sigint"}, + tape: "sigint", + clientOptions: clientOptions{ + PamUser: examplebroker.UserIntegrationPrefix + "sigint", + }, }, } for name, tc := range tests { diff --git a/pam/integration-tests/ssh_test.go b/pam/integration-tests/ssh_test.go index 522b10aca..037e8b8cc 100644 --- a/pam/integration-tests/ssh_test.go +++ b/pam/integration-tests/ssh_test.go @@ -21,6 +21,7 @@ import ( "time" "github.com/stretchr/testify/require" + "github.com/ubuntu/authd/examplebroker" "github.com/ubuntu/authd/internal/testutils" localgroupstestutils "github.com/ubuntu/authd/internal/users/localgroups/testutils" "github.com/ubuntu/authd/pam/internal/pam_test" @@ -171,7 +172,7 @@ func testSSHAuthenticate(t *testing.T, sharedSSHd bool) { }, "Deny authentication if user does not exist": { tape: "unexistent_user", - user: "user-unexistent", + user: examplebroker.UserIntegrationUnexistent, wantNotLoggedInUser: true, }, "Deny authentication if user does not exist and matches cancel key": { @@ -194,7 +195,7 @@ func testSSHAuthenticate(t *testing.T, sharedSSHd bool) { }, "Exit if user is not pre-checked on ssh service": { tape: "local_ssh", - user: "user-integration-ssh-service", + user: examplebroker.UserIntegrationPrefix + "ssh-service", pamServiceName: "sshd", wantNotLoggedInUser: true, }, @@ -223,7 +224,7 @@ func testSSHAuthenticate(t *testing.T, sharedSSHd bool) { user := tc.user if user == "" { - user = "user-integration-pre-check-" + strings.ReplaceAll( + user = examplebroker.UserIntegrationPreCheckPrefix + strings.ReplaceAll( strings.ToLower(filepath.Base(t.Name())), "_", "-") } From 667b7b972d0358c8cbbef9d1fd3554ec9514d298 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Thu, 21 Nov 2024 21:26:50 +0100 Subject: [PATCH 04/17] pam/integration-tests/vhs: Add function to define integration test user names This is valid for the standard case, while on specific cases we still rely on manual names --- pam/integration-tests/ssh_test.go | 3 +-- pam/integration-tests/vhs-helpers_test.go | 22 ++++++++++++++++++++++ 2 files changed, 23 insertions(+), 2 deletions(-) diff --git a/pam/integration-tests/ssh_test.go b/pam/integration-tests/ssh_test.go index 037e8b8cc..3d533b8ea 100644 --- a/pam/integration-tests/ssh_test.go +++ b/pam/integration-tests/ssh_test.go @@ -224,8 +224,7 @@ func testSSHAuthenticate(t *testing.T, sharedSSHd bool) { user := tc.user if user == "" { - user = examplebroker.UserIntegrationPreCheckPrefix + strings.ReplaceAll( - strings.ToLower(filepath.Base(t.Name())), "_", "-") + user = vhsTestUserNameFull(t, examplebroker.UserIntegrationPreCheckPrefix, "") } sshdPort := defaultSSHDPort diff --git a/pam/integration-tests/vhs-helpers_test.go b/pam/integration-tests/vhs-helpers_test.go index 4e27fb2c8..702dc425a 100644 --- a/pam/integration-tests/vhs-helpers_test.go +++ b/pam/integration-tests/vhs-helpers_test.go @@ -15,6 +15,7 @@ import ( "unicode/utf8" "github.com/stretchr/testify/require" + "github.com/ubuntu/authd/examplebroker" permissionstestutils "github.com/ubuntu/authd/internal/services/permissions/testutils" "github.com/ubuntu/authd/internal/testutils" "github.com/ubuntu/authd/pam/internal/pam_test" @@ -322,3 +323,24 @@ func evaluateTapeVariables(t *testing.T, tapeString string, td tapeData) string return tapeString } + +func vhsTestUserNameFull(t *testing.T, userPrefix string, namePrefix string) string { + t.Helper() + + require.NotEmpty(t, userPrefix, "Setup: user prefix needs to be set", t.Name()) + if userPrefix[len(userPrefix)-1] != '-' { + userPrefix += "-" + } + if namePrefix != "" && namePrefix[len(namePrefix)-1] != '-' { + namePrefix += "-" + } + return userPrefix + namePrefix + strings.ReplaceAll( + strings.ToLower(filepath.Base(t.Name())), "_", "-") +} + +func vhsTestUserName(t *testing.T, prefix string) string { + t.Helper() + + require.NotEmpty(t, prefix, "Setup: user prefix needs to be set", t.Name()) + return vhsTestUserNameFull(t, examplebroker.UserIntegrationPrefix, prefix) +} From d3afdb2157d5c7064bfff36b640b78d347e00243 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Thu, 17 Oct 2024 15:24:58 +0200 Subject: [PATCH 05/17] pam/integration-tests/gdm: Use unique test user names --- pam/integration-tests/gdm_test.go | 24 +++++++++++++----------- 1 file changed, 13 insertions(+), 11 deletions(-) diff --git a/pam/integration-tests/gdm_test.go b/pam/integration-tests/gdm_test.go index 1788af26e..e027d5eca 100644 --- a/pam/integration-tests/gdm_test.go +++ b/pam/integration-tests/gdm_test.go @@ -5,7 +5,6 @@ import ( "os" "os/exec" "path/filepath" - "strings" "testing" "time" @@ -129,6 +128,7 @@ func TestGdmModule(t *testing.T) { testCases := map[string]struct { supportedLayouts []*authd.UILayout pamUser *string + pamUserPrefix string protoVersion uint32 brokerName string eventPollResponses map[gdm.EventType][]*gdm.EventData @@ -178,7 +178,7 @@ func TestGdmModule(t *testing.T) { }, }, "Authenticates with MFA": { - pamUser: ptrValue(examplebroker.UserIntegrationMfaPrefix + "basic"), + pamUserPrefix: examplebroker.UserIntegrationMfaPrefix, wantAuthModeIDs: []string{passwordAuthID, fido1AuthID, phoneAck1ID}, eventPollResponses: map[gdm.EventType][]*gdm.EventData{ gdm.EventType_startAuthentication: { @@ -205,7 +205,7 @@ func TestGdmModule(t *testing.T) { }, }, "Authenticates user with MFA after retry": { - pamUser: ptrValue(examplebroker.UserIntegrationMfaPrefix + "retry"), + pamUserPrefix: examplebroker.UserIntegrationMfaPrefix, wantAuthModeIDs: []string{passwordAuthID, passwordAuthID, fido1AuthID, phoneAck1ID}, eventPollResponses: map[gdm.EventType][]*gdm.EventData{ gdm.EventType_startAuthentication: { @@ -263,7 +263,7 @@ func TestGdmModule(t *testing.T) { }, }, "Authenticates after password change": { - pamUser: ptrValue(examplebroker.UserIntegrationNeedsResetPrefix + "gdm-pass"), + pamUserPrefix: examplebroker.UserIntegrationNeedsResetPrefix, wantAuthModeIDs: []string{passwordAuthID, newPasswordAuthID}, supportedLayouts: []*authd.UILayout{ pam_test.FormUILayout(), @@ -286,7 +286,7 @@ func TestGdmModule(t *testing.T) { }, }, "Authenticates after mfa authentication with wait and password change checking quality": { - pamUser: ptrValue(examplebroker.UserIntegrationMfaNeedsResetPrefix + "gdm-wait-and-new-password"), + pamUserPrefix: examplebroker.UserIntegrationMfaNeedsResetPrefix, wantAuthModeIDs: []string{ passwordAuthID, fido1AuthID, @@ -354,7 +354,7 @@ func TestGdmModule(t *testing.T) { }, }, "Authenticates after various invalid password changes": { - pamUser: ptrValue(examplebroker.UserIntegrationNeedsResetPrefix + "gdm-retries"), + pamUserPrefix: examplebroker.UserIntegrationNeedsResetPrefix, wantAuthModeIDs: []string{ passwordAuthID, newPasswordAuthID, @@ -757,7 +757,7 @@ func TestGdmModule(t *testing.T) { wantAcctMgmtErr: pam_test.ErrIgnore, }, "Error on invalid fido ack": { - pamUser: ptrValue(examplebroker.UserIntegrationMfaPrefix + "error-fido-ack"), + pamUserPrefix: examplebroker.UserIntegrationMfaPrefix, wantAuthModeIDs: []string{passwordAuthID, fido1AuthID}, eventPollResponses: map[gdm.EventType][]*gdm.EventData{ gdm.EventType_startAuthentication: { @@ -798,8 +798,10 @@ func TestGdmModule(t *testing.T) { serviceFile := createServiceFile(t, "gdm-authd", libPath, moduleArgs) saveArtifactsForDebugOnCleanup(t, []string{serviceFile}) - pamUser := examplebroker.UserIntegrationPrefix + "" + - strings.ReplaceAll(filepath.Base(t.Name()), "_", "-") + pamUser := vhsTestUserName(t, "gdm") + if tc.pamUserPrefix != "" { + pamUser = vhsTestUserNameFull(t, tc.pamUserPrefix, "gdm") + } if tc.pamUser != nil { pamUser = *tc.pamUser } @@ -904,7 +906,7 @@ func TestGdmModuleAuthenticateWithoutGdmExtension(t *testing.T) { serviceFile := createServiceFile(t, "gdm-authd", libPath, moduleArgs) saveArtifactsForDebugOnCleanup(t, []string{serviceFile}) - pamUser := examplebroker.UserIntegrationPrefix + "auth-no-gdm-extension" + pamUser := vhsTestUserName(t, "gdm") gh := newGdmTestModuleHandler(t, serviceFile, pamUser) t.Cleanup(func() { require.NoError(t, gh.tx.End(), "PAM: can't end transaction") }) @@ -938,7 +940,7 @@ func TestGdmModuleAcctMgmtWithoutGdmExtension(t *testing.T) { serviceFile := createServiceFile(t, "gdm-authd", libPath, moduleArgs) saveArtifactsForDebugOnCleanup(t, []string{serviceFile}) - pamUser := examplebroker.UserIntegrationPrefix + "acctmgmt-no-gdm-extension" + pamUser := vhsTestUserName(t, "gdm") gh := newGdmTestModuleHandler(t, serviceFile, pamUser) t.Cleanup(func() { require.NoError(t, gh.tx.End(), "PAM: can't end transaction") }) From 5b21a31d7312cc3f3feccbdeb3df1298e41b61b2 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Wed, 16 Oct 2024 19:36:07 +0200 Subject: [PATCH 06/17] pam/integration-tests/native: Ensure user names are unique for all tests So we can run a shared authd for everything --- pam/integration-tests/native_test.go | 90 ++--- ...uthenticate_user_and_accept_password_reset | 6 +- ...uthenticate_user_and_add_it_to_local_group | 4 +- ...user_and_add_it_to_local_group.gpasswd_out | 2 +- ...authenticate_user_and_offer_password_reset | 4 +- ..._and_reset_password_while_enforcing_policy | 4 +- .../golden/authenticate_user_on_ssh_service | 4 +- ...service_with_custom_name_and_auth_info_env | 6 +- ...ervice_with_custom_name_and_connection_env | 6 +- .../golden/authenticate_user_successfully | 6 +- ...cate_user_successfully_with_user_selection | 12 +- .../authenticate_user_switching_auth_mode | 317 ++++++++++-------- ...uthenticate_user_switching_to_local_broker | 20 +- .../authenticate_user_switching_username | 30 +- ...thenticate_user_with_form_mode_with_button | 16 +- .../golden/authenticate_user_with_mfa | 22 +- ..._and_reset_password_while_enforcing_policy | 6 +- .../golden/authenticate_user_with_qr_code | 18 +- .../authenticate_user_with_qr_code_in_a_tty | 24 +- ...nticate_user_with_qr_code_in_a_tty_session | 33 +- .../authenticate_user_with_qr_code_in_polkit | 24 +- .../authenticate_user_with_qr_code_in_screen | 24 +- .../authenticate_user_with_qr_code_in_ssh | 24 +- ...ate_with_warnings_on_unsupported_arguments | 6 +- ..._if_current_user_is_not_considered_as_root | 8 +- ...eny_authentication_if_max_attempts_reached | 8 +- ...wpassword_does_not_match_required_criteria | 6 +- .../exit_authd_if_local_broker_is_selected | 8 +- ...d_on_custom_ssh_service_with_auth_info_env | 10 +- ..._on_custom_ssh_service_with_connection_env | 10 +- ..._if_user_is_not_pre-checked_on_ssh_service | 8 +- ...revent_preset_user_from_switching_username | 20 +- .../remember_last_successful_broker_and_mode | 37 +- .../simple_auth_with_user_selection.tape | 2 +- .../tapes/native/switch_username.tape | 4 +- pam/integration-tests/vhs-helpers_test.go | 3 +- 36 files changed, 438 insertions(+), 394 deletions(-) diff --git a/pam/integration-tests/native_test.go b/pam/integration-tests/native_test.go index 6c51e6082..457f3b185 100644 --- a/pam/integration-tests/native_test.go +++ b/pam/integration-tests/native_test.go @@ -34,16 +34,18 @@ func TestNativeAuthenticate(t *testing.T) { clientOptions clientOptions currentUserNotRoot bool + userSelection bool wantLocalGroups bool }{ "Authenticate user successfully": { tape: "simple_auth", - clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "simple-auth", - }, }, "Authenticate user successfully with user selection": { - tape: "simple_auth_with_user_selection", + tape: "simple_auth_with_user_selection", + userSelection: true, + tapeVariables: map[string]string{ + vhsTapeUserVariable: examplebroker.UserIntegrationPrefix + "native-user-selection", + }, }, "Authenticate user with mfa": { tape: "mfa_auth", @@ -55,34 +57,26 @@ func TestNativeAuthenticate(t *testing.T) { "Authenticate user with form mode with button": { tape: "form_with_button", tapeSettings: []tapeSetting{{vhsHeight, 600}}, - clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "form-w-button", - }, }, "Authenticate user with qr code": { tape: "qr_code", tapeSettings: []tapeSetting{{vhsHeight, 2300}}, tapeVariables: map[string]string{"AUTHD_QRCODE_TAPE_ITEM": "7"}, - clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "qr-code", - }, }, "Authenticate user with qr code in a TTY": { tape: "qr_code", tapeSettings: []tapeSetting{{vhsHeight, 3700}}, tapeVariables: map[string]string{"AUTHD_QRCODE_TAPE_ITEM": "7"}, clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "qr-code-tty", - Term: "linux", + Term: "linux", }, }, "Authenticate user with qr code in a TTY session": { tape: "qr_code", - tapeSettings: []tapeSetting{{vhsHeight, 3700}}, + tapeSettings: []tapeSetting{{vhsHeight, 3800}}, tapeVariables: map[string]string{"AUTHD_QRCODE_TAPE_ITEM": "7"}, clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "qr-code-tty-session", - Term: "xterm-256color", SessionType: "tty", + Term: "xterm-256color", SessionType: "tty", }, }, "Authenticate user with qr code in screen": { @@ -90,8 +84,7 @@ func TestNativeAuthenticate(t *testing.T) { tapeSettings: []tapeSetting{{vhsHeight, 3700}}, tapeVariables: map[string]string{"AUTHD_QRCODE_TAPE_ITEM": "7"}, clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "qr-code-screen", - Term: "screen", + Term: "screen", }, }, "Authenticate user with qr code in polkit": { @@ -99,7 +92,6 @@ func TestNativeAuthenticate(t *testing.T) { tapeSettings: []tapeSetting{{vhsHeight, 3500}}, tapeVariables: map[string]string{"AUTHD_QRCODE_TAPE_ITEM": "2"}, clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "qr-code-polkit", PamServiceName: "polkit-1", }, }, @@ -113,7 +105,8 @@ func TestNativeAuthenticate(t *testing.T) { }, }, "Authenticate user and reset password while enforcing policy": { - tape: "mandatory_password_reset", + tape: "mandatory_password_reset", + tapeSettings: []tapeSetting{{vhsHeight, 550}}, clientOptions: clientOptions{ PamUser: examplebroker.UserIntegrationNeedsResetPrefix + "mandatory", }, @@ -138,22 +131,21 @@ func TestNativeAuthenticate(t *testing.T) { }, }, "Authenticate user switching auth mode": { - tape: "switch_auth_mode", - tapeSettings: []tapeSetting{{vhsHeight, 3000}}, - clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "switch-mode", - }, + tape: "switch_auth_mode", + tapeSettings: []tapeSetting{{vhsHeight, 3000}}, tapeVariables: map[string]string{"AUTHD_SWITCH_AUTH_MODE_TAPE_PIN_CODE_ITEM": "6"}, }, "Authenticate user switching username": { - tape: "switch_username", + tape: "switch_username", + userSelection: true, + tapeVariables: map[string]string{ + vhsTapeUserVariable: examplebroker.UserIntegrationPrefix + "native-username", + vhsTapeUserVariable + "_SWITCHED": examplebroker.UserIntegrationPrefix + "native-username-switched", + }, }, "Authenticate user switching to local broker": { tape: "switch_local_broker", tapeSettings: []tapeSetting{{vhsHeight, 700}}, - clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "switch-broker", - }, }, "Authenticate user and add it to local group": { tape: "local_group", @@ -187,20 +179,15 @@ func TestNativeAuthenticate(t *testing.T) { tape: "simple_auth_with_unsupported_args", tapeCommand: strings.ReplaceAll(tapeCommand, "force_native_client=true", "invalid_flag=foo force_native_client=true bar"), - clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "with-unsupported-args", - }, }, "Remember last successful broker and mode": { tape: "remember_broker_and_mode", tapeSettings: []tapeSetting{{vhsHeight, 800}}, - clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "remember-mode", - }, }, "Autoselect local broker for local user": { - tape: "local_user", + tape: "local_user", + userSelection: true, }, "Autoselect local broker for local user preset": { tape: "local_user_preset", @@ -211,17 +198,11 @@ func TestNativeAuthenticate(t *testing.T) { "Deny authentication if current user is not considered as root": { tape: "not_root", currentUserNotRoot: true, - clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "not-root", - }, }, "Deny authentication if max attempts reached": { tape: "max_attempts", tapeSettings: []tapeSetting{{vhsHeight, 700}}, - clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "max-attempts", - }, }, "Deny authentication if user does not exist": { tape: "unexistent_user", @@ -230,7 +211,8 @@ func TestNativeAuthenticate(t *testing.T) { }, }, "Deny authentication if user does not exist and matches cancel key": { - tape: "cancel_key_user", + tape: "cancel_key_user", + userSelection: true, }, "Deny authentication if newpassword does not match required criteria": { tape: "bad_password", @@ -243,44 +225,32 @@ func TestNativeAuthenticate(t *testing.T) { "Prevent preset user from switching username": { tape: "switch_preset_username", tapeSettings: []tapeSetting{{vhsHeight, 800}}, - clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "pam-preset", - }, }, "Exit authd if local broker is selected": { tape: "local_broker", - clientOptions: clientOptions{ - PamUser: "user-local-broker", - }, }, "Exit if user is not pre-checked on ssh service": { tape: "local_ssh", clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "ssh-service", PamServiceName: "sshd", }, }, "Exit if user is not pre-checked on custom ssh service with connection env": { tape: "local_ssh", clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "ssh-connection", - PamEnv: []string{"SSH_CONNECTION=foo-connection"}, + PamEnv: []string{"SSH_CONNECTION=foo-connection"}, }, }, "Exit if user is not pre-checked on custom ssh service with auth info env": { tape: "local_ssh", clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "ssh-auth-info", - PamEnv: []string{"SSH_AUTH_INFO_0=foo-authinfo"}, + PamEnv: []string{"SSH_AUTH_INFO_0=foo-authinfo"}, }, }, // FIXME: While this works now, it requires proper handling via signal_fd "Exit authd if user sigints": { tape: "sigint", - clientOptions: clientOptions{ - PamUser: examplebroker.UserIntegrationPrefix + "sigint", - }, }, } for name, tc := range tests { @@ -307,6 +277,14 @@ func TestNativeAuthenticate(t *testing.T) { if tc.tapeCommand == "" { tc.tapeCommand = tapeCommand } + + if u := tc.clientOptions.PamUser; strings.Contains(u, "integration") && !strings.Contains(u, "native") { + tc.clientOptions.PamUser += "-native" + } + if tc.clientOptions.PamUser == "" && !tc.userSelection { + tc.clientOptions.PamUser = vhsTestUserName(t, "native") + } + td := newTapeData(tc.tape, tc.tapeSettings...) td.Command = tc.tapeCommand td.CommandSleep = defaultSleepValues[authdSleepCommand] * 2 diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_accept_password_reset b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_accept_password_reset index 626ffee8f..d2ba58289 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_accept_password_reset +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_accept_password_reset @@ -99,7 +99,7 @@ Enter your new password (3 days until mandatory): > Confirm Password: > -PAM Authenticate() for user "user-can-reset-integration-accept" exited with success +PAM Authenticate() for user "user-can-reset-integration-accept-native" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -125,7 +125,7 @@ Enter your new password (3 days until mandatory): > Confirm Password: > -PAM Authenticate() for user "user-can-reset-integration-accept" exited with success +PAM Authenticate() for user "user-can-reset-integration-accept-native" exited with success PAM AcctMgmt() exited with success > > @@ -152,7 +152,7 @@ Enter your new password (3 days until mandatory): > Confirm Password: > -PAM Authenticate() for user "user-can-reset-integration-accept" exited with success +PAM Authenticate() for user "user-can-reset-integration-accept-native" exited with success PAM AcctMgmt() exited with success > > diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_add_it_to_local_group b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_add_it_to_local_group index f438d2460..36bfbce01 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_add_it_to_local_group +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_add_it_to_local_group @@ -26,7 +26,7 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-local-groups" exited with success +PAM Authenticate() for user "user-local-groups-integration-auth-native" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -40,7 +40,7 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-local-groups" exited with success +PAM Authenticate() for user "user-local-groups-integration-auth-native" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_add_it_to_local_group.gpasswd_out b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_add_it_to_local_group.gpasswd_out index 63ddd3d8f..4f5e85619 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_add_it_to_local_group.gpasswd_out +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_add_it_to_local_group.gpasswd_out @@ -1 +1 @@ ---add user-local-groups localgroup \ No newline at end of file +--add user-local-groups-integration-auth-native localgroup \ No newline at end of file diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_offer_password_reset b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_offer_password_reset index 4093ec1c0..e877a2bd1 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_offer_password_reset +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_offer_password_reset @@ -49,7 +49,7 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose action: > 2 -PAM Authenticate() for user "user-can-reset-integration-skip" exited with success +PAM Authenticate() for user "user-can-reset-integration-skip-native" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -69,7 +69,7 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose action: > 2 -PAM Authenticate() for user "user-can-reset-integration-skip" exited with success +PAM Authenticate() for user "user-can-reset-integration-skip-native" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_reset_password_while_enforcing_policy b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_reset_password_while_enforcing_policy index 4919355b8..0264f2cc9 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_reset_password_while_enforcing_policy +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_and_reset_password_while_enforcing_policy @@ -64,7 +64,7 @@ Enter your new password: > Confirm Password: > -PAM Authenticate() for user "user-needs-reset-integration-mandatory" exited with success +PAM Authenticate() for user "user-needs-reset-integration-mandatory-native" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -84,7 +84,7 @@ Enter your new password: > Confirm Password: > -PAM Authenticate() for user "user-needs-reset-integration-mandatory" exited with success +PAM Authenticate() for user "user-needs-reset-integration-mandatory-native" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_on_ssh_service b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_on_ssh_service index 5d6b87a73..7764ec680 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_on_ssh_service +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_on_ssh_service @@ -26,7 +26,7 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-pre-check-ssh-service" exited with success +PAM Authenticate() for user "user-integration-pre-check-ssh-service-native" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -40,7 +40,7 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-pre-check-ssh-service" exited with success +PAM Authenticate() for user "user-integration-pre-check-ssh-service-native" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_on_ssh_service_with_custom_name_and_auth_info_env b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_on_ssh_service_with_custom_name_and_auth_info_env index e1b10a009..a6690f969 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_on_ssh_service_with_custom_name_and_auth_info_env +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_on_ssh_service_with_custom_name_and_auth_info_env @@ -26,7 +26,8 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-pre-check-ssh-auth-info" exited with success +PAM Authenticate() for user "user-integration-pre-check-ssh-auth-info-native" exited with succes +s PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -40,7 +41,8 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-pre-check-ssh-auth-info" exited with success +PAM Authenticate() for user "user-integration-pre-check-ssh-auth-info-native" exited with succes +s PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_on_ssh_service_with_custom_name_and_connection_env b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_on_ssh_service_with_custom_name_and_connection_env index 0a94a5209..ad387ef13 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_on_ssh_service_with_custom_name_and_connection_env +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_on_ssh_service_with_custom_name_and_connection_env @@ -26,7 +26,8 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-pre-check-ssh-connection" exited with success +PAM Authenticate() for user "user-integration-pre-check-ssh-connection-native" exited with succe +ss PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -40,7 +41,8 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-pre-check-ssh-connection" exited with success +PAM Authenticate() for user "user-integration-pre-check-ssh-connection-native" exited with succe +ss PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_successfully b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_successfully index e3315b230..b20acbc12 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_successfully +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_successfully @@ -26,7 +26,8 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-simple-auth" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-successfully" exited with + success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -40,7 +41,8 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-simple-auth" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-successfully" exited with + success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_successfully_with_user_selection b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_successfully_with_user_selection index 183a34863..37a42c361 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_successfully_with_user_selection +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_successfully_with_user_selection @@ -7,7 +7,7 @@ Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true Username: -Username: user-integration-user-selection +Username: user-integration-native-user-selection == Provider selection == 1. local 2. ExampleBroker @@ -17,7 +17,7 @@ Choose your provider: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true Username: -Username: user-integration-user-selection +Username: user-integration-native-user-selection == Provider selection == 1. local 2. ExampleBroker @@ -31,7 +31,7 @@ Gimme your password: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true Username: -Username: user-integration-user-selection +Username: user-integration-native-user-selection == Provider selection == 1. local 2. ExampleBroker @@ -42,13 +42,13 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-user-selection" exited with success +PAM Authenticate() for user "user-integration-native-user-selection" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true Username: -Username: user-integration-user-selection +Username: user-integration-native-user-selection == Provider selection == 1. local 2. ExampleBroker @@ -59,7 +59,7 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-user-selection" exited with success +PAM Authenticate() for user "user-integration-native-user-selection" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_switching_auth_mode b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_switching_auth_mode index 13320cb36..17669843a 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_switching_auth_mode +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_switching_auth_mode @@ -28,7 +28,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -51,7 +51,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -61,10 +61,11 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true @@ -79,7 +80,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -89,14 +90,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -119,7 +121,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -129,14 +131,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -164,7 +167,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -174,14 +177,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -198,7 +202,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -221,7 +225,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -231,14 +235,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -255,7 +260,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -283,7 +288,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -293,14 +298,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -317,7 +323,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -334,7 +340,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -357,7 +363,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -367,14 +373,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -391,7 +398,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -408,7 +415,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -436,7 +443,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -446,14 +453,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -470,7 +478,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -487,7 +495,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -504,7 +512,7 @@ Unlock your phone +1... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -527,7 +535,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -537,14 +545,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -561,7 +570,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -578,7 +587,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -595,7 +604,7 @@ Unlock your phone +1... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -622,7 +631,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -632,14 +641,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -656,7 +666,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -673,7 +683,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -690,7 +700,7 @@ Unlock your phone +1... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -706,7 +716,7 @@ Enter your pin code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -729,7 +739,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -739,14 +749,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -763,7 +774,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -780,7 +791,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -797,7 +808,7 @@ Unlock your phone +1... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -813,7 +824,7 @@ Enter your pin code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -863,7 +874,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -873,14 +884,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -897,7 +909,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -914,7 +926,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -931,7 +943,7 @@ Unlock your phone +1... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -947,7 +959,7 @@ Enter your pin code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -986,7 +998,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1009,7 +1021,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1019,14 +1031,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1043,7 +1056,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1060,7 +1073,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1077,7 +1090,7 @@ Unlock your phone +1... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1093,7 +1106,7 @@ Enter your pin code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1132,7 +1145,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1161,7 +1174,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1171,14 +1184,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1195,7 +1209,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1212,7 +1226,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1229,7 +1243,7 @@ Unlock your phone +1... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1245,7 +1259,7 @@ Enter your pin code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1284,7 +1298,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1302,7 +1316,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1325,7 +1339,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1335,14 +1349,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1359,7 +1374,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1376,7 +1391,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1393,7 +1408,7 @@ Unlock your phone +1... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1409,7 +1424,7 @@ Enter your pin code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1448,7 +1463,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1466,7 +1481,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1492,7 +1507,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1502,14 +1517,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1526,7 +1542,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1543,7 +1559,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1560,7 +1576,7 @@ Unlock your phone +1... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1576,7 +1592,7 @@ Enter your pin code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1615,7 +1631,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1633,7 +1649,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1649,7 +1665,7 @@ Choose your authentication method: PAM Error Message: Invalid selection == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1672,7 +1688,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1682,14 +1698,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1706,7 +1723,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1723,7 +1740,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1740,7 +1757,7 @@ Unlock your phone +1... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1756,7 +1773,7 @@ Enter your pin code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1795,7 +1812,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1813,7 +1830,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1829,7 +1846,7 @@ Choose your authentication method: PAM Error Message: Invalid selection == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1856,7 +1873,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1866,14 +1883,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1890,7 +1908,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1907,7 +1925,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1924,7 +1942,7 @@ Unlock your phone +1... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1940,7 +1958,7 @@ Enter your pin code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1979,7 +1997,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1997,7 +2015,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -2013,7 +2031,7 @@ Choose your authentication method: PAM Error Message: Invalid selection == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -2027,7 +2045,8 @@ Choose your authentication method: Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > 4242 -PAM Authenticate() for user "user-integration-switch-mode" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-switching-auth-mode" exit +ed with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -2043,7 +2062,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -2053,14 +2072,15 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -== Send URL to user-integration-switch-mode@gmail.com == +== Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-switch-mode@gmail.com or enter the code: +Click on the link received at user-integration-native-authenticate-user-switching-auth-mode@gmai +l.com or enter the code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -2077,7 +2097,7 @@ Plug your fido device and press with your thumb: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -2094,7 +2114,7 @@ Unlock your phone +33... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -2111,7 +2131,7 @@ Unlock your phone +1... or accept request on web interface: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -2127,7 +2147,7 @@ Enter your pin code: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -2166,7 +2186,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -2184,7 +2204,7 @@ Choose action: > r == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -2200,7 +2220,7 @@ Choose your authentication method: PAM Error Message: Invalid selection == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-mode@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-auth-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -2214,7 +2234,8 @@ Choose your authentication method: Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > 4242 -PAM Authenticate() for user "user-integration-switch-mode" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-switching-auth-mode" exit +ed with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_switching_to_local_broker b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_switching_to_local_broker index 43c1bb1fc..924da6d68 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_switching_to_local_broker +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_switching_to_local_broker @@ -28,7 +28,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-broker@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-to-local-broker@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -51,7 +51,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-broker@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-to-local-broker@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -79,7 +79,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-broker@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-to-local-broker@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -110,7 +110,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-broker@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-to-local-broker@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -147,7 +147,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-broker@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-to-local-broker@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -172,8 +172,8 @@ PAM Error Message: Invalid selection Choose your provider: > 1 auth=incomplete -PAM Authenticate() for user "user-integration-switch-broker" exited with error (PAM exit code: 2 -5): The return value should be ignored by PAM dispatch +PAM Authenticate() for user "user-integration-native-authenticate-user-switching-to-local-broker +" exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── @@ -189,7 +189,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-switch-broker@gmail.com + 2. Send URL to user-integration-native-authenticate-user-switching-to-local-broker@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -214,8 +214,8 @@ PAM Error Message: Invalid selection Choose your provider: > 1 auth=incomplete -PAM Authenticate() for user "user-integration-switch-broker" exited with error (PAM exit code: 2 -5): The return value should be ignored by PAM dispatch +PAM Authenticate() for user "user-integration-native-authenticate-user-switching-to-local-broker +" exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_switching_username b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_switching_username index 1477738fd..b7eaf5b3e 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_switching_username +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_switching_username @@ -2,10 +2,10 @@ Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true -Username: user-integration-switch-username +Username: user-integration-native-username ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true -Username: user-integration-switch-username +Username: user-integration-native-username == Provider selection == 1. local 2. ExampleBroker @@ -14,7 +14,7 @@ Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true -Username: user-integration-switch-username +Username: user-integration-native-username == Provider selection == 1. local 2. ExampleBroker @@ -24,24 +24,24 @@ Choose your provider: Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true -Username: user-integration-switch-username +Username: user-integration-native-username == Provider selection == 1. local 2. ExampleBroker Or enter 'r' to go back to user selection Choose your provider: > r -Username: user-integration-username-switched +Username: user-integration-native-username-switched ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true -Username: user-integration-switch-username +Username: user-integration-native-username == Provider selection == 1. local 2. ExampleBroker Or enter 'r' to go back to user selection Choose your provider: > r -Username: user-integration-username-switched +Username: user-integration-native-username-switched == Provider selection == 1. local 2. ExampleBroker @@ -50,14 +50,14 @@ Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true -Username: user-integration-switch-username +Username: user-integration-native-username == Provider selection == 1. local 2. ExampleBroker Or enter 'r' to go back to user selection Choose your provider: > r -Username: user-integration-username-switched +Username: user-integration-native-username-switched == Provider selection == 1. local 2. ExampleBroker @@ -70,14 +70,14 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true -Username: user-integration-switch-username +Username: user-integration-native-username == Provider selection == 1. local 2. ExampleBroker Or enter 'r' to go back to user selection Choose your provider: > r -Username: user-integration-username-switched +Username: user-integration-native-username-switched == Provider selection == 1. local 2. ExampleBroker @@ -88,19 +88,19 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-username-switched" exited with success +PAM Authenticate() for user "user-integration-native-username-switched" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true -Username: user-integration-switch-username +Username: user-integration-native-username == Provider selection == 1. local 2. ExampleBroker Or enter 'r' to go back to user selection Choose your provider: > r -Username: user-integration-username-switched +Username: user-integration-native-username-switched == Provider selection == 1. local 2. ExampleBroker @@ -111,7 +111,7 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-username-switched" exited with success +PAM Authenticate() for user "user-integration-native-username-switched" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_form_mode_with_button b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_form_mode_with_button index 2dbe356b9..5dc2bc193 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_form_mode_with_button +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_form_mode_with_button @@ -28,7 +28,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-form-w-button@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-form-mode-with-button@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -51,7 +51,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-form-w-button@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-form-mode-with-button@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -80,7 +80,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-form-w-button@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-form-mode-with-button@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -115,7 +115,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-form-w-button@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-form-mode-with-button@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -154,7 +154,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-form-w-button@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-form-mode-with-button@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -180,7 +180,7 @@ Choose action: Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass00 -PAM Authenticate() for user "user-integration-form-w-button" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-with-form-mode-with-butto ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true == Provider selection == @@ -194,7 +194,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-form-w-button@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-form-mode-with-button@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -220,5 +220,5 @@ Choose action: Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass00 -PAM Authenticate() for user "user-integration-form-w-button" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-with-form-mode-with-butto ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_mfa b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_mfa index 4d7b07cf0..3d36922aa 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_mfa +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_mfa @@ -28,7 +28,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa-integration-auth@gmail.com + 2. Send URL to user-mfa-integration-auth-native@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -51,7 +51,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa-integration-auth@gmail.com + 2. Send URL to user-mfa-integration-auth-native@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -78,7 +78,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa-integration-auth@gmail.com + 2. Send URL to user-mfa-integration-auth-native@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -110,7 +110,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa-integration-auth@gmail.com + 2. Send URL to user-mfa-integration-auth-native@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -149,7 +149,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa-integration-auth@gmail.com + 2. Send URL to user-mfa-integration-auth-native@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -193,7 +193,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa-integration-auth@gmail.com + 2. Send URL to user-mfa-integration-auth-native@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -244,7 +244,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa-integration-auth@gmail.com + 2. Send URL to user-mfa-integration-auth-native@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -297,7 +297,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa-integration-auth@gmail.com + 2. Send URL to user-mfa-integration-auth-native@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -350,7 +350,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa-integration-auth@gmail.com + 2. Send URL to user-mfa-integration-auth-native@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -403,7 +403,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa-integration-auth@gmail.com + 2. Send URL to user-mfa-integration-auth-native@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -456,7 +456,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa-integration-auth@gmail.com + 2. Send URL to user-mfa-integration-auth-native@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_mfa_and_reset_password_while_enforcing_policy b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_mfa_and_reset_password_while_enforcing_policy index ad6ebc392..03bdfd6b4 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_mfa_and_reset_password_while_enforcing_policy +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_mfa_and_reset_password_while_enforcing_policy @@ -441,7 +441,8 @@ Enter your new password (3 days until mandatory): > Confirm Password: > -PAM Authenticate() for user "user-mfa-with-reset-integration-pwquality" exited with success +PAM Authenticate() for user "user-mfa-with-reset-integration-pwquality-native" exited with succe +ss PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -492,7 +493,8 @@ Enter your new password (3 days until mandatory): > Confirm Password: > -PAM Authenticate() for user "user-mfa-with-reset-integration-pwquality" exited with success +PAM Authenticate() for user "user-mfa-with-reset-integration-pwquality-native" exited with succe +ss PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code index 4b8fae2b2..904713310 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code @@ -30,7 +30,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -54,7 +54,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -105,7 +105,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -183,7 +183,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -290,7 +290,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -424,7 +424,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -577,7 +577,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -730,7 +730,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -883,7 +883,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_a_tty b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_a_tty index 47855a92b..d8cd1a0bf 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_a_tty +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_a_tty @@ -30,7 +30,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -54,7 +54,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -121,7 +121,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -231,7 +231,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -388,7 +388,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -588,7 +588,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -831,7 +831,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1074,7 +1074,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1303,7 +1303,8 @@ Scan the qrcode or enter the code in the login page Or enter 'r' to go back to select the authentication method Choose action: > 1 -PAM Authenticate() for user "user-integration-qr-code-tty" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-with-qr-code-in-a-tty" ex +ited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -1320,7 +1321,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1549,7 +1550,8 @@ Scan the qrcode or enter the code in the login page Or enter 'r' to go back to select the authentication method Choose action: > 1 -PAM Authenticate() for user "user-integration-qr-code-tty" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-with-qr-code-in-a-tty" ex +ited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_a_tty_session b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_a_tty_session index df394f976..57ab9a9f9 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_a_tty_session +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_a_tty_session @@ -30,7 +30,8 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty-session@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty-session@gmail.c +om 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -54,7 +55,8 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty-session@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty-session@gmail.c +om 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -121,7 +123,8 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty-session@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty-session@gmail.c +om 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -231,7 +234,8 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty-session@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty-session@gmail.c +om 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -388,7 +392,8 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty-session@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty-session@gmail.c +om 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -588,7 +593,8 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty-session@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty-session@gmail.c +om 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -831,7 +837,8 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty-session@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty-session@gmail.c +om 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1074,7 +1081,8 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty-session@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty-session@gmail.c +om 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1303,7 +1311,8 @@ Scan the qrcode or enter the code in the login page Or enter 'r' to go back to select the authentication method Choose action: > 1 -PAM Authenticate() for user "user-integration-qr-code-tty-session" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-with-qr-code-in-a-tty-ses +sion" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -1320,7 +1329,8 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-tty-session@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-a-tty-session@gmail.c +om 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1549,7 +1559,8 @@ Scan the qrcode or enter the code in the login page Or enter 'r' to go back to select the authentication method Choose action: > 1 -PAM Authenticate() for user "user-integration-qr-code-tty-session" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-with-qr-code-in-a-tty-ses +sion" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_polkit b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_polkit index 3c26e90d1..815fffb1e 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_polkit +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_polkit @@ -31,7 +31,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-qr-code-polkit@gmail.com + 3. Send URL to user-integration-native-authenticate-user-with-qr-code-in-polkit@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -55,7 +55,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-qr-code-polkit@gmail.com + 3. Send URL to user-integration-native-authenticate-user-with-qr-code-in-polkit@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -89,7 +89,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-qr-code-polkit@gmail.com + 3. Send URL to user-integration-native-authenticate-user-with-qr-code-in-polkit@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -133,7 +133,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-qr-code-polkit@gmail.com + 3. Send URL to user-integration-native-authenticate-user-with-qr-code-in-polkit@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -187,7 +187,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-qr-code-polkit@gmail.com + 3. Send URL to user-integration-native-authenticate-user-with-qr-code-in-polkit@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -251,7 +251,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-qr-code-polkit@gmail.com + 3. Send URL to user-integration-native-authenticate-user-with-qr-code-in-polkit@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -325,7 +325,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-qr-code-polkit@gmail.com + 3. Send URL to user-integration-native-authenticate-user-with-qr-code-in-polkit@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -399,7 +399,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-qr-code-polkit@gmail.com + 3. Send URL to user-integration-native-authenticate-user-with-qr-code-in-polkit@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -458,7 +458,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 1 -PAM Authenticate() for user "user-integration-qr-code-polkit" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-with-qr-code-in-polkit" e +xited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -476,7 +477,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-qr-code-polkit@gmail.com + 3. Send URL to user-integration-native-authenticate-user-with-qr-code-in-polkit@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -535,7 +536,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 1 -PAM Authenticate() for user "user-integration-qr-code-polkit" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-with-qr-code-in-polkit" e +xited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_screen b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_screen index 0ad7b1013..88a42c3b3 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_screen +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_screen @@ -30,7 +30,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-screen@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-screen@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -54,7 +54,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-screen@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-screen@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -121,7 +121,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-screen@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-screen@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -231,7 +231,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-screen@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-screen@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -388,7 +388,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-screen@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-screen@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -588,7 +588,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-screen@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-screen@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -831,7 +831,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-screen@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-screen@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1074,7 +1074,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-screen@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-screen@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1303,7 +1303,8 @@ Scan the qrcode or enter the code in the login page Or enter 'r' to go back to select the authentication method Choose action: > 1 -PAM Authenticate() for user "user-integration-qr-code-screen" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-with-qr-code-in-screen" e +xited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -1320,7 +1321,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-qr-code-screen@gmail.com + 2. Send URL to user-integration-native-authenticate-user-with-qr-code-in-screen@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -1549,7 +1550,8 @@ Scan the qrcode or enter the code in the login page Or enter 'r' to go back to select the authentication method Choose action: > 1 -PAM Authenticate() for user "user-integration-qr-code-screen" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-user-with-qr-code-in-screen" e +xited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_ssh b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_ssh index 36e308583..1c3ec59ba 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_ssh +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_user_with_qr_code_in_ssh @@ -31,7 +31,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-ssh-service-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-service-qr-code-native@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -55,7 +55,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-ssh-service-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-service-qr-code-native@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -89,7 +89,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-ssh-service-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-service-qr-code-native@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -133,7 +133,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-ssh-service-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-service-qr-code-native@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -187,7 +187,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-ssh-service-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-service-qr-code-native@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -251,7 +251,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-ssh-service-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-service-qr-code-native@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -325,7 +325,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-ssh-service-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-service-qr-code-native@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -399,7 +399,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-ssh-service-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-service-qr-code-native@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -458,7 +458,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 1 -PAM Authenticate() for user "user-integration-pre-check-ssh-service-qr-code" exited with success +PAM Authenticate() for user "user-integration-pre-check-ssh-service-qr-code-native" exited with +success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -476,7 +477,7 @@ Gimme your password: == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-ssh-service-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-service-qr-code-native@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -535,7 +536,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 1 -PAM Authenticate() for user "user-integration-pre-check-ssh-service-qr-code" exited with success +PAM Authenticate() for user "user-integration-pre-check-ssh-service-qr-code-native" exited with +success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_with_warnings_on_unsupported_arguments b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_with_warnings_on_unsupported_arguments index 2accc904d..5f65059be 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_with_warnings_on_unsupported_arguments +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/authenticate_with_warnings_on_unsupported_arguments @@ -29,7 +29,8 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-with-unsupported-args" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-with-warnings-on-unsupported-a +rguments" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -44,7 +45,8 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-with-unsupported-args" exited with success +PAM Authenticate() for user "user-integration-native-authenticate-with-warnings-on-unsupported-a +rguments" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/deny_authentication_if_current_user_is_not_considered_as_root b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/deny_authentication_if_current_user_is_not_considered_as_root index 924dde24e..ac92aa2cf 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/deny_authentication_if_current_user_is_not_considered_as_root +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/deny_authentication_if_current_user_is_not_considered_as_root @@ -1,8 +1,8 @@ > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true PAM Error Message: could not get current available brokers: permission denied: this action is on ly allowed for root users. Current user is XXXX -PAM Authenticate() for user "user-integration-not-root" exited with error (PAM exit code: 4): Sy -stem error +PAM Authenticate() for user "user-integration-native-deny-authentication-if-current-user-is-not- +considered-as-root" exited with error (PAM exit code: 4): System error acct=incomplete PAM AcctMgmt() exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch @@ -11,8 +11,8 @@ dispatch > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true PAM Error Message: could not get current available brokers: permission denied: this action is on ly allowed for root users. Current user is XXXX -PAM Authenticate() for user "user-integration-not-root" exited with error (PAM exit code: 4): Sy -stem error +PAM Authenticate() for user "user-integration-native-deny-authentication-if-current-user-is-not- +considered-as-root" exited with error (PAM exit code: 4): System error acct=incomplete PAM AcctMgmt() exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/deny_authentication_if_max_attempts_reached b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/deny_authentication_if_max_attempts_reached index db95e2e25..97d66d856 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/deny_authentication_if_max_attempts_reached +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/deny_authentication_if_max_attempts_reached @@ -141,8 +141,8 @@ Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > PAM Error Message: invalid password 'wrongpass', should be 'goodpass' -PAM Authenticate() for user "user-integration-max-attempts" exited with error (PAM exit code: 7) -: Authentication failure +PAM Authenticate() for user "user-integration-native-deny-authentication-if-max-attempts-reached +" exited with error (PAM exit code: 7): Authentication failure acct=incomplete PAM AcctMgmt() exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch @@ -179,8 +179,8 @@ Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > PAM Error Message: invalid password 'wrongpass', should be 'goodpass' -PAM Authenticate() for user "user-integration-max-attempts" exited with error (PAM exit code: 7) -: Authentication failure +PAM Authenticate() for user "user-integration-native-deny-authentication-if-max-attempts-reached +" exited with error (PAM exit code: 7): Authentication failure acct=incomplete PAM AcctMgmt() exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/deny_authentication_if_newpassword_does_not_match_required_criteria b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/deny_authentication_if_newpassword_does_not_match_required_criteria index c0e14e193..b12fc3773 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/deny_authentication_if_newpassword_does_not_match_required_criteria +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/deny_authentication_if_newpassword_does_not_match_required_criteria @@ -304,7 +304,8 @@ Enter your new password: > Confirm Password: > -PAM Authenticate() for user "user-needs-reset-integration-bad-password" exited with success +PAM Authenticate() for user "user-needs-reset-integration-bad-password-native" exited with succe +ss PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -351,7 +352,8 @@ Enter your new password: > Confirm Password: > -PAM Authenticate() for user "user-needs-reset-integration-bad-password" exited with success +PAM Authenticate() for user "user-needs-reset-integration-bad-password-native" exited with succe +ss PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_authd_if_local_broker_is_selected b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_authd_if_local_broker_is_selected index 930d97b47..cdfe293fc 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_authd_if_local_broker_is_selected +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_authd_if_local_broker_is_selected @@ -12,8 +12,8 @@ Choose your provider: Choose your provider: > 1 auth=incomplete -PAM Authenticate() for user "user-local-broker" exited with error (PAM exit code: 25): The retur -n value should be ignored by PAM dispatch +PAM Authenticate() for user "user-integration-native-exit-authd-if-local-broker-is-selected" exi +ted with error (PAM exit code: 25): The return value should be ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── @@ -24,8 +24,8 @@ PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate Choose your provider: > 1 auth=incomplete -PAM Authenticate() for user "user-local-broker" exited with error (PAM exit code: 25): The retur -n value should be ignored by PAM dispatch +PAM Authenticate() for user "user-integration-native-exit-authd-if-local-broker-is-selected" exi +ted with error (PAM exit code: 25): The return value should be ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_if_user_is_not_pre-checked_on_custom_ssh_service_with_auth_info_env b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_if_user_is_not_pre-checked_on_custom_ssh_service_with_auth_info_env index 798258a13..c82bb319d 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_if_user_is_not_pre-checked_on_custom_ssh_service_with_auth_info_env +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_if_user_is_not_pre-checked_on_custom_ssh_service_with_auth_info_env @@ -1,14 +1,16 @@ > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true auth=incomplete -PAM Authenticate() for user "user-integration-ssh-auth-info" exited with error (PAM exit code: 2 -5): The return value should be ignored by PAM dispatch +PAM Authenticate() for user "user-integration-native-exit-if-user-is-not-pre-checked-on-custom-s +sh-service-with-auth-info-env" exited with error (PAM exit code: 25): The return value should be + ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true auth=incomplete -PAM Authenticate() for user "user-integration-ssh-auth-info" exited with error (PAM exit code: 2 -5): The return value should be ignored by PAM dispatch +PAM Authenticate() for user "user-integration-native-exit-if-user-is-not-pre-checked-on-custom-s +sh-service-with-auth-info-env" exited with error (PAM exit code: 25): The return value should be + ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_if_user_is_not_pre-checked_on_custom_ssh_service_with_connection_env b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_if_user_is_not_pre-checked_on_custom_ssh_service_with_connection_env index c5c97c5a2..90bc437b8 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_if_user_is_not_pre-checked_on_custom_ssh_service_with_connection_env +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_if_user_is_not_pre-checked_on_custom_ssh_service_with_connection_env @@ -1,14 +1,16 @@ > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true auth=incomplete -PAM Authenticate() for user "user-integration-ssh-connection" exited with error (PAM exit code: -25): The return value should be ignored by PAM dispatch +PAM Authenticate() for user "user-integration-native-exit-if-user-is-not-pre-checked-on-custom-s +sh-service-with-connection-env" exited with error (PAM exit code: 25): The return value should b +e ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true auth=incomplete -PAM Authenticate() for user "user-integration-ssh-connection" exited with error (PAM exit code: -25): The return value should be ignored by PAM dispatch +PAM Authenticate() for user "user-integration-native-exit-if-user-is-not-pre-checked-on-custom-s +sh-service-with-connection-env" exited with error (PAM exit code: 25): The return value should b +e ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_if_user_is_not_pre-checked_on_ssh_service b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_if_user_is_not_pre-checked_on_ssh_service index d679d8363..fa900e376 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_if_user_is_not_pre-checked_on_ssh_service +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/exit_if_user_is_not_pre-checked_on_ssh_service @@ -1,14 +1,14 @@ > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true auth=incomplete -PAM Authenticate() for user "user-integration-ssh-service" exited with error (PAM exit code: 25) -: The return value should be ignored by PAM dispatch +PAM Authenticate() for user "user-integration-native-exit-if-user-is-not-pre-checked-on-ssh-serv +ice" exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true auth=incomplete -PAM Authenticate() for user "user-integration-ssh-service" exited with error (PAM exit code: 25) -: The return value should be ignored by PAM dispatch +PAM Authenticate() for user "user-integration-native-exit-if-user-is-not-pre-checked-on-ssh-serv +ice" exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/prevent_preset_user_from_switching_username b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/prevent_preset_user_from_switching_username index 3cb643ea4..605775157 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/prevent_preset_user_from_switching_username +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/prevent_preset_user_from_switching_username @@ -44,7 +44,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-pam-preset@gmail.com + 2. Send URL to user-integration-native-prevent-preset-user-from-switching-username@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -70,7 +70,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-pam-preset@gmail.com + 2. Send URL to user-integration-native-prevent-preset-user-from-switching-username@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -101,7 +101,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-pam-preset@gmail.com + 2. Send URL to user-integration-native-prevent-preset-user-from-switching-username@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -135,7 +135,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-pam-preset@gmail.com + 2. Send URL to user-integration-native-prevent-preset-user-from-switching-username@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -172,7 +172,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-pam-preset@gmail.com + 2. Send URL to user-integration-native-prevent-preset-user-from-switching-username@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -213,7 +213,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-pam-preset@gmail.com + 2. Send URL to user-integration-native-prevent-preset-user-from-switching-username@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -238,7 +238,8 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-pam-preset" exited with success +PAM Authenticate() for user "user-integration-native-prevent-preset-user-from-switching-username +" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -257,7 +258,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-pam-preset@gmail.com + 2. Send URL to user-integration-native-prevent-preset-user-from-switching-username@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -282,7 +283,8 @@ Choose your provider: Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user-integration-pam-preset" exited with success +PAM Authenticate() for user "user-integration-native-prevent-preset-user-from-switching-username +" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/remember_last_successful_broker_and_mode b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/remember_last_successful_broker_and_mode index 754621860..006ad001c 100644 --- a/pam/integration-tests/testdata/TestNativeAuthenticate/golden/remember_last_successful_broker_and_mode +++ b/pam/integration-tests/testdata/TestNativeAuthenticate/golden/remember_last_successful_broker_and_mode @@ -28,7 +28,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-remember-mode@gmail.com + 2. Send URL to user-integration-native-remember-last-successful-broker-and-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -51,7 +51,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-remember-mode@gmail.com + 2. Send URL to user-integration-native-remember-last-successful-broker-and-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -80,7 +80,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-remember-mode@gmail.com + 2. Send URL to user-integration-native-remember-last-successful-broker-and-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -113,7 +113,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-remember-mode@gmail.com + 2. Send URL to user-integration-native-remember-last-successful-broker-and-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -133,7 +133,8 @@ Choose action: Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 -PAM Authenticate() for user "user-integration-remember-mode" exited with success +PAM Authenticate() for user "user-integration-native-remember-last-successful-broker-and-mode" e +xited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -149,7 +150,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-remember-mode@gmail.com + 2. Send URL to user-integration-native-remember-last-successful-broker-and-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -169,7 +170,8 @@ Choose action: Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 -PAM Authenticate() for user "user-integration-remember-mode" exited with success +PAM Authenticate() for user "user-integration-native-remember-last-successful-broker-and-mode" e +xited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true == Authentication code == @@ -191,7 +193,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-remember-mode@gmail.com + 2. Send URL to user-integration-native-remember-last-successful-broker-and-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -211,7 +213,8 @@ Choose action: Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 -PAM Authenticate() for user "user-integration-remember-mode" exited with success +PAM Authenticate() for user "user-integration-native-remember-last-successful-broker-and-mode" e +xited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true == Authentication code == @@ -237,7 +240,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-remember-mode@gmail.com + 2. Send URL to user-integration-native-remember-last-successful-broker-and-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -257,7 +260,8 @@ Choose action: Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 -PAM Authenticate() for user "user-integration-remember-mode" exited with success +PAM Authenticate() for user "user-integration-native-remember-last-successful-broker-and-mode" e +xited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true == Authentication code == @@ -270,7 +274,8 @@ Choose action: Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 -PAM Authenticate() for user "user-integration-remember-mode" exited with success +PAM Authenticate() for user "user-integration-native-remember-last-successful-broker-and-mode" e +xited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── @@ -286,7 +291,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-integration-remember-mode@gmail.com + 2. Send URL to user-integration-native-remember-last-successful-broker-and-mode@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -306,7 +311,8 @@ Choose action: Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 -PAM Authenticate() for user "user-integration-remember-mode" exited with success +PAM Authenticate() for user "user-integration-native-remember-last-successful-broker-and-mode" e +xited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK} force_native_client=true == Authentication code == @@ -319,7 +325,8 @@ Choose action: Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 -PAM Authenticate() for user "user-integration-remember-mode" exited with success +PAM Authenticate() for user "user-integration-native-remember-last-successful-broker-and-mode" e +xited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/tapes/native/simple_auth_with_user_selection.tape b/pam/integration-tests/testdata/tapes/native/simple_auth_with_user_selection.tape index 69313377e..77847404e 100644 --- a/pam/integration-tests/testdata/tapes/native/simple_auth_with_user_selection.tape +++ b/pam/integration-tests/testdata/tapes/native/simple_auth_with_user_selection.tape @@ -11,7 +11,7 @@ Sleep ${AUTHD_SLEEP_DEFAULT} Show Hide -Type "user-integration-user-selection" +Type "${AUTHD_TEST_TAPE_USERNAME}" Enter Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/native/switch_username.tape b/pam/integration-tests/testdata/tapes/native/switch_username.tape index 85658bf05..f545c42f3 100644 --- a/pam/integration-tests/testdata/tapes/native/switch_username.tape +++ b/pam/integration-tests/testdata/tapes/native/switch_username.tape @@ -5,7 +5,7 @@ Sleep ${AUTHD_SLEEP_COMMAND} Show Hide -Type "user-integration-switch-username" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show @@ -21,7 +21,7 @@ Sleep ${AUTHD_SLEEP_DEFAULT} Show Hide -Type "user-integration-username-switched" +Type "${AUTHD_TEST_TAPE_USERNAME_SWITCHED}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/vhs-helpers_test.go b/pam/integration-tests/vhs-helpers_test.go index 702dc425a..a1b09d5bd 100644 --- a/pam/integration-tests/vhs-helpers_test.go +++ b/pam/integration-tests/vhs-helpers_test.go @@ -30,7 +30,8 @@ const ( vhsMargin = "Margin" vhsShell = "Shell" - vhsCommandVariable = "AUTHD_TEST_TAPE_COMMAND" + vhsCommandVariable = "AUTHD_TEST_TAPE_COMMAND" + vhsTapeUserVariable = "AUTHD_TEST_TAPE_USERNAME" authdSleepDefault = "AUTHD_SLEEP_DEFAULT" authdSleepLong = "AUTHD_SLEEP_LONG" From dc0bf21c1584950c52a9b2cde08bc696594ada37 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Thu, 17 Oct 2024 14:05:19 +0200 Subject: [PATCH 07/17] examplebroker: Fix support for integration tests users in passwd mode --- examplebroker/broker.go | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/examplebroker/broker.go b/examplebroker/broker.go index 780bf2dfc..83e9864d1 100644 --- a/examplebroker/broker.go +++ b/examplebroker/broker.go @@ -155,11 +155,6 @@ func (b *Broker) NewSession(ctx context.Context, username, lang, mode string) (s return "", "", fmt.Errorf("user %q does not exist", username) } - if info.sessionMode == "passwd" { - info.neededAuthSteps++ - info.pwdChange = mustReset - } - exampleUsersMu.Lock() defer exampleUsersMu.Unlock() if _, ok := exampleUsers[username]; !ok && strings.HasPrefix(username, UserIntegrationPrefix) { @@ -199,6 +194,11 @@ func (b *Broker) NewSession(ctx context.Context, username, lang, mode string) (s exampleUsers[username] = userInfoBroker{Password: "goodpass"} } + if info.sessionMode == "passwd" { + info.neededAuthSteps++ + info.pwdChange = mustReset + } + pubASN1, err := x509.MarshalPKIXPublicKey(&b.privateKey.PublicKey) if err != nil { return "", "", err From 3ebc681255782774ea896a15f61707f49d839cb3 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Thu, 17 Oct 2024 14:04:48 +0200 Subject: [PATCH 08/17] pam/integration-tests/native-passwd: Use unique user names in all the tests So that we won't clash with other test in the suite --- pam/integration-tests/native_test.go | 16 +++- .../golden/change_passwd_after_mfa_auth | 70 ++++++++-------- ...successfully_and_authenticate_with_new_one | 72 ++++++++++------ .../exit_authd_if_local_broker_is_selected | 16 ++-- .../golden/exit_authd_if_user_sigints | 10 +-- .../prevent_change_password_if_auth_fails | 26 +++--- ...w_password_does_not_match_quality_criteria | 32 +++---- ...etry_if_new_password_is_rejected_by_broker | 84 ++++++++++--------- .../retry_if_new_password_is_same_of_previous | 26 +++--- ...y_if_password_confirmation_is_not_the_same | 28 ++++--- .../tapes/native/passwd_auth_fail.tape | 2 +- .../tapes/native/passwd_bad_password.tape | 2 +- .../tapes/native/passwd_local_broker.tape | 2 +- .../testdata/tapes/native/passwd_mfa.tape | 2 +- .../tapes/native/passwd_not_changed.tape | 2 +- .../tapes/native/passwd_not_confirmed.tape | 2 +- .../tapes/native/passwd_rejected.tape | 4 +- .../testdata/tapes/native/passwd_sigint.tape | 2 +- .../testdata/tapes/native/passwd_simple.tape | 4 +- .../tapes/native/passwd_unexistent_user.tape | 2 +- 20 files changed, 228 insertions(+), 176 deletions(-) diff --git a/pam/integration-tests/native_test.go b/pam/integration-tests/native_test.go index 457f3b185..4d2256114 100644 --- a/pam/integration-tests/native_test.go +++ b/pam/integration-tests/native_test.go @@ -321,7 +321,8 @@ func TestNativeChangeAuthTok(t *testing.T) { currentUserNotRoot bool }{ "Change password successfully and authenticate with new one": { - tape: "passwd_simple", + tape: "passwd_simple", + tapeSettings: []tapeSetting{{vhsHeight, 600}}, tapeVariables: map[string]string{ "AUTHD_TEST_TAPE_LOGIN_COMMAND": fmt.Sprintf(tapeBaseCommand, "login", socketPathEnv), }, @@ -329,6 +330,9 @@ func TestNativeChangeAuthTok(t *testing.T) { "Change passwd after MFA auth": { tape: "passwd_mfa", tapeSettings: []tapeSetting{{vhsHeight, 1100}}, + tapeVariables: map[string]string{ + vhsTapeUserVariable: examplebroker.UserIntegrationMfaPrefix + "native-passwd", + }, }, "Retry if new password is rejected by broker": { @@ -352,6 +356,9 @@ func TestNativeChangeAuthTok(t *testing.T) { }, "Prevent change password if user does not exist": { tape: "passwd_unexistent_user", + tapeVariables: map[string]string{ + vhsTapeUserVariable: examplebroker.UserIntegrationUnexistent, + }, }, "Prevent change password if current user is not root as can't authenticate": { tape: "passwd_not_root", currentUserNotRoot: true, @@ -376,6 +383,13 @@ func TestNativeChangeAuthTok(t *testing.T) { socketPath = runAuthd(t, os.DevNull, os.DevNull, false) } + if _, ok := tc.tapeVariables[vhsTapeUserVariable]; !ok && !tc.currentUserNotRoot { + if tc.tapeVariables == nil { + tc.tapeVariables = make(map[string]string) + } + tc.tapeVariables[vhsTapeUserVariable] = vhsTestUserName(t, "native-passwd") + } + td := newTapeData(tc.tape, tc.tapeSettings...) td.Command = tapeCommand td.Variables = tc.tapeVariables diff --git a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/change_passwd_after_mfa_auth b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/change_passwd_after_mfa_auth index 9d2e634ea..7d69a360a 100644 --- a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/change_passwd_after_mfa_auth +++ b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/change_passwd_after_mfa_auth @@ -2,10 +2,10 @@ Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -14,7 +14,7 @@ Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -27,7 +27,7 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -40,7 +40,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -52,7 +52,7 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -65,7 +65,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -81,7 +81,7 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -94,7 +94,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -115,7 +115,7 @@ Plug your fido device and press with your thumb: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -128,7 +128,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -156,7 +156,7 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -169,7 +169,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -202,7 +202,7 @@ Plug your fido device and press with your thumb: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -215,7 +215,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -248,7 +248,7 @@ Plug your fido device and press with your thumb: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -261,7 +261,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -299,7 +299,7 @@ Unlock your phone +33... or accept request on web interface: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -312,7 +312,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -356,7 +356,7 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -369,7 +369,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -418,7 +418,7 @@ Unlock your phone +33... or accept request on web interface: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -431,7 +431,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -480,7 +480,7 @@ Unlock your phone +33... or accept request on web interface: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -493,7 +493,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -546,7 +546,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -559,7 +559,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -614,7 +614,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -627,7 +627,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -682,7 +682,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -695,7 +695,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -748,12 +748,12 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-mfa" exited with success +PAM ChangeAuthTok() for user "user-mfa-integration-native-passwd" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-mfa +Username: user-mfa-integration-native-passwd == Provider selection == 1. local 2. ExampleBroker @@ -766,7 +766,7 @@ Gimme your password: > == Authentication method selection == 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-native-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -819,7 +819,7 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-mfa" exited with success +PAM ChangeAuthTok() for user "user-mfa-integration-native-passwd" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/change_password_successfully_and_authenticate_with_new_one b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/change_password_successfully_and_authenticate_with_new_one index a60610358..4ff87e1f5 100644 --- a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/change_password_successfully_and_authenticate_with_new_one +++ b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/change_password_successfully_and_authenticate_with_new_one @@ -2,10 +2,12 @@ Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Provider selection == 1. local 2. ExampleBroker @@ -14,7 +16,8 @@ Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Provider selection == 1. local 2. ExampleBroker @@ -27,7 +30,8 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Provider selection == 1. local 2. ExampleBroker @@ -44,7 +48,8 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Provider selection == 1. local 2. ExampleBroker @@ -63,7 +68,8 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Provider selection == 1. local 2. ExampleBroker @@ -82,7 +88,8 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Provider selection == 1. local 2. ExampleBroker @@ -99,12 +106,14 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user1" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-change-password-successfully-and-au +thenticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Provider selection == 1. local 2. ExampleBroker @@ -121,13 +130,15 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user1" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-change-password-successfully-and-au +thenticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Provider selection == 1. local 2. ExampleBroker @@ -144,13 +155,16 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user1" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-change-password-successfully-and-au +thenticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Provider selection == 1. local 2. ExampleBroker @@ -167,17 +181,20 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user1" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-change-password-successfully-and-au +thenticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Provider selection == 1. local 2. ExampleBroker @@ -194,20 +211,24 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user1" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-change-password-successfully-and-au +thenticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user1" exited with success +PAM Authenticate() for user "user-integration-native-passwd-change-password-successfully-and-aut +henticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Provider selection == 1. local 2. ExampleBroker @@ -224,15 +245,18 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user1" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-change-password-successfully-and-au +thenticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user1 +Username: user-integration-native-passwd-change-password-successfully-and-authenticate-with-new- +one == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -PAM Authenticate() for user "user1" exited with success +PAM Authenticate() for user "user-integration-native-passwd-change-password-successfully-and-aut +henticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/exit_authd_if_local_broker_is_selected b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/exit_authd_if_local_broker_is_selected index 4f3b87c4b..e6693c72a 100644 --- a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/exit_authd_if_local_broker_is_selected +++ b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/exit_authd_if_local_broker_is_selected @@ -2,10 +2,10 @@ Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-local-broker +Username: user-integration-native-passwd-exit-authd-if-local-broker-is-selected ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-local-broker +Username: user-integration-native-passwd-exit-authd-if-local-broker-is-selected == Provider selection == 1. local 2. ExampleBroker @@ -14,7 +14,7 @@ Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-local-broker +Username: user-integration-native-passwd-exit-authd-if-local-broker-is-selected == Provider selection == 1. local 2. ExampleBroker @@ -22,13 +22,13 @@ Or enter 'r' to go back to user selection Choose your provider: > 1 chauthtok=incomplete -PAM ChangeAuthTok() for user "user-local-broker" exited with error (PAM exit code: 25): The retu -rn value should be ignored by PAM dispatch +PAM ChangeAuthTok() for user "user-integration-native-passwd-exit-authd-if-local-broker-is-selec +ted" exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-local-broker +Username: user-integration-native-passwd-exit-authd-if-local-broker-is-selected == Provider selection == 1. local 2. ExampleBroker @@ -36,8 +36,8 @@ Or enter 'r' to go back to user selection Choose your provider: > 1 chauthtok=incomplete -PAM ChangeAuthTok() for user "user-local-broker" exited with error (PAM exit code: 25): The retu -rn value should be ignored by PAM dispatch +PAM ChangeAuthTok() for user "user-integration-native-passwd-exit-authd-if-local-broker-is-selec +ted" exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/exit_authd_if_user_sigints b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/exit_authd_if_user_sigints index 3535ffe35..6def2f227 100644 --- a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/exit_authd_if_user_sigints +++ b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/exit_authd_if_user_sigints @@ -2,10 +2,10 @@ Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-sigint +Username: user-integration-native-passwd-exit-authd-if-user-sigints ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-sigint +Username: user-integration-native-passwd-exit-authd-if-user-sigints == Provider selection == 1. local 2. ExampleBroker @@ -14,7 +14,7 @@ Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-sigint +Username: user-integration-native-passwd-exit-authd-if-user-sigints == Provider selection == 1. local 2. ExampleBroker @@ -27,7 +27,7 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-sigint +Username: user-integration-native-passwd-exit-authd-if-user-sigints == Provider selection == 1. local 2. ExampleBroker @@ -41,7 +41,7 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-sigint +Username: user-integration-native-passwd-exit-authd-if-user-sigints == Provider selection == 1. local 2. ExampleBroker diff --git a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/prevent_change_password_if_auth_fails b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/prevent_change_password_if_auth_fails index 72df04232..431b266e1 100644 --- a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/prevent_change_password_if_auth_fails +++ b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/prevent_change_password_if_auth_fails @@ -2,10 +2,10 @@ Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-max-attempts +Username: user-integration-native-passwd-prevent-change-password-if-auth-fails ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-max-attempts +Username: user-integration-native-passwd-prevent-change-password-if-auth-fails == Provider selection == 1. local 2. ExampleBroker @@ -14,7 +14,7 @@ Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-max-attempts +Username: user-integration-native-passwd-prevent-change-password-if-auth-fails == Provider selection == 1. local 2. ExampleBroker @@ -27,7 +27,7 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-max-attempts +Username: user-integration-native-passwd-prevent-change-password-if-auth-fails == Provider selection == 1. local 2. ExampleBroker @@ -45,7 +45,7 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-max-attempts +Username: user-integration-native-passwd-prevent-change-password-if-auth-fails == Provider selection == 1. local 2. ExampleBroker @@ -68,7 +68,7 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-max-attempts +Username: user-integration-native-passwd-prevent-change-password-if-auth-fails == Provider selection == 1. local 2. ExampleBroker @@ -96,7 +96,7 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-max-attempts +Username: user-integration-native-passwd-prevent-change-password-if-auth-fails == Provider selection == 1. local 2. ExampleBroker @@ -129,7 +129,7 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-max-attempts +Username: user-integration-native-passwd-prevent-change-password-if-auth-fails == Provider selection == 1. local 2. ExampleBroker @@ -161,15 +161,15 @@ Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > PAM Error Message: invalid password 'wrongpass', should be 'goodpass' -PAM ChangeAuthTok() for user "user-integration-max-attempts" exited with error (PAM exit code: 7 -): Authentication failure +PAM ChangeAuthTok() for user "user-integration-native-passwd-prevent-change-password-if-auth-fai +ls" exited with error (PAM exit code: 7): Authentication failure acct=incomplete PAM AcctMgmt() exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-max-attempts +Username: user-integration-native-passwd-prevent-change-password-if-auth-fails == Provider selection == 1. local 2. ExampleBroker @@ -201,8 +201,8 @@ Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > PAM Error Message: invalid password 'wrongpass', should be 'goodpass' -PAM ChangeAuthTok() for user "user-integration-max-attempts" exited with error (PAM exit code: 7 -): Authentication failure +PAM ChangeAuthTok() for user "user-integration-native-passwd-prevent-change-password-if-auth-fai +ls" exited with error (PAM exit code: 7): Authentication failure acct=incomplete PAM AcctMgmt() exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch diff --git a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_new_password_does_not_match_quality_criteria b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_new_password_does_not_match_quality_criteria index a8305ea02..cf98ae337 100644 --- a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_new_password_does_not_match_quality_criteria +++ b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_new_password_does_not_match_quality_criteria @@ -2,10 +2,10 @@ Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-bad-password +Username: user-integration-native-passwd-retry-if-new-password-does-not-match-quality-criteria ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-bad-password +Username: user-integration-native-passwd-retry-if-new-password-does-not-match-quality-criteria == Provider selection == 1. local 2. ExampleBroker @@ -14,7 +14,7 @@ Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-bad-password +Username: user-integration-native-passwd-retry-if-new-password-does-not-match-quality-criteria == Provider selection == 1. local 2. ExampleBroker @@ -27,7 +27,7 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-bad-password +Username: user-integration-native-passwd-retry-if-new-password-does-not-match-quality-criteria == Provider selection == 1. local 2. ExampleBroker @@ -44,7 +44,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-bad-password +Username: user-integration-native-passwd-retry-if-new-password-does-not-match-quality-criteria == Provider selection == 1. local 2. ExampleBroker @@ -66,7 +66,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-bad-password +Username: user-integration-native-passwd-retry-if-new-password-does-not-match-quality-criteria == Provider selection == 1. local 2. ExampleBroker @@ -93,7 +93,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-bad-password +Username: user-integration-native-passwd-retry-if-new-password-does-not-match-quality-criteria == Provider selection == 1. local 2. ExampleBroker @@ -125,7 +125,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-bad-password +Username: user-integration-native-passwd-retry-if-new-password-does-not-match-quality-criteria == Provider selection == 1. local 2. ExampleBroker @@ -159,7 +159,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-bad-password +Username: user-integration-native-passwd-retry-if-new-password-does-not-match-quality-criteria == Provider selection == 1. local 2. ExampleBroker @@ -198,7 +198,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-bad-password +Username: user-integration-native-passwd-retry-if-new-password-does-not-match-quality-criteria == Provider selection == 1. local 2. ExampleBroker @@ -242,7 +242,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-bad-password +Username: user-integration-native-passwd-retry-if-new-password-does-not-match-quality-criteria == Provider selection == 1. local 2. ExampleBroker @@ -288,7 +288,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-bad-password +Username: user-integration-native-passwd-retry-if-new-password-does-not-match-quality-criteria == Provider selection == 1. local 2. ExampleBroker @@ -332,12 +332,13 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-bad-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-does-not-matc +h-quality-criteria" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-bad-password +Username: user-integration-native-passwd-retry-if-new-password-does-not-match-quality-criteria == Provider selection == 1. local 2. ExampleBroker @@ -381,7 +382,8 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-bad-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-does-not-matc +h-quality-criteria" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_new_password_is_rejected_by_broker b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_new_password_is_rejected_by_broker index 7e0140e86..0c57ff18c 100644 --- a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_new_password_is_rejected_by_broker +++ b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_new_password_is_rejected_by_broker @@ -2,10 +2,10 @@ Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -14,7 +14,7 @@ Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -27,7 +27,7 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -44,7 +44,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -63,7 +63,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -82,7 +82,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -106,7 +106,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -132,7 +132,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -156,12 +156,13 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-is-rejected-b +y-broker" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -185,13 +186,14 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-is-rejected-b +y-broker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -215,13 +217,14 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-is-rejected-b +y-broker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -245,17 +248,18 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-is-rejected-b +y-broker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -279,10 +283,11 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-is-rejected-b +y-broker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: @@ -293,7 +298,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -317,10 +322,11 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-is-rejected-b +y-broker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: @@ -333,7 +339,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -357,10 +363,11 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-is-rejected-b +y-broker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: @@ -373,7 +380,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -397,10 +404,11 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-is-rejected-b +y-broker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: @@ -418,7 +426,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -442,10 +450,11 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-is-rejected-b +y-broker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: @@ -462,10 +471,9 @@ Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > Confirm Password: -> ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Provider selection == 1. local 2. ExampleBroker @@ -489,10 +497,11 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-is-rejected-b +y-broker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-invalid-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-rejected-by-broker == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: @@ -509,5 +518,4 @@ Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > Confirm Password: -> ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_new_password_is_same_of_previous b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_new_password_is_same_of_previous index 4ea5fd283..83e4f6153 100644 --- a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_new_password_is_same_of_previous +++ b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_new_password_is_same_of_previous @@ -2,10 +2,10 @@ Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-same-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-same-of-previous ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-same-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-same-of-previous == Provider selection == 1. local 2. ExampleBroker @@ -14,7 +14,7 @@ Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-same-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-same-of-previous == Provider selection == 1. local 2. ExampleBroker @@ -27,7 +27,7 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-same-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-same-of-previous == Provider selection == 1. local 2. ExampleBroker @@ -44,7 +44,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-same-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-same-of-previous == Provider selection == 1. local 2. ExampleBroker @@ -61,7 +61,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-same-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-same-of-previous == Provider selection == 1. local 2. ExampleBroker @@ -83,7 +83,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-same-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-same-of-previous == Provider selection == 1. local 2. ExampleBroker @@ -107,7 +107,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-same-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-same-of-previous == Provider selection == 1. local 2. ExampleBroker @@ -131,7 +131,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-same-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-same-of-previous == Provider selection == 1. local 2. ExampleBroker @@ -153,12 +153,13 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-same-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-is-same-of-pr +evious" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-same-new-password +Username: user-integration-native-passwd-retry-if-new-password-is-same-of-previous == Provider selection == 1. local 2. ExampleBroker @@ -180,7 +181,8 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-same-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-new-password-is-same-of-pr +evious" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_password_confirmation_is_not_the_same b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_password_confirmation_is_not_the_same index 67b73cf18..b9cf51cea 100644 --- a/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_password_confirmation_is_not_the_same +++ b/pam/integration-tests/testdata/TestNativeChangeAuthTok/golden/retry_if_password_confirmation_is_not_the_same @@ -2,10 +2,10 @@ Username: ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-wrong-confirmation +Username: user-integration-native-passwd-retry-if-password-confirmation-is-not-the-same ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-wrong-confirmation +Username: user-integration-native-passwd-retry-if-password-confirmation-is-not-the-same == Provider selection == 1. local 2. ExampleBroker @@ -14,7 +14,7 @@ Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-wrong-confirmation +Username: user-integration-native-passwd-retry-if-password-confirmation-is-not-the-same == Provider selection == 1. local 2. ExampleBroker @@ -27,7 +27,7 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-wrong-confirmation +Username: user-integration-native-passwd-retry-if-password-confirmation-is-not-the-same == Provider selection == 1. local 2. ExampleBroker @@ -44,7 +44,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-wrong-confirmation +Username: user-integration-native-passwd-retry-if-password-confirmation-is-not-the-same == Provider selection == 1. local 2. ExampleBroker @@ -63,7 +63,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-wrong-confirmation +Username: user-integration-native-passwd-retry-if-password-confirmation-is-not-the-same == Provider selection == 1. local 2. ExampleBroker @@ -82,7 +82,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-wrong-confirmation +Username: user-integration-native-passwd-retry-if-password-confirmation-is-not-the-same == Provider selection == 1. local 2. ExampleBroker @@ -106,7 +106,7 @@ Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-wrong-confirmation +Username: user-integration-native-passwd-retry-if-password-confirmation-is-not-the-same == Provider selection == 1. local 2. ExampleBroker @@ -132,7 +132,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-wrong-confirmation +Username: user-integration-native-passwd-retry-if-password-confirmation-is-not-the-same == Provider selection == 1. local 2. ExampleBroker @@ -158,7 +158,7 @@ Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-wrong-confirmation +Username: user-integration-native-passwd-retry-if-password-confirmation-is-not-the-same == Provider selection == 1. local 2. ExampleBroker @@ -182,12 +182,13 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-wrong-confirmation" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-password-confirmation-is-n +ot-the-same" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} force_native_client=true -Username: user-integration-wrong-confirmation +Username: user-integration-native-passwd-retry-if-password-confirmation-is-not-the-same == Provider selection == 1. local 2. ExampleBroker @@ -211,7 +212,8 @@ Enter your new password: > Confirm Password: > -PAM ChangeAuthTok() for user "user-integration-wrong-confirmation" exited with success +PAM ChangeAuthTok() for user "user-integration-native-passwd-retry-if-password-confirmation-is-n +ot-the-same" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/tapes/native/passwd_auth_fail.tape b/pam/integration-tests/testdata/tapes/native/passwd_auth_fail.tape index c34c3cddb..beb7986ad 100644 --- a/pam/integration-tests/testdata/tapes/native/passwd_auth_fail.tape +++ b/pam/integration-tests/testdata/tapes/native/passwd_auth_fail.tape @@ -5,7 +5,7 @@ Sleep ${AUTHD_SLEEP_COMMAND} Show Hide -Type "user-integration-max-attempts" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/native/passwd_bad_password.tape b/pam/integration-tests/testdata/tapes/native/passwd_bad_password.tape index 93e5b6d74..adee53263 100644 --- a/pam/integration-tests/testdata/tapes/native/passwd_bad_password.tape +++ b/pam/integration-tests/testdata/tapes/native/passwd_bad_password.tape @@ -5,7 +5,7 @@ Sleep ${AUTHD_SLEEP_COMMAND} Show Hide -Type "user-integration-bad-password" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/native/passwd_local_broker.tape b/pam/integration-tests/testdata/tapes/native/passwd_local_broker.tape index 3d7f1ebe6..fef446820 100644 --- a/pam/integration-tests/testdata/tapes/native/passwd_local_broker.tape +++ b/pam/integration-tests/testdata/tapes/native/passwd_local_broker.tape @@ -5,7 +5,7 @@ Sleep ${AUTHD_SLEEP_COMMAND} Show Hide -Type "user-local-broker" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/native/passwd_mfa.tape b/pam/integration-tests/testdata/tapes/native/passwd_mfa.tape index 5eccd8cc2..4de2982d7 100644 --- a/pam/integration-tests/testdata/tapes/native/passwd_mfa.tape +++ b/pam/integration-tests/testdata/tapes/native/passwd_mfa.tape @@ -5,7 +5,7 @@ Sleep ${AUTHD_SLEEP_COMMAND} Show Hide -Type "user-mfa" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/native/passwd_not_changed.tape b/pam/integration-tests/testdata/tapes/native/passwd_not_changed.tape index f08381192..b18cc76a7 100644 --- a/pam/integration-tests/testdata/tapes/native/passwd_not_changed.tape +++ b/pam/integration-tests/testdata/tapes/native/passwd_not_changed.tape @@ -5,7 +5,7 @@ Sleep ${AUTHD_SLEEP_COMMAND} Show Hide -Type "user-integration-same-new-password" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/native/passwd_not_confirmed.tape b/pam/integration-tests/testdata/tapes/native/passwd_not_confirmed.tape index 952f526f3..b2ffd2fda 100644 --- a/pam/integration-tests/testdata/tapes/native/passwd_not_confirmed.tape +++ b/pam/integration-tests/testdata/tapes/native/passwd_not_confirmed.tape @@ -5,7 +5,7 @@ Sleep ${AUTHD_SLEEP_COMMAND} Show Hide -Type "user-integration-wrong-confirmation" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/native/passwd_rejected.tape b/pam/integration-tests/testdata/tapes/native/passwd_rejected.tape index 54ea2f96a..afb441741 100644 --- a/pam/integration-tests/testdata/tapes/native/passwd_rejected.tape +++ b/pam/integration-tests/testdata/tapes/native/passwd_rejected.tape @@ -5,7 +5,7 @@ Sleep ${AUTHD_SLEEP_COMMAND} * 2 Show Hide -Type "user-integration-invalid-new-password" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show @@ -63,7 +63,7 @@ Sleep ${AUTHD_SLEEP_COMMAND} * 2 Show Hide -Type "user-integration-invalid-new-password" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/native/passwd_sigint.tape b/pam/integration-tests/testdata/tapes/native/passwd_sigint.tape index 9fe9bf967..d42c3b87d 100644 --- a/pam/integration-tests/testdata/tapes/native/passwd_sigint.tape +++ b/pam/integration-tests/testdata/tapes/native/passwd_sigint.tape @@ -5,7 +5,7 @@ Sleep ${AUTHD_SLEEP_COMMAND} Show Hide -Type "user-integration-sigint" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/native/passwd_simple.tape b/pam/integration-tests/testdata/tapes/native/passwd_simple.tape index 951724d62..d34799e40 100644 --- a/pam/integration-tests/testdata/tapes/native/passwd_simple.tape +++ b/pam/integration-tests/testdata/tapes/native/passwd_simple.tape @@ -5,7 +5,7 @@ Sleep ${AUTHD_SLEEP_COMMAND} Show Hide -Type "user1" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show @@ -49,7 +49,7 @@ Sleep ${AUTHD_SLEEP_COMMAND} Show Hide -Type "user1" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/native/passwd_unexistent_user.tape b/pam/integration-tests/testdata/tapes/native/passwd_unexistent_user.tape index 7fe56f3f3..0d663686a 100644 --- a/pam/integration-tests/testdata/tapes/native/passwd_unexistent_user.tape +++ b/pam/integration-tests/testdata/tapes/native/passwd_unexistent_user.tape @@ -5,7 +5,7 @@ Sleep ${AUTHD_SLEEP_COMMAND} Show Hide -Type "user-unexistent" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show From f56b0664814de759d5e0f9d41d74fbab6bc5d84c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Wed, 16 Oct 2024 19:36:07 +0200 Subject: [PATCH 09/17] pam/integration-tests/cli-passwd: Ensure user names are unique for all tests So we can run a shared authd for everything --- pam/integration-tests/cli_test.go | 13 +++++ .../golden/change_passwd_after_mfa_auth | 8 +-- ...successfully_and_authenticate_with_new_one | 28 +++++++---- .../exit_authd_if_local_broker_is_selected | 10 ++-- .../golden/exit_authd_if_user_sigints | 10 ++-- .../prevent_change_password_if_auth_fails | 10 ++-- ...w_password_does_not_match_quality_criteria | 8 +-- ...etry_if_new_password_is_rejected_by_broker | 49 ++++++++++++------- .../retry_if_new_password_is_same_of_previous | 8 +-- ...y_if_password_confirmation_is_not_the_same | 8 +-- .../testdata/tapes/cli/passwd_auth_fail.tape | 2 +- .../tapes/cli/passwd_bad_password.tape | 2 +- .../tapes/cli/passwd_local_broker.tape | 2 +- .../testdata/tapes/cli/passwd_mfa.tape | 2 +- .../tapes/cli/passwd_not_changed.tape | 2 +- .../tapes/cli/passwd_not_confirmed.tape | 2 +- .../testdata/tapes/cli/passwd_rejected.tape | 4 +- .../testdata/tapes/cli/passwd_sigint.tape | 2 +- .../testdata/tapes/cli/passwd_simple.tape | 4 +- .../tapes/cli/passwd_unexistent_user.tape | 2 +- 20 files changed, 109 insertions(+), 67 deletions(-) diff --git a/pam/integration-tests/cli_test.go b/pam/integration-tests/cli_test.go index 4f599b2e4..3deb5dad4 100644 --- a/pam/integration-tests/cli_test.go +++ b/pam/integration-tests/cli_test.go @@ -214,6 +214,9 @@ func TestCLIChangeAuthTok(t *testing.T) { }, "Change passwd after MFA auth": { tape: "passwd_mfa", + tapeVariables: map[string]string{ + vhsTapeUserVariable: examplebroker.UserIntegrationMfaPrefix + "cli-passwd", + }, }, "Retry if new password is rejected by broker": { @@ -234,6 +237,9 @@ func TestCLIChangeAuthTok(t *testing.T) { }, "Prevent change password if user does not exist": { tape: "passwd_unexistent_user", + tapeVariables: map[string]string{ + vhsTapeUserVariable: examplebroker.UserIntegrationUnexistent, + }, }, "Prevent change password if current user is not root as can't authenticate": { tape: "passwd_not_root", @@ -258,6 +264,13 @@ func TestCLIChangeAuthTok(t *testing.T) { socketPath = runAuthd(t, os.DevNull, os.DevNull, false) } + if _, ok := tc.tapeVariables[vhsTapeUserVariable]; !ok && !tc.currentUserNotRoot { + if tc.tapeVariables == nil { + tc.tapeVariables = make(map[string]string) + } + tc.tapeVariables[vhsTapeUserVariable] = vhsTestUserName(t, "cli-passwd") + } + td := newTapeData(tc.tape, tc.tapeSettings...) td.Command = tapeCommand td.Variables = tc.tapeVariables diff --git a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/change_passwd_after_mfa_auth b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/change_passwd_after_mfa_auth index 8c849c804..a5b8b3e62 100644 --- a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/change_passwd_after_mfa_auth +++ b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/change_passwd_after_mfa_auth @@ -2,7 +2,7 @@ Username: user name ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -Username: user-mfa +Username: user-mfa-integration-cli-passwd ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Select your provider @@ -18,7 +18,7 @@ Gimme your password Select your authentication method > 1. Password authentication - 2. Send URL to user-mfa@gmail.com + 2. Send URL to user-mfa-integration-cli-passwd@gmail.com 3. Use your fido device foo 4. Use your phone +33... 5. Use your phone +1... @@ -79,12 +79,12 @@ Confirm password: > ********* ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-mfa" exited with success +PAM ChangeAuthTok() for user "user-mfa-integration-cli-passwd" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-mfa" exited with success +PAM ChangeAuthTok() for user "user-mfa-integration-cli-passwd" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/change_password_successfully_and_authenticate_with_new_one b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/change_password_successfully_and_authenticate_with_new_one index 6b114b09d..1729eaf26 100644 --- a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/change_password_successfully_and_authenticate_with_new_one +++ b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/change_password_successfully_and_authenticate_with_new_one @@ -2,7 +2,7 @@ Username: user name ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -Username: user1 +Username: user-integration-cli-passwd-change-password-successfully-and-authenticate-with-new-one ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Select your provider @@ -39,42 +39,50 @@ Confirm password: > ********* ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user1" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-change-password-successfully-and-authe +nticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user1" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-change-password-successfully-and-authe +nticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Username: user name ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user1" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-change-password-successfully-and-authe +nticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -Username: user1 +Username: user-integration-cli-passwd-change-password-successfully-and-authenticate-with-new-one ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user1" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-change-password-successfully-and-authe +nticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Gimme your password > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user1" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-change-password-successfully-and-authe +nticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM Authenticate() for user "user1" exited with success +PAM Authenticate() for user "user-integration-cli-passwd-change-password-successfully-and-authen +ticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user1" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-change-password-successfully-and-authe +nticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ./pam_authd login socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM Authenticate() for user "user1" exited with success +PAM Authenticate() for user "user-integration-cli-passwd-change-password-successfully-and-authen +ticate-with-new-one" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/exit_authd_if_local_broker_is_selected b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/exit_authd_if_local_broker_is_selected index fe6df0d52..1bbc9e143 100644 --- a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/exit_authd_if_local_broker_is_selected +++ b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/exit_authd_if_local_broker_is_selected @@ -2,7 +2,7 @@ Username: user name ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -Username: user-local-broker +Username: user-integration-cli-passwd-exit-authd-if-local-broker-is-selected ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Select your provider @@ -35,8 +35,8 @@ Username: user-local-broker PAM Info Message: chauthtok=incomplete -PAM ChangeAuthTok() for user "user-local-broker" exited with error (PAM exit code: 25): The retu -rn value should be ignored by PAM dispatch +PAM ChangeAuthTok() for user "user-integration-cli-passwd-exit-authd-if-local-broker-is-selected +" exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── @@ -65,8 +65,8 @@ PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate PAM Info Message: chauthtok=incomplete -PAM ChangeAuthTok() for user "user-local-broker" exited with error (PAM exit code: 25): The retu -rn value should be ignored by PAM dispatch +PAM ChangeAuthTok() for user "user-integration-cli-passwd-exit-authd-if-local-broker-is-selected +" exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch PAM AcctMgmt() exited with error (PAM exit code: 26): Critical error - immediate abort > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/exit_authd_if_user_sigints b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/exit_authd_if_user_sigints index abcb20ec4..ad2a2256c 100644 --- a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/exit_authd_if_user_sigints +++ b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/exit_authd_if_user_sigints @@ -2,7 +2,7 @@ Username: user name ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -Username: user-integration-sigint +Username: user-integration-cli-passwd-exit-authd-if-user-sigints ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Select your provider @@ -17,8 +17,8 @@ Gimme your password > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Gimme your password PAM Error Message: cancel requested -PAM ChangeAuthTok() for user "user-integration-sigint" exited with error (PAM exit code: 26): Cr -itical error - immediate abort +PAM ChangeAuthTok() for user "user-integration-cli-passwd-exit-authd-if-user-sigints" exited wit +h error (PAM exit code: 26): Critical error - immediate abort PAM Info Message: acct=incomplete PAM AcctMgmt() exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch @@ -27,8 +27,8 @@ dispatch > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Gimme your password PAM Error Message: cancel requested -PAM ChangeAuthTok() for user "user-integration-sigint" exited with error (PAM exit code: 26): Cr -itical error - immediate abort +PAM ChangeAuthTok() for user "user-integration-cli-passwd-exit-authd-if-user-sigints" exited wit +h error (PAM exit code: 26): Critical error - immediate abort PAM Info Message: acct=incomplete PAM AcctMgmt() exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch diff --git a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/prevent_change_password_if_auth_fails b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/prevent_change_password_if_auth_fails index 375c9d118..09c34dd01 100644 --- a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/prevent_change_password_if_auth_fails +++ b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/prevent_change_password_if_auth_fails @@ -2,7 +2,7 @@ Username: user name ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -Username: user-integration-max-attempts +Username: user-integration-cli-passwd-prevent-change-password-if-auth-fails ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Select your provider @@ -60,8 +60,8 @@ invalid password 'wrongpass', should be 'goodpass' ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} PAM Error Message: invalid password 'wrongpass', should be 'goodpass' -PAM ChangeAuthTok() for user "user-integration-max-attempts" exited with error (PAM exit code: 7 -): Authentication failure +PAM ChangeAuthTok() for user "user-integration-cli-passwd-prevent-change-password-if-auth-fails" + exited with error (PAM exit code: 7): Authentication failure PAM Info Message: acct=incomplete PAM AcctMgmt() exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch @@ -69,8 +69,8 @@ dispatch ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} PAM Error Message: invalid password 'wrongpass', should be 'goodpass' -PAM ChangeAuthTok() for user "user-integration-max-attempts" exited with error (PAM exit code: 7 -): Authentication failure +PAM ChangeAuthTok() for user "user-integration-cli-passwd-prevent-change-password-if-auth-fails" + exited with error (PAM exit code: 7): Authentication failure PAM Info Message: acct=incomplete PAM AcctMgmt() exited with error (PAM exit code: 25): The return value should be ignored by PAM dispatch diff --git a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_new_password_does_not_match_quality_criteria b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_new_password_does_not_match_quality_criteria index dbf7a1f76..ddf863343 100644 --- a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_new_password_does_not_match_quality_criteria +++ b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_new_password_does_not_match_quality_criteria @@ -2,7 +2,7 @@ Username: user name ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -Username: user-integration-bad-password +Username: user-integration-cli-passwd-retry-if-new-password-does-not-match-quality-criteria ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Select your provider @@ -85,12 +85,14 @@ Confirm password: > ********* ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-bad-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-does-not-match-q +uality-criteria" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-bad-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-does-not-match-q +uality-criteria" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_new_password_is_rejected_by_broker b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_new_password_is_rejected_by_broker index 274dfa3b4..a0926e998 100644 --- a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_new_password_is_rejected_by_broker +++ b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_new_password_is_rejected_by_broker @@ -2,7 +2,7 @@ Username: user name ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -Username: user-integration-invalid-new-password +Username: user-integration-cli-passwd-retry-if-new-password-is-rejected-by-broker ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Select your provider @@ -61,36 +61,42 @@ Confirm password: > ********* ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Username: user name ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -Username: user-integration-invalid-new-password +Username: user-integration-cli-passwd-retry-if-new-password-is-rejected-by-broker ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Gimme your password > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Enter your new password @@ -99,7 +105,8 @@ New password: > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Enter your new password @@ -108,7 +115,8 @@ New password: > ********* ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Enter your new password @@ -119,7 +127,8 @@ Confirm password: > ********* ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Enter your new password @@ -129,7 +138,8 @@ New password: new password does not match criteria: must be 'goodpass' ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Enter your new password @@ -139,7 +149,8 @@ New password: new password does not match criteria: must be 'goodpass' ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Enter your new password @@ -150,18 +161,22 @@ Confirm password: > ******** ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-invalid-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-rejected-by-b +roker" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_new_password_is_same_of_previous b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_new_password_is_same_of_previous index e005817d2..e3143a272 100644 --- a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_new_password_is_same_of_previous +++ b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_new_password_is_same_of_previous @@ -2,7 +2,7 @@ Username: user name ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -Username: user-integration-same-new-password +Username: user-integration-cli-passwd-retry-if-new-password-is-same-of-previous ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Select your provider @@ -53,12 +53,14 @@ Confirm password: > ********* ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-same-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-same-of-previ +ous" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-same-new-password" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-new-password-is-same-of-previ +ous" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_password_confirmation_is_not_the_same b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_password_confirmation_is_not_the_same index 052ab6215..a69dd2e6e 100644 --- a/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_password_confirmation_is_not_the_same +++ b/pam/integration-tests/testdata/TestCLIChangeAuthTok/golden/retry_if_password_confirmation_is_not_the_same @@ -2,7 +2,7 @@ Username: user name ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -Username: user-integration-wrong-confirmation +Username: user-integration-cli-passwd-retry-if-password-confirmation-is-not-the-same ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} Select your provider @@ -61,12 +61,14 @@ Confirm password: > ********* ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-wrong-confirmation" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-password-confirmation-is-not- +the-same" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── > ./pam_authd passwd socket=${AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK} -PAM ChangeAuthTok() for user "user-integration-wrong-confirmation" exited with success +PAM ChangeAuthTok() for user "user-integration-cli-passwd-retry-if-password-confirmation-is-not- +the-same" exited with success PAM AcctMgmt() exited with success > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/tapes/cli/passwd_auth_fail.tape b/pam/integration-tests/testdata/tapes/cli/passwd_auth_fail.tape index 82c072331..e631e7e4a 100644 --- a/pam/integration-tests/testdata/tapes/cli/passwd_auth_fail.tape +++ b/pam/integration-tests/testdata/tapes/cli/passwd_auth_fail.tape @@ -7,7 +7,7 @@ Show Hide Escape Backspace -Type "user-integration-max-attempts" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/cli/passwd_bad_password.tape b/pam/integration-tests/testdata/tapes/cli/passwd_bad_password.tape index 243ae63c5..b2bbfb3d7 100644 --- a/pam/integration-tests/testdata/tapes/cli/passwd_bad_password.tape +++ b/pam/integration-tests/testdata/tapes/cli/passwd_bad_password.tape @@ -7,7 +7,7 @@ Show Hide Escape Backspace -Type "user-integration-bad-password" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/cli/passwd_local_broker.tape b/pam/integration-tests/testdata/tapes/cli/passwd_local_broker.tape index 3d12c331e..ac7e7b342 100644 --- a/pam/integration-tests/testdata/tapes/cli/passwd_local_broker.tape +++ b/pam/integration-tests/testdata/tapes/cli/passwd_local_broker.tape @@ -7,7 +7,7 @@ Show Hide Escape Backspace -Type "user-local-broker" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/cli/passwd_mfa.tape b/pam/integration-tests/testdata/tapes/cli/passwd_mfa.tape index cb93cb809..7d2507109 100644 --- a/pam/integration-tests/testdata/tapes/cli/passwd_mfa.tape +++ b/pam/integration-tests/testdata/tapes/cli/passwd_mfa.tape @@ -7,7 +7,7 @@ Show Hide Escape Backspace -Type "user-mfa" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/cli/passwd_not_changed.tape b/pam/integration-tests/testdata/tapes/cli/passwd_not_changed.tape index beba7217b..89f05d72a 100644 --- a/pam/integration-tests/testdata/tapes/cli/passwd_not_changed.tape +++ b/pam/integration-tests/testdata/tapes/cli/passwd_not_changed.tape @@ -7,7 +7,7 @@ Show Hide Escape Backspace -Type "user-integration-same-new-password" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/cli/passwd_not_confirmed.tape b/pam/integration-tests/testdata/tapes/cli/passwd_not_confirmed.tape index 21cb19720..832390004 100644 --- a/pam/integration-tests/testdata/tapes/cli/passwd_not_confirmed.tape +++ b/pam/integration-tests/testdata/tapes/cli/passwd_not_confirmed.tape @@ -7,7 +7,7 @@ Show Hide Escape Backspace -Type "user-integration-wrong-confirmation" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/cli/passwd_rejected.tape b/pam/integration-tests/testdata/tapes/cli/passwd_rejected.tape index 9746e9d8c..11ae2d606 100644 --- a/pam/integration-tests/testdata/tapes/cli/passwd_rejected.tape +++ b/pam/integration-tests/testdata/tapes/cli/passwd_rejected.tape @@ -7,7 +7,7 @@ Show Hide Escape Backspace -Type "user-integration-invalid-new-password" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show @@ -75,7 +75,7 @@ Show Hide Escape Backspace -Type "user-integration-invalid-new-password" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/cli/passwd_sigint.tape b/pam/integration-tests/testdata/tapes/cli/passwd_sigint.tape index 60f39900e..e16dc3b23 100644 --- a/pam/integration-tests/testdata/tapes/cli/passwd_sigint.tape +++ b/pam/integration-tests/testdata/tapes/cli/passwd_sigint.tape @@ -7,7 +7,7 @@ Show Hide Escape Backspace -Type "user-integration-sigint" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/cli/passwd_simple.tape b/pam/integration-tests/testdata/tapes/cli/passwd_simple.tape index b5eca1a26..5340dc2ce 100644 --- a/pam/integration-tests/testdata/tapes/cli/passwd_simple.tape +++ b/pam/integration-tests/testdata/tapes/cli/passwd_simple.tape @@ -7,7 +7,7 @@ Show Hide Escape Backspace -Type "user1" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show @@ -55,7 +55,7 @@ Show Hide Escape Backspace -Type "user1" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show diff --git a/pam/integration-tests/testdata/tapes/cli/passwd_unexistent_user.tape b/pam/integration-tests/testdata/tapes/cli/passwd_unexistent_user.tape index b468c2186..510ddb312 100644 --- a/pam/integration-tests/testdata/tapes/cli/passwd_unexistent_user.tape +++ b/pam/integration-tests/testdata/tapes/cli/passwd_unexistent_user.tape @@ -7,7 +7,7 @@ Show Hide Escape Backspace -Type "user-unexistent" +Type "${AUTHD_TEST_TAPE_USERNAME}" Sleep ${AUTHD_SLEEP_DEFAULT} Show From ff6b703eaf81c7706893ab1010d071cac71c2e3f Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Thu, 17 Oct 2024 15:22:07 +0200 Subject: [PATCH 10/17] testutils/daemon: Remove temporary dir when process has been stopped We removed the temporary dir on test cleanup but we may want to keep the lifecycle of the daemon bound to the daemon itself instead --- internal/testutils/daemon.go | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/internal/testutils/daemon.go b/internal/testutils/daemon.go index e319a85f1..c7a7c6d7f 100644 --- a/internal/testutils/daemon.go +++ b/internal/testutils/daemon.go @@ -69,7 +69,6 @@ func RunDaemon(ctx context.Context, t *testing.T, execPath string, args ...Daemo // Socket name has a maximum size, so we can't use t.TempDir() directly. tempDir, err := os.MkdirTemp("", "authd-daemon4tests") require.NoError(t, err, "Setup: failed to create temp dir for tests") - t.Cleanup(func() { os.RemoveAll(tempDir) }) if opts.cachePath == "" { opts.cachePath = filepath.Join(tempDir, "cache") @@ -102,6 +101,7 @@ paths: // This is the function that is called by CommandContext when the context is cancelled. cmd.Cancel = func() error { + defer os.RemoveAll(tempDir) return cmd.Process.Signal(os.Signal(syscall.SIGTERM)) } From 30b0361f27cf38565f7bf7d5591321b7b733e4ba Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Fri, 22 Nov 2024 14:32:58 +0100 Subject: [PATCH 11/17] examplebroker: Use simpler check for "pre-check" users The user name now has only to contain the pre-check value prefix while we don't care about its location to allow more combination of cases (such as pre-check MFA users). --- examplebroker/broker.go | 3 ++- examplebroker/users.go | 4 +++- internal/brokers/broker.go | 1 + 3 files changed, 6 insertions(+), 2 deletions(-) diff --git a/examplebroker/broker.go b/examplebroker/broker.go index 83e9864d1..bdea8e654 100644 --- a/examplebroker/broker.go +++ b/examplebroker/broker.go @@ -763,7 +763,8 @@ func (b *Broker) cancelIsAuthenticatedUnlocked(_ context.Context, sessionID stri // UserPreCheck checks if the user is known to the broker. func (b *Broker) UserPreCheck(ctx context.Context, username string) (string, error) { - if strings.HasPrefix(username, UserIntegrationPreCheckPrefix) { + if strings.HasPrefix(username, "user-") && strings.Contains(username, "integration") && + strings.Contains(username, fmt.Sprintf("-%s-", UserIntegrationPreCheckValue)) { return userInfoFromName(username), nil } if _, exists := exampleUsers[username]; !exists { diff --git a/examplebroker/users.go b/examplebroker/users.go index 0191e6b54..5f2a83107 100644 --- a/examplebroker/users.go +++ b/examplebroker/users.go @@ -41,8 +41,10 @@ const ( UserIntegrationLocalGroupsPrefix = "user-local-groups-integration-" // UserIntegrationQrcodeStaticPrefix is the prefix for a static qrcode user for integration tests. UserIntegrationQrcodeStaticPrefix = "user-integration-qrcode-static-" + // UserIntegrationPreCheckValue is the value for a pre-check user for integration tests. + UserIntegrationPreCheckValue = "pre-check" // UserIntegrationPreCheckPrefix is the prefix for a pre-check user for integration tests. - UserIntegrationPreCheckPrefix = "user-integration-pre-check-" + UserIntegrationPreCheckPrefix = UserIntegrationPrefix + UserIntegrationPreCheckValue + "-" // UserIntegrationUnexistent is an unexistent user leading to a non-existent user error. UserIntegrationUnexistent = "user-unexistent" ) diff --git a/internal/brokers/broker.go b/internal/brokers/broker.go index 9f71d3960..123a4c2a1 100644 --- a/internal/brokers/broker.go +++ b/internal/brokers/broker.go @@ -239,6 +239,7 @@ func (b Broker) cancelIsAuthenticated(ctx context.Context, sessionID string) { // UserPreCheck calls the broker corresponding method. func (b Broker) UserPreCheck(ctx context.Context, username string) (userinfo string, err error) { + log.Debugf(context.TODO(), "Pre-Checking user %q", username) return b.brokerer.UserPreCheck(ctx, username) } From f31ab3f666fb6990a9a02dca112dde6c6356e137 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Fri, 22 Nov 2024 15:53:25 +0100 Subject: [PATCH 12/17] pam/integration-tests/ssh: Use unique names for SSH tests --- pam/integration-tests/ssh_test.go | 41 +- ...uthenticate_user_and_accept_password_reset | 102 +- ...r_and_accept_password_reset_on_shared_sshd | 102 +- ...uthenticate_user_and_add_it_to_local_group | 29 +- ...user_and_add_it_to_local_group.gpasswd_out | 2 +- ...r_and_add_it_to_local_group_on_shared_sshd | 29 +- ..._to_local_group_on_shared_sshd.gpasswd_out | 2 +- ...authenticate_user_and_offer_password_reset | 44 +- ...er_and_offer_password_reset_on_shared_sshd | 44 +- ..._and_reset_password_while_enforcing_policy | 62 +- ...word_while_enforcing_policy_on_shared_sshd | 62 +- .../golden/authenticate_user_successfully | 32 +- ...nticate_user_successfully_and_enters_shell | 106 +- ...ccessfully_and_enters_shell_on_shared_sshd | 113 +- ...henticate_user_successfully_on_shared_sshd | 36 +- .../authenticate_user_switching_auth_mode | 1259 +++++++------- ...te_user_switching_auth_mode_on_shared_sshd | 1542 ++++++++--------- ...uthenticate_user_switching_to_local_broker | 166 +- ...r_switching_to_local_broker_on_shared_sshd | 168 +- ...thenticate_user_with_form_mode_with_button | 164 +- ..._with_form_mode_with_button_on_shared_sshd | 164 +- .../golden/authenticate_user_with_mfa | 289 +-- ..._and_reset_password_while_enforcing_policy | 315 ++-- ...word_while_enforcing_policy_on_shared_sshd | 315 ++-- .../authenticate_user_with_mfa_on_shared_sshd | 300 ++-- .../golden/authenticate_user_with_qr_code | 255 +-- ...henticate_user_with_qr_code_on_shared_sshd | 284 +-- ...eny_authentication_if_max_attempts_reached | 140 +- ...ion_if_max_attempts_reached_on_shared_sshd | 140 +- ...wpassword_does_not_match_required_criteria | 247 ++- ...not_match_required_criteria_on_shared_sshd | 247 ++- .../exit_authd_if_local_broker_is_selected | 20 +- ...if_local_broker_is_selected_on_shared_sshd | 24 +- .../golden/exit_authd_if_user_sigints | 22 +- .../exit_authd_if_user_sigints_on_shared_sshd | 36 +- .../prevent_user_from_switching_username | 212 +-- ...ser_from_switching_username_on_shared_sshd | 244 +-- .../remember_last_successful_broker_and_mode | 240 +-- ..._successful_broker_and_mode_on_shared_sshd | 248 +-- 39 files changed, 4284 insertions(+), 3563 deletions(-) diff --git a/pam/integration-tests/ssh_test.go b/pam/integration-tests/ssh_test.go index 3d533b8ea..469a429df 100644 --- a/pam/integration-tests/ssh_test.go +++ b/pam/integration-tests/ssh_test.go @@ -94,6 +94,7 @@ func testSSHAuthenticate(t *testing.T, sharedSSHd bool) { tapeVariables map[string]string user string + userPrefix string pamServiceName string daemonizeSSHd bool interactiveShell bool @@ -110,8 +111,8 @@ func testSSHAuthenticate(t *testing.T, sharedSSHd bool) { }, "Authenticate user with mfa": { tape: "mfa_auth", - tapeSettings: []tapeSetting{{vhsHeight, 1200}}, - user: "user-mfa", + tapeSettings: []tapeSetting{{vhsHeight, 1500}}, + userPrefix: examplebroker.UserIntegrationMfaPrefix, }, "Authenticate user with form mode with button": { tape: "form_with_button", @@ -123,21 +124,21 @@ func testSSHAuthenticate(t *testing.T, sharedSSHd bool) { tapeVariables: map[string]string{"AUTHD_QRCODE_TAPE_ITEM": "2"}, }, "Authenticate user and reset password while enforcing policy": { - tape: "mandatory_password_reset", - user: "user-needs-reset", + tape: "mandatory_password_reset", + userPrefix: examplebroker.UserIntegrationNeedsResetPrefix, }, "Authenticate user with mfa and reset password while enforcing policy": { tape: "mfa_reset_pwquality_auth", - user: "user-mfa-with-reset", tapeSettings: []tapeSetting{{vhsHeight, 1500}}, + userPrefix: examplebroker.UserIntegrationMfaWithResetPrefix, }, "Authenticate user and offer password reset": { - tape: "optional_password_reset_skip", - user: "user-can-reset", + tape: "optional_password_reset_skip", + userPrefix: examplebroker.UserIntegrationCanResetPrefix, }, "Authenticate user and accept password reset": { - tape: "optional_password_reset_accept", - user: "user-can-reset2", + tape: "optional_password_reset_accept", + userPrefix: examplebroker.UserIntegrationCanResetPrefix, }, "Authenticate user switching auth mode": { tape: "switch_auth_mode", @@ -150,7 +151,7 @@ func testSSHAuthenticate(t *testing.T, sharedSSHd bool) { }, "Authenticate user and add it to local group": { tape: "local_group", - user: "user-local-groups", + userPrefix: examplebroker.UserIntegrationLocalGroupsPrefix, wantLocalGroups: true, }, @@ -181,8 +182,9 @@ func testSSHAuthenticate(t *testing.T, sharedSSHd bool) { wantNotLoggedInUser: true, }, "Deny authentication if newpassword does not match required criteria": { - tape: "bad_password", - user: "user-needs-reset2", + tape: "bad_password", + userPrefix: examplebroker.UserIntegrationNeedsResetPrefix, + tapeSettings: []tapeSetting{{vhsHeight, 1200}}, }, "Prevent user from switching username": { @@ -223,8 +225,14 @@ func testSSHAuthenticate(t *testing.T, sharedSSHd bool) { } user := tc.user + if tc.userPrefix != "" { + tc.userPrefix = tc.userPrefix + examplebroker.UserIntegrationPreCheckValue + } + if tc.userPrefix == "" { + tc.userPrefix = examplebroker.UserIntegrationPreCheckPrefix + } if user == "" { - user = vhsTestUserNameFull(t, examplebroker.UserIntegrationPreCheckPrefix, "") + user = vhsTestUserNameFull(t, tc.userPrefix, "ssh") } sshdPort := defaultSSHDPort @@ -283,7 +291,12 @@ func sanitizeGoldenFile(t *testing.T, td tapeData, outDir string) string { // When sshd is in debug mode, it shows the environment variables, so let's sanitize them golden = regexp.MustCompile(`(?m) (PATH|HOME|PWD|SSH_[A-Z]+)=.*(\n*)($[^ ]{2}.*)?$`).ReplaceAllString( golden, " $1=$${AUTHD_TEST_$1}") - return golden + + // Username may be split in multiple lines, so fix this not to break further checks. + return regexp.MustCompile(`(?m) (USER|LOGNAME)=.*$\n*[a-z0-9-]+$`).ReplaceAllStringFunc( + golden, func(s string) string { + return strings.ReplaceAll(s, "\n", "") + }) } func createSshdServiceFile(t *testing.T, module, execChild, socketPath string) string { diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_accept_password_reset b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_accept_password_reset index a7ae71c53..fec6a61f6 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_accept_password_reset +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_accept_password_reset @@ -1,32 +1,38 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider @@ -34,74 +40,88 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-can-reset2@localhost) Confirm Password: +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-can-reset2@localhost) Confirm Password: +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + Confirm Password: > Environment: - USER=user-can-reset2 - LOGNAME=user-can-reset2 + USER=user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset + LOGNAME=user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -115,30 +135,35 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-can-reset2@localhost) Confirm Password: +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + Confirm Password: > Environment: - USER=user-can-reset2 - LOGNAME=user-can-reset2 + USER=user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset + LOGNAME=user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -153,30 +178,35 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-can-reset2@localhost) Confirm Password: +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset@localhost) + Confirm Password: > Environment: - USER=user-can-reset2 - LOGNAME=user-can-reset2 + USER=user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset + LOGNAME=user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_accept_password_reset_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_accept_password_reset_on_shared_sshd index fd927e662..26c4fe768 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_accept_password_reset_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_accept_password_reset_on_shared_sshd @@ -1,32 +1,38 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider @@ -34,74 +40,88 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-can-reset2@localhost) Confirm Password: +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-can-reset2@localhost) Confirm Password: +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) Confirm Password: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-can-reset2 + LOGNAME=user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -109,35 +129,40 @@ Enter your new password (3 days until mandatory): SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-can-reset2 + USER=user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-can-reset2@localhost) Confirm Password: +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) Confirm Password: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-can-reset2 + LOGNAME=user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -145,36 +170,41 @@ Enter your new password (3 days until mandatory): SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-can-reset2 + USER=user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared-sshd Connection to localhost closed. > > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset2@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset2@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-can-reset2@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-can-reset2@localhost) Confirm Password: +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared- +sshd@localhost) Confirm Password: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-can-reset2 + LOGNAME=user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -182,7 +212,7 @@ Enter your new password (3 days until mandatory): SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-can-reset2 + USER=user-can-reset-integration-pre-check-ssh-authenticate-user-and-accept-password-reset-on-shared-sshd Connection to localhost closed. > > diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group index 87b6a43ff..cc56bc2d2 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group @@ -1,34 +1,39 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-local-groups@localhost) == Provider selection == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group@localho +st) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-local-groups@localhost) == Provider selection == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group@localho +st) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-local-groups@localhost) == Password authentication == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group@localho +st) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-local-groups@localhost) == Provider selection == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group@localho +st) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-local-groups@localhost) == Password authentication == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group@localho +st) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-local-groups - LOGNAME=user-local-groups + USER=user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group + LOGNAME=user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -42,18 +47,20 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-local-groups@localhost) == Provider selection == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group@localho +st) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-local-groups@localhost) == Password authentication == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group@localho +st) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-local-groups - LOGNAME=user-local-groups + USER=user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group + LOGNAME=user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group.gpasswd_out b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group.gpasswd_out index 63ddd3d8f..a8528cc44 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group.gpasswd_out +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group.gpasswd_out @@ -1 +1 @@ ---add user-local-groups localgroup \ No newline at end of file +--add user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group localgroup \ No newline at end of file diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group_on_shared_sshd index b42d9b91f..48fc2755b 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group_on_shared_sshd @@ -1,34 +1,39 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-local-groups@localhost) == Provider selection == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group-on-shar +ed-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-local-groups@localhost) == Provider selection == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group-on-shar +ed-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-local-groups@localhost) == Password authentication == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group-on-shar +ed-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-local-groups@localhost) == Provider selection == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group-on-shar +ed-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-local-groups@localhost) == Password authentication == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group-on-shar +ed-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-local-groups - LOGNAME=user-local-groups + USER=user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group-on-shared-sshd + LOGNAME=user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group-on-shared-sshd HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -42,18 +47,20 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-local-groups@localhost) == Provider selection == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group-on-shar +ed-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-local-groups@localhost) == Password authentication == +(user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group-on-shar +ed-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-local-groups - LOGNAME=user-local-groups + USER=user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group-on-shared-sshd + LOGNAME=user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group-on-shared-sshd HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group_on_shared_sshd.gpasswd_out b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group_on_shared_sshd.gpasswd_out index 63ddd3d8f..ffd6a5fda 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group_on_shared_sshd.gpasswd_out +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_add_it_to_local_group_on_shared_sshd.gpasswd_out @@ -1 +1 @@ ---add user-local-groups localgroup \ No newline at end of file +--add user-local-groups-integration-pre-check-ssh-authenticate-user-and-add-it-to-local-group-on-shared-sshd localgroup \ No newline at end of file diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_offer_password_reset b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_offer_password_reset index 0c4a7cf02..b6ada62c7 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_offer_password_reset +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_offer_password_reset @@ -1,32 +1,38 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset@localhost) +== Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider @@ -34,24 +40,27 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset@localhost) +== Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 2 Environment: - USER=user-can-reset - LOGNAME=user-can-reset + USER=user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset + LOGNAME=user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -65,24 +74,27 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset@localhost) +== Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 2 Environment: - USER=user-can-reset - LOGNAME=user-can-reset + USER=user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset + LOGNAME=user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_offer_password_reset_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_offer_password_reset_on_shared_sshd index 819e07f05..9dc7da815 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_offer_password_reset_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_offer_password_reset_on_shared_sshd @@ -1,32 +1,38 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-s +shd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-s +shd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-s +shd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-s +shd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-s +shd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-s +shd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider @@ -34,16 +40,19 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-s +shd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-s +shd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-s +shd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider @@ -51,7 +60,7 @@ Choose action: > 2 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-can-reset + LOGNAME=user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -59,21 +68,24 @@ Choose action: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-can-reset + USER=user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-can-reset@localhost) == Provider selection == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-s +shd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-can-reset@localhost) == Password authentication == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-s +shd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-can-reset@localhost) == Password reset == +(user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-s +shd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider @@ -81,7 +93,7 @@ Choose action: > 2 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-can-reset + LOGNAME=user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -89,7 +101,7 @@ Choose action: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-can-reset + USER=user-can-reset-integration-pre-check-ssh-authenticate-user-and-offer-password-reset-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_reset_password_while_enforcing_policy b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_reset_password_while_enforcing_policy index 5bf69bfda..ebf540d99 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_reset_password_while_enforcing_policy +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_reset_password_while_enforcing_policy @@ -1,72 +1,86 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) Confirm Password: > Environment: - USER=user-needs-reset - LOGNAME=user-needs-reset + USER=user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing-policy + LOGNAME=user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing-policy HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -80,24 +94,28 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy@localhost) Confirm Password: > Environment: - USER=user-needs-reset - LOGNAME=user-needs-reset + USER=user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing-policy + LOGNAME=user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing-policy HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_reset_password_while_enforcing_policy_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_reset_password_while_enforcing_policy_on_shared_sshd index 064b315b8..e68d29b26 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_reset_password_while_enforcing_policy_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_and_reset_password_while_enforcing_policy_on_shared_sshd @@ -1,72 +1,86 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) Confirm Password: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-needs-reset + LOGNAME=user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing-policy-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -74,29 +88,33 @@ Enter your new password: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-needs-reset + USER=user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing-policy-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing +-policy-on-shared-sshd@localhost) Confirm Password: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-needs-reset + LOGNAME=user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing-policy-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -104,7 +122,7 @@ Enter your new password: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-needs-reset + USER=user-needs-reset-integration-pre-check-ssh-authenticate-user-and-reset-password-while-enforcing-policy-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully index 22a07c2fc..d0713e6ed 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully @@ -1,36 +1,39 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-successfully@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-successfully@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully@localhost) == Password authentication - == +(user-integration-pre-check-ssh-authenticate-user-successfully@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-successfully@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully@localhost) == Password authentication - == +(user-integration-pre-check-ssh-authenticate-user-successfully@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully - LOGNAME=user-integration-pre-check-authenticate-user-successfully + USER=user-integration-pre-check-ssh-authenticate-user-successfully + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -43,19 +46,20 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-successfully@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully@localhost) == Password authentication - == +(user-integration-pre-check-ssh-authenticate-user-successfully@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully - LOGNAME=user-integration-pre-check-authenticate-user-successfully + USER=user-integration-pre-check-ssh-authenticate-user-successfully + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully_and_enters_shell b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully_and_enters_shell index 7aa8f414a..6885e16c2 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully_and_enters_shell +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully_and_enters_shell @@ -1,39 +1,39 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Provid -er selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pr +ovider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Provid -er selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pr +ovider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Passwo -rd authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pa +ssword authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Provid -er selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pr +ovider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Passwo -rd authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pa +ssword authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -43,20 +43,20 @@ Environment: SSH_TTY=${AUTHD_TEST_SSH_TTY} ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Provid -er selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pr +ovider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Passwo -rd authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pa +ssword authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -66,20 +66,20 @@ Environment: SSH_TTY=${AUTHD_TEST_SSH_TTY} ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Provid -er selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pr +ovider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Passwo -rd authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pa +ssword authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -87,24 +87,24 @@ Environment: SSH_CLIENT=${AUTHD_TEST_SSH_CLIENT} SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} -user-integration-pre-check-authenticate-user-successfully-and-enters-shell +user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell $ ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Provid -er selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pr +ovider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Passwo -rd authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pa +ssword authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -112,26 +112,26 @@ Environment: SSH_CLIENT=${AUTHD_TEST_SSH_CLIENT} SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} -user-integration-pre-check-authenticate-user-successfully-and-enters-shell +user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell $ [ -n "${SSH_CONNECTION}" ] && echo "Inside SSH" Inside SSH $ ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Provid -er selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pr +ovider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Passwo -rd authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pa +ssword authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -139,7 +139,7 @@ Environment: SSH_CLIENT=${AUTHD_TEST_SSH_CLIENT} SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} -user-integration-pre-check-authenticate-user-successfully-and-enters-shell +user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell $ [ -n "${SSH_CONNECTION}" ] && echo "Inside SSH" Inside SSH $ @@ -147,20 +147,20 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Provid -er selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pr +ovider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Passwo -rd authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pa +ssword authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -168,7 +168,7 @@ Environment: SSH_CLIENT=${AUTHD_TEST_SSH_CLIENT} SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} -user-integration-pre-check-authenticate-user-successfully-and-enters-shell +user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell $ [ -n "${SSH_CONNECTION}" ] && echo "Inside SSH" Inside SSH $ @@ -178,20 +178,20 @@ Outside SSH > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Provid -er selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pr +ovider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell@localhost) == Passwo -rd authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell@localhost) == Pa +ssword authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -199,7 +199,7 @@ Environment: SSH_CLIENT=${AUTHD_TEST_SSH_CLIENT} SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} -user-integration-pre-check-authenticate-user-successfully-and-enters-shell +user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell $ [ -n "${SSH_CONNECTION}" ] && echo "Inside SSH" Inside SSH $ diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully_and_enters_shell_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully_and_enters_shell_on_shared_sshd index 131ea10e2..4610ebf9b 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully_and_enters_shell_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully_and_enters_shell_on_shared_sshd @@ -1,40 +1,39 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-s -shd + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -44,21 +43,20 @@ shd SSH_TTY=${AUTHD_TEST_SSH_TTY} ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-s -shd + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -68,21 +66,20 @@ shd SSH_TTY=${AUTHD_TEST_SSH_TTY} ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-s -shd + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -90,25 +87,24 @@ shd SSH_CLIENT=${AUTHD_TEST_SSH_CLIENT} SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} -user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd +user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd $ ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-s -shd + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -116,27 +112,26 @@ shd SSH_CLIENT=${AUTHD_TEST_SSH_CLIENT} SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} -user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd +user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd $ [ -n "${SSH_CONNECTION}" ] && echo "Inside SSH" Inside SSH $ ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-s -shd + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -144,7 +139,7 @@ shd SSH_CLIENT=${AUTHD_TEST_SSH_CLIENT} SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} -user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd +user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd $ [ -n "${SSH_CONNECTION}" ] && echo "Inside SSH" Inside SSH $ @@ -152,21 +147,20 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-s -shd + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -174,7 +168,7 @@ shd SSH_CLIENT=${AUTHD_TEST_SSH_CLIENT} SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} -user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd +user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd $ [ -n "${SSH_CONNECTION}" ] && echo "Inside SSH" Inside SSH $ @@ -184,21 +178,20 @@ Outside SSH > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd@local -host) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd@l +ocalhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd - LOGNAME=user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-s -shd + USER=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -206,7 +199,7 @@ shd SSH_CLIENT=${AUTHD_TEST_SSH_CLIENT} SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} -user-integration-pre-check-authenticate-user-successfully-and-enters-shell-on-shared-sshd +user-integration-pre-check-ssh-authenticate-user-successfully-and-enters-shell-on-shared-sshd $ [ -n "${SSH_CONNECTION}" ] && echo "Inside SSH" Inside SSH $ diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully_on_shared_sshd index 4f4c73c37..942f91f04 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_successfully_on_shared_sshd @@ -1,39 +1,39 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-on-shared-sshd@localhost) == Password - authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-on-shared-sshd@localhost) == Password - authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-authenticate-user-successfully-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -41,25 +41,25 @@ Gimme your password: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-authenticate-user-successfully-on-shared-sshd + USER=user-integration-pre-check-ssh-authenticate-user-successfully-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-successfully-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-successfully-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-successfully-on-shared-sshd@localhost) == Password - authentication == +(user-integration-pre-check-ssh-authenticate-user-successfully-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-authenticate-user-successfully-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-successfully-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -67,7 +67,7 @@ Gimme your password: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-authenticate-user-successfully-on-shared-sshd + USER=user-integration-pre-check-ssh-authenticate-user-successfully-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_auth_mode b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_auth_mode index 0e49300ec..5dff30914 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_auth_mode +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_auth_mode @@ -1,41 +1,41 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -46,22 +46,22 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -70,8 +70,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -83,22 +83,22 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -107,8 +107,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -118,11 +118,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -133,22 +133,22 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -157,8 +157,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -168,11 +168,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -181,31 +181,31 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -214,8 +214,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -225,11 +225,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -238,18 +238,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -260,22 +260,22 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -284,8 +284,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -295,11 +295,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -308,18 +308,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -328,30 +328,30 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -360,8 +360,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -371,11 +371,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -384,18 +384,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -404,17 +404,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -425,22 +425,22 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -449,8 +449,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -460,11 +460,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -473,18 +473,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -493,17 +493,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -512,30 +512,30 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -544,8 +544,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -555,11 +555,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -568,18 +568,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -588,17 +588,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -607,17 +607,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -628,22 +628,22 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -652,8 +652,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -663,11 +663,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -676,18 +676,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -696,17 +696,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -715,17 +715,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -734,30 +734,30 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -766,8 +766,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -777,11 +777,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -790,18 +790,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -810,17 +810,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -829,17 +829,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -848,17 +848,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -869,22 +869,22 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -893,8 +893,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -904,11 +904,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -917,18 +917,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -937,17 +937,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -956,17 +956,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -975,17 +975,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -994,28 +994,28 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Pin code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1024,8 +1024,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -1035,11 +1035,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1048,18 +1048,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1068,17 +1068,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1087,17 +1087,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1106,17 +1106,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1125,15 +1125,15 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Pin code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1144,22 +1144,22 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1168,8 +1168,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -1179,11 +1179,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1192,18 +1192,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1212,17 +1212,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1231,17 +1231,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1250,17 +1250,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1269,15 +1269,15 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Pin code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1286,8 +1286,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication c -ode == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method @@ -1295,22 +1295,22 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1319,8 +1319,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -1330,11 +1330,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1343,18 +1343,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1363,17 +1363,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1382,17 +1382,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1401,17 +1401,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1420,15 +1420,15 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Pin code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1437,18 +1437,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication c -ode == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1459,22 +1459,22 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1483,8 +1483,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -1494,11 +1494,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1507,18 +1507,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1527,17 +1527,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1546,17 +1546,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1565,17 +1565,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1584,15 +1584,15 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Pin code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1601,18 +1601,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication c -ode == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1621,27 +1621,28 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > invalid-selection -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) Unsupported input +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) Unsupported inp +ut Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1650,8 +1651,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -1661,11 +1662,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1674,18 +1675,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1694,17 +1695,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1713,17 +1714,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1732,17 +1733,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1751,15 +1752,15 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Pin code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1768,18 +1769,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication c -ode == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1788,14 +1789,16 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > invalid-selection -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) Unsupported input +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) Unsupported inp +ut Choose your authentication method: > -1 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) Invalid selection +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) Invalid selecti +on == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1806,22 +1809,22 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1830,8 +1833,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -1841,11 +1844,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1854,18 +1857,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1874,17 +1877,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1893,17 +1896,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1912,17 +1915,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1931,15 +1934,15 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Pin code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1948,18 +1951,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication c -ode == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1968,14 +1971,16 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > invalid-selection -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) Unsupported input +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) Unsupported inp +ut Choose your authentication method: > -1 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) Invalid selection +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) Invalid selecti +on == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1984,28 +1989,28 @@ Choose your authentication method: Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Pin code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2014,8 +2019,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -2025,11 +2030,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2038,18 +2043,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2058,17 +2063,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2077,17 +2082,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2096,17 +2101,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2115,15 +2120,15 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Pin code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2132,18 +2137,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication c -ode == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2152,14 +2157,16 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > invalid-selection -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) Unsupported input +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) Unsupported inp +ut Choose your authentication method: > -1 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) Invalid selection +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) Invalid selecti +on == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2168,13 +2175,13 @@ Choose your authentication method: Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Pin code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > 4242 Environment: - USER=user-integration-pre-check-authenticate-user-switching-auth-mode - LOGNAME=user-integration-pre-check-authenticate-user-switching-auth-mode + USER=user-integration-pre-check-ssh-authenticate-user-switching-auth-mode + LOGNAME=user-integration-pre-check-ssh-authenticate-user-switching-auth-mode HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -2188,22 +2195,22 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Provider selecti -on == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Provider sel +ection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Password authent -ication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Password aut +hentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2212,8 +2219,8 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Qr Code authenti -cation == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Qr Code auth +entication == Enter the code in the login page https://ubuntu.com 1337 @@ -2223,11 +2230,11 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2236,18 +2243,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Send URL to user --integration-pre-check-authenticate-user-switching-auth-mode@gmail.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Send URL to +user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode@g -mail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2256,17 +2263,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your fido de -vice foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your fid +o device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2275,17 +2282,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2294,17 +2301,17 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Use your phone + -1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Use your pho +ne +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2313,15 +2320,15 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Pin code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2330,18 +2337,18 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication c -ode == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Authentication m -ethod selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Authenticati +on method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2350,14 +2357,16 @@ ethod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > invalid-selection -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) Unsupported input +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) Unsupported inp +ut Choose your authentication method: > -1 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) Invalid selection +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) Invalid selecti +on == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2366,13 +2375,13 @@ Choose your authentication method: Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode@localhost) == Pin code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode@localhost) == Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > 4242 Environment: - USER=user-integration-pre-check-authenticate-user-switching-auth-mode - LOGNAME=user-integration-pre-check-authenticate-user-switching-auth-mode + USER=user-integration-pre-check-ssh-authenticate-user-switching-auth-mode + LOGNAME=user-integration-pre-check-ssh-authenticate-user-switching-auth-mode HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_auth_mode_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_auth_mode_on_shared_sshd index 966a4759f..5c624e86d 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_auth_mode_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_auth_mode_on_shared_sshd @@ -1,42 +1,42 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -47,23 +47,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -72,8 +72,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -85,23 +85,23 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -110,8 +110,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -121,12 +121,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -137,23 +137,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -162,8 +162,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -173,12 +173,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -187,33 +187,33 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -222,8 +222,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -233,12 +233,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -247,20 +247,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -271,23 +271,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -296,8 +296,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -307,12 +307,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -321,20 +321,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -343,31 +343,31 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -376,8 +376,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -387,12 +387,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -401,20 +401,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -423,18 +423,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -445,23 +445,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -470,8 +470,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -481,12 +481,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -495,20 +495,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -517,18 +517,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -537,31 +537,31 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -570,8 +570,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -581,12 +581,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -595,20 +595,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -617,18 +617,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -637,18 +637,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -659,23 +659,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -684,8 +684,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -695,12 +695,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -709,20 +709,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -731,18 +731,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -751,18 +751,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -771,31 +771,31 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -804,8 +804,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -815,12 +815,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -829,20 +829,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -851,18 +851,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -871,18 +871,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -891,18 +891,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -913,23 +913,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -938,8 +938,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -949,12 +949,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -963,20 +963,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -985,18 +985,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1005,18 +1005,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1025,18 +1025,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1045,30 +1045,30 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -in code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1077,8 +1077,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -1088,12 +1088,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1102,20 +1102,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1124,18 +1124,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1144,18 +1144,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1164,18 +1164,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1184,17 +1184,17 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -in code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1205,23 +1205,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1230,8 +1230,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -1241,12 +1241,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1255,20 +1255,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1277,18 +1277,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1297,18 +1297,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1317,18 +1317,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1337,17 +1337,17 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -in code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1356,8 +1356,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method @@ -1365,23 +1365,23 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1390,8 +1390,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -1401,12 +1401,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1415,20 +1415,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1437,18 +1437,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1457,18 +1457,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1477,18 +1477,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1497,17 +1497,17 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -in code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1516,19 +1516,19 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1539,23 +1539,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1564,8 +1564,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -1575,12 +1575,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1589,20 +1589,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1611,18 +1611,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1631,18 +1631,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1651,18 +1651,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1671,17 +1671,17 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -in code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1690,19 +1690,19 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1711,29 +1711,29 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > invalid-selection -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) Unsu -pported input +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +Unsupported input Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1742,8 +1742,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -1753,12 +1753,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1767,20 +1767,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1789,18 +1789,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1809,18 +1809,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1829,18 +1829,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1849,17 +1849,17 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -in code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1868,19 +1868,19 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1889,17 +1889,17 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > invalid-selection -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) Unsu -pported input +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +Unsupported input Choose your authentication method: > -1 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) Inva -lid selection +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +Invalid selection == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1910,23 +1910,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1935,8 +1935,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -1946,12 +1946,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1960,20 +1960,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -1982,18 +1982,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2002,18 +2002,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2022,18 +2022,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2042,17 +2042,17 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -in code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2061,19 +2061,19 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2082,17 +2082,17 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > invalid-selection -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) Unsu -pported input +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +Unsupported input Choose your authentication method: > -1 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) Inva -lid selection +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +Invalid selection == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2101,30 +2101,30 @@ lid selection Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -in code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2133,8 +2133,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -2144,12 +2144,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2158,20 +2158,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2180,18 +2180,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2200,18 +2200,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2220,18 +2220,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2240,17 +2240,17 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -in code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2259,19 +2259,19 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2280,17 +2280,17 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > invalid-selection -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) Unsu -pported input +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +Unsupported input Choose your authentication method: > -1 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) Inva -lid selection +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +Invalid selection == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2299,14 +2299,14 @@ lid selection Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -in code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > 4242 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -2314,28 +2314,28 @@ Enter your pin code: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd + USER=user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -rovider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -assword authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2344,8 +2344,8 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == Q -r Code authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Qr Code authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -2355,12 +2355,12 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2369,20 +2369,20 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 3 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == S -end URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@gmail -.com == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-ss +hd@gmail.com == Leave the input field empty to wait for the alternative authentication method or enter 'r' to go back to select the authentication method -Click on the link received at user-integration-pre-check-authenticate-user-switching-auth-mode-o -n-shared-sshd@gmail.com or enter the code: +Click on the link received at user-integration-pre-check-ssh-authenticate-user-switching-auth-mo +de-on-shared-sshd@gmail.com or enter the code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2391,18 +2391,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 4 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your fido device foo == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2411,18 +2411,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 5 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +33... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2431,18 +2431,18 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 6 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == U -se your phone +1... == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Use your phone +1... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +1... or accept request on web interface: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2451,17 +2451,17 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -in code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2470,19 +2470,19 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > r -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == A -uthentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2491,17 +2491,17 @@ uthentication method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > invalid-selection -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) Unsu -pported input +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +Unsupported input Choose your authentication method: > -1 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) Inva -lid selection +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +Invalid selection == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd -@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared- +sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -2510,14 +2510,14 @@ lid selection Or enter 'r' to go back to choose the provider Choose your authentication method: > 7 -(user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) == P -in code == +(user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd@localhost) +== Pin code == Enter 'r' to cancel the request and go back to select the authentication method Enter your pin code: > 4242 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -2525,7 +2525,7 @@ Enter your pin code: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-authenticate-user-switching-auth-mode-on-shared-sshd + USER=user-integration-pre-check-ssh-authenticate-user-switching-auth-mode-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_to_local_broker b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_to_local_broker index 18e4e3ab4..a505e2937 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_to_local_broker +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_to_local_broker @@ -1,42 +1,42 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Provider s -election == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Provider s -election == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Provider s -election == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Authentica -tion method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Authen +tication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-to-local-broker@gmail.co -m + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@gmai +l.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -47,23 +47,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Provider s -election == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Authentica -tion method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Authen +tication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-to-local-broker@gmail.co -m + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@gmai +l.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -72,31 +72,31 @@ m Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Provider s -election == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Provider s -election == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Authentica -tion method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Authen +tication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-to-local-broker@gmail.co -m + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@gmai +l.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -105,35 +105,35 @@ m Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Provider s -election == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > invalid-ID -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) Unsupported i -nput +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) Unsupport +ed input Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Provider s -election == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Authentica -tion method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Authen +tication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-to-local-broker@gmail.co -m + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@gmai +l.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -142,18 +142,18 @@ m Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Provider s -election == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > invalid-ID -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) Unsupported i -nput +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) Unsupport +ed input Choose your provider: > 555 -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) Invalid selec -tion +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) Invalid s +election == Provider selection == 1. local 2. ExampleBroker @@ -161,23 +161,23 @@ Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Provider s -election == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Authentica -tion method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Authen +tication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-to-local-broker@gmail.co -m + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@gmai +l.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -186,45 +186,46 @@ m Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Provider s -election == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > invalid-ID -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) Unsupported i -nput +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) Unsupport +ed input Choose your provider: > 555 -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) Invalid selec -tion +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) Invalid s +election == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 1 -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) SSH PAM user -'user-integration-pre-check-authenticate-user-switching-to-local-broker' using local broker +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) SSH PAM u +ser 'user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker' using local bro +ker Password: ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Provider s -election == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Authentica -tion method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Authen +tication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-to-local-broker@gmail.co -m + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@gmai +l.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -233,24 +234,25 @@ m Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) == Provider s -election == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > invalid-ID -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) Unsupported i -nput +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) Unsupport +ed input Choose your provider: > 555 -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) Invalid selec -tion +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) Invalid s +election == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 1 -(user-integration-pre-check-authenticate-user-switching-to-local-broker@localhost) SSH PAM user -'user-integration-pre-check-authenticate-user-switching-to-local-broker' using local broker +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker@localhost) SSH PAM u +ser 'user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker' using local bro +ker Password: ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_to_local_broker_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_to_local_broker_on_shared_sshd index e774d28b7..7004e9c8e 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_to_local_broker_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_switching_to_local_broker_on_shared_sshd @@ -1,42 +1,42 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Authentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-to-local-broker-on-share -d-sshd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-s +hared-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -47,23 +47,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Authentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-to-local-broker-on-share -d-sshd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-s +hared-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -72,31 +72,31 @@ d-sshd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Authentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-to-local-broker-on-share -d-sshd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-s +hared-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -105,35 +105,35 @@ d-sshd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > invalid-ID -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) Unsupported input +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) Unsupported input Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Authentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-to-local-broker-on-share -d-sshd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-s +hared-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -142,18 +142,18 @@ d-sshd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > invalid-ID -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) Unsupported input +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) Unsupported input Choose your provider: > 555 -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) Invalid selection +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) Invalid selection == Provider selection == 1. local 2. ExampleBroker @@ -161,23 +161,23 @@ Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Authentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-to-local-broker-on-share -d-sshd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-s +hared-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -186,46 +186,46 @@ d-sshd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > invalid-ID -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) Unsupported input +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) Unsupported input Choose your provider: > 555 -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) Invalid selection +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) Invalid selection == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 1 -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) SSH PAM user 'user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared --sshd' using local broker +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) SSH PAM user 'user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-o +n-shared-sshd' using local broker Password: ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Authentication method selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-switching-to-local-broker-on-share -d-sshd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-s +hared-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -234,25 +234,25 @@ d-sshd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > invalid-ID -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) Unsupported input +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) Unsupported input Choose your provider: > 555 -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) Invalid selection +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) Invalid selection == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 1 -(user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared-sshd@localhost -) SSH PAM user 'user-integration-pre-check-authenticate-user-switching-to-local-broker-on-shared --sshd' using local broker +(user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-on-shared-sshd@local +host) SSH PAM user 'user-integration-pre-check-ssh-authenticate-user-switching-to-local-broker-o +n-shared-sshd' using local broker Password: ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_form_mode_with_button b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_form_mode_with_button index 2abc1efc0..fadc243e8 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_form_mode_with_button +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_form_mode_with_button @@ -1,42 +1,42 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Provider -selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Provi +der selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Provider -selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Provi +der selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Password -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Passw +ord authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Provider -selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Provi +der selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Password -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Passw +ord authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-form-mode-with-button@gmail.c -om + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@gma +il.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -47,23 +47,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Provider -selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Provi +der selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Password -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Passw +ord authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-form-mode-with-button@gmail.c -om + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@gma +il.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -72,8 +72,8 @@ om Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method @@ -81,23 +81,23 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Provider -selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Provi +der selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Password -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Passw +ord authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-form-mode-with-button@gmail.c -om + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@gma +il.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -106,15 +106,15 @@ om Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method @@ -122,23 +122,23 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Provider -selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Provi +der selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Password -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Passw +ord authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-form-mode-with-button@gmail.c -om + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@gma +il.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -147,44 +147,44 @@ om Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Provider -selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Provi +der selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Password -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Passw +ord authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-form-mode-with-button@gmail.c -om + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@gma +il.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -193,28 +193,28 @@ om Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass00 Environment: - USER=user-integration-pre-check-authenticate-user-with-form-mode-with-button - LOGNAME=user-integration-pre-check-authenticate-user-with-form-mode-with-button + USER=user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button + LOGNAME=user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -228,23 +228,23 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Provider -selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Provi +der selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Password -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Passw +ord authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-form-mode-with-button@gmail.c -om + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@gma +il.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -253,28 +253,28 @@ om Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button@localhost) == Authentic -ation code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button@localhost) == Authe +ntication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass00 Environment: - USER=user-integration-pre-check-authenticate-user-with-form-mode-with-button - LOGNAME=user-integration-pre-check-authenticate-user-with-form-mode-with-button + USER=user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button + LOGNAME=user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_form_mode_with_button_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_form_mode_with_button_on_shared_sshd index fe8d1a923..105fd8df9 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_form_mode_with_button_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_form_mode_with_button_on_shared_sshd @@ -1,42 +1,42 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication method selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shar -ed-sshd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on- +shared-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -47,23 +47,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication method selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shar -ed-sshd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on- +shared-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -72,8 +72,8 @@ ed-sshd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method @@ -81,23 +81,23 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication method selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shar -ed-sshd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on- +shared-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -106,15 +106,15 @@ ed-sshd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method @@ -122,23 +122,23 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication method selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shar -ed-sshd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on- +shared-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -147,44 +147,44 @@ ed-sshd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication method selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shar -ed-sshd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on- +shared-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -193,28 +193,28 @@ ed-sshd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass00 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -222,28 +222,28 @@ Enter your one time credential: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd + USER=user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Password authentication == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication method selection == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shar -ed-sshd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on- +shared-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -252,28 +252,28 @@ ed-sshd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd@localhos -t) == Authentication code == +(user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd@loca +lhost) == Authentication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass00 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -281,7 +281,7 @@ Enter your one time credential: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-authenticate-user-with-form-mode-with-button-on-shared-sshd + USER=user-integration-pre-check-ssh-authenticate-user-with-form-mode-with-button-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa index 67157ae7e..02d84fe81 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa @@ -1,35 +1,41 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -40,19 +46,22 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -61,25 +70,29 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -88,30 +101,35 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -120,16 +138,19 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code @@ -138,19 +159,22 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -159,42 +183,49 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -203,28 +234,33 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code @@ -233,19 +269,22 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -254,54 +293,63 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-mfa@localhost) == Use your phone +33... == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your phone +33. +.. == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -310,59 +358,69 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-mfa@localhost) == Use your phone +33... == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your phone +33. +.. == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -371,47 +429,54 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-mfa@localhost) == Use your phone +33... == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your phone +33. +.. == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > Environment: - USER=user-mfa - LOGNAME=user-mfa + USER=user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa + LOGNAME=user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -424,19 +489,22 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -445,47 +513,54 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-mfa@localhost) == Use your phone +33... == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your phone +33. +.. == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > Environment: - USER=user-mfa - LOGNAME=user-mfa + USER=user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa + LOGNAME=user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -498,19 +573,22 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -519,47 +597,54 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Authentication meth +od selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-mfa@localhost) == Use your phone +33... == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your phone +33. +.. == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa@localhost) == Use your fido devic +e foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > Environment: - USER=user-mfa - LOGNAME=user-mfa + USER=user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa + LOGNAME=user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa_and_reset_password_while_enforcing_policy b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa_and_reset_password_while_enforcing_policy index e5a5e7ad0..0601907eb 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa_and_reset_password_while_enforcing_policy +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa_and_reset_password_while_enforcing_policy @@ -1,71 +1,84 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider @@ -73,384 +86,458 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password fails the dictionary check - it is based on a dictio +nary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password fails the dictionary check - it is based on a dictio +nary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password fails the dictionary check - it is based on a dictio +nary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is shorter than 8 characters +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password fails the dictionary check - it is based on a dictio +nary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is shorter than 8 characters +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password fails the dictionary check - it is based on a dictio +nary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is shorter than 8 characters +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) Confirm Password: +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password fails the dictionary check - it is based on a dictio +nary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is shorter than 8 characters +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) Confirm Password: +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password fails the dictionary check - it is based on a dictio +nary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is shorter than 8 characters +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) Confirm Password: +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) Confirm Password: > Environment: - USER=user-mfa-with-reset - LOGNAME=user-mfa-with-reset + USER=user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-while-enforcing-policy + LOGNAME=user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-while-enforcing-policy HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -464,56 +551,66 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password fails the dictionary check - it is based on a dictio +nary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is shorter than 8 characters +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) Confirm Password: +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy@localhost) Confirm Password: > Environment: - USER=user-mfa-with-reset - LOGNAME=user-mfa-with-reset + USER=user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-while-enforcing-policy + LOGNAME=user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-while-enforcing-policy HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa_and_reset_password_while_enforcing_policy_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa_and_reset_password_while_enforcing_policy_on_shared_sshd index 65a44045d..b85ad19c5 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa_and_reset_password_while_enforcing_policy_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa_and_reset_password_while_enforcing_policy_on_shared_sshd @@ -1,71 +1,84 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider @@ -73,384 +86,458 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password fails the dictionary check - it is ba +sed on a dictionary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password fails the dictionary check - it is ba +sed on a dictionary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password fails the dictionary check - it is ba +sed on a dictionary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is shorter than 8 characters +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password fails the dictionary check - it is ba +sed on a dictionary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is shorter than 8 characters +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password fails the dictionary check - it is ba +sed on a dictionary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is shorter than 8 characters +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) Confirm Password: +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password fails the dictionary check - it is ba +sed on a dictionary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is shorter than 8 characters +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) Confirm Password: +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password fails the dictionary check - it is ba +sed on a dictionary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is shorter than 8 characters +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) Confirm Password: +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) Confirm Password: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-mfa-with-reset + LOGNAME=user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-while-enforcing-policy-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -458,61 +545,71 @@ Enter your new password (3 days until mandatory): SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-mfa-with-reset + USER=user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-while-enforcing-policy-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa-with-reset@localhost) == Provider selection == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa-with-reset@localhost) == Password authentication == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa-with-reset@localhost) == Use your fido device foo == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Use your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == 1. Proceed with password update 2. Skip Or enter 'r' to go back to choose the provider Choose action: > 1 -(user-mfa-with-reset@localhost) == Password reset == +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password fails the dictionary check - it is based on a dicti -onary word +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password fails the dictionary check - it is ba +sed on a dictionary word == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is the same as the old one +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is the same as the old one == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) The password is shorter than 8 characters +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password (3 days until mandatory): > -(user-mfa-with-reset@localhost) Confirm Password: +(user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-whi +le-enforcing-policy-on-shared-sshd@localhost) Confirm Password: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-mfa-with-reset + LOGNAME=user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-while-enforcing-policy-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -520,7 +617,7 @@ Enter your new password (3 days until mandatory): SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-mfa-with-reset + USER=user-mfa-with-reset-integration-pre-check-ssh-authenticate-user-with-mfa-and-reset-password-while-enforcing-policy-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa_on_shared_sshd index 90445d2a1..7e83776c9 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_mfa_on_shared_sshd @@ -1,35 +1,42 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -40,19 +47,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -61,25 +72,30 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -88,30 +104,36 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -120,16 +142,19 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code @@ -138,19 +163,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -159,42 +188,50 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -203,28 +240,33 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code @@ -233,19 +275,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -254,54 +300,64 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-mfa@localhost) == Use your phone +33... == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -310,59 +366,70 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-mfa@localhost) == Use your phone +33... == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -371,47 +438,54 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-mfa@localhost) == Use your phone +33... == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-mfa + LOGNAME=user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -419,24 +493,28 @@ Plug your fido device and press with your thumb: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-mfa + USER=user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -445,47 +523,54 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-mfa@localhost) == Use your phone +33... == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-mfa + LOGNAME=user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -493,24 +578,28 @@ Plug your fido device and press with your thumb: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-mfa + USER=user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-mfa@localhost) == Provider selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-mfa@gmail.com + 3. Send URL to user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -519,47 +608,54 @@ Gimme your password: Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Password authentication == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 1 -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > r -(user-mfa@localhost) == Authentication method selection == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Auth +entication method selection == 1. Use your fido device foo 2. Use your phone +33... 3. Authentication code Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-mfa@localhost) == Use your phone +33... == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your phone +33... == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Unlock your phone +33... or accept request on web interface: > -(user-mfa@localhost) == Use your fido device foo == +(user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd@localhost) == Use +your fido device foo == Press Enter to wait for authentication or enter 'r' to go back to select the authentication meth od Plug your fido device and press with your thumb: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-mfa + LOGNAME=user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -567,7 +663,7 @@ Plug your fido device and press with your thumb: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-mfa + USER=user-mfa-integration-pre-check-ssh-authenticate-user-with-mfa-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_qr_code b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_qr_code index 90dab24c7..00568b36a 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_qr_code +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_qr_code @@ -1,5 +1,6 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: @@ -7,34 +8,36 @@ Choose your provider: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Password authentication - == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Password authentication - == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Authentication method s -election == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -46,21 +49,22 @@ Choose your authentication method: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Password authentication - == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Authentication method s -election == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -69,8 +73,8 @@ election == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.com 1337 @@ -83,21 +87,22 @@ Choose action: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Password authentication - == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Authentication method s -election == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -106,8 +111,8 @@ election == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.com 1337 @@ -117,8 +122,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -131,21 +136,22 @@ Choose action: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Password authentication - == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Authentication method s -election == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -154,8 +160,8 @@ election == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.com 1337 @@ -165,8 +171,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -176,8 +182,8 @@ https://ubuntu.fr/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntuforum-br.org/ 1339 @@ -190,21 +196,22 @@ Choose action: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Password authentication - == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Authentication method s -election == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -213,8 +220,8 @@ election == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.com 1337 @@ -224,8 +231,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -235,8 +242,8 @@ https://ubuntu.fr/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntuforum-br.org/ 1339 @@ -246,8 +253,8 @@ https://ubuntuforum-br.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://www.ubuntu-it.org/ 1340 @@ -260,21 +267,22 @@ Choose action: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Password authentication - == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Authentication method s -election == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -283,8 +291,8 @@ election == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.com 1337 @@ -294,8 +302,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -305,8 +313,8 @@ https://ubuntu.fr/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntuforum-br.org/ 1339 @@ -316,8 +324,8 @@ https://ubuntuforum-br.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://www.ubuntu-it.org/ 1340 @@ -327,8 +335,8 @@ https://www.ubuntu-it.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.com 1341 @@ -341,21 +349,22 @@ Choose action: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Password authentication - == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Authentication method s -election == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -364,8 +373,8 @@ election == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.com 1337 @@ -375,8 +384,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -386,8 +395,8 @@ https://ubuntu.fr/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntuforum-br.org/ 1339 @@ -397,8 +406,8 @@ https://ubuntuforum-br.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://www.ubuntu-it.org/ 1340 @@ -408,8 +417,8 @@ https://www.ubuntu-it.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.com 1341 @@ -422,21 +431,22 @@ Choose action: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Password authentication - == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Authentication method s -election == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -445,8 +455,8 @@ election == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.com 1337 @@ -456,8 +466,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -467,8 +477,8 @@ https://ubuntu.fr/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntuforum-br.org/ 1339 @@ -478,8 +488,8 @@ https://ubuntuforum-br.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://www.ubuntu-it.org/ 1340 @@ -489,8 +499,8 @@ https://www.ubuntu-it.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.com 1341 @@ -501,8 +511,8 @@ Or enter 'r' to go back to select the authentication method Choose action: > 1 Environment: - USER=user-integration-pre-check-authenticate-user-with-qr-code - LOGNAME=user-integration-pre-check-authenticate-user-with-qr-code + USER=user-integration-pre-check-ssh-authenticate-user-with-qr-code + LOGNAME=user-integration-pre-check-ssh-authenticate-user-with-qr-code HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -516,21 +526,22 @@ Connection to localhost closed. ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Provider selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Provider selection +== 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Password authentication - == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Password authentica +tion == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Authentication method s -election == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Authentication meth +od selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code@gmail.com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -539,8 +550,8 @@ election == Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.com 1337 @@ -550,8 +561,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -561,8 +572,8 @@ https://ubuntu.fr/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntuforum-br.org/ 1339 @@ -572,8 +583,8 @@ https://ubuntuforum-br.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://www.ubuntu-it.org/ 1340 @@ -583,8 +594,8 @@ https://www.ubuntu-it.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code@localhost) == Qr Code authentication -== +(user-integration-pre-check-ssh-authenticate-user-with-qr-code@localhost) == Qr Code authenticat +ion == Enter the code in the login page https://ubuntu.com 1341 @@ -595,8 +606,8 @@ Or enter 'r' to go back to select the authentication method Choose action: > 1 Environment: - USER=user-integration-pre-check-authenticate-user-with-qr-code - LOGNAME=user-integration-pre-check-authenticate-user-with-qr-code + USER=user-integration-pre-check-ssh-authenticate-user-with-qr-code + LOGNAME=user-integration-pre-check-ssh-authenticate-user-with-qr-code HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_qr_code_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_qr_code_on_shared_sshd index 41cb57d6c..396941208 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_qr_code_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/authenticate_user_with_qr_code_on_shared_sshd @@ -1,6 +1,6 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: @@ -8,37 +8,37 @@ Choose your provider: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Password - authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Password - authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Authenti -cation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@gmail. -com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -50,23 +50,23 @@ Choose your authentication method: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Password - authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Authenti -cation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@gmail. -com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -75,8 +75,8 @@ com Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -89,23 +89,23 @@ Choose action: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Password - authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Authenti -cation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@gmail. -com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -114,8 +114,8 @@ com Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -125,8 +125,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -139,23 +139,23 @@ Choose action: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Password - authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Authenti -cation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@gmail. -com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -164,8 +164,8 @@ com Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -175,8 +175,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -186,8 +186,8 @@ https://ubuntu.fr/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntuforum-br.org/ 1339 @@ -200,23 +200,23 @@ Choose action: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Password - authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Authenti -cation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@gmail. -com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -225,8 +225,8 @@ com Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -236,8 +236,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -247,8 +247,8 @@ https://ubuntu.fr/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntuforum-br.org/ 1339 @@ -258,8 +258,8 @@ https://ubuntuforum-br.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://www.ubuntu-it.org/ 1340 @@ -272,23 +272,23 @@ Choose action: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Password - authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Authenti -cation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@gmail. -com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -297,8 +297,8 @@ com Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -308,8 +308,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -319,8 +319,8 @@ https://ubuntu.fr/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntuforum-br.org/ 1339 @@ -330,8 +330,8 @@ https://ubuntuforum-br.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://www.ubuntu-it.org/ 1340 @@ -341,8 +341,8 @@ https://www.ubuntu-it.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.com 1341 @@ -355,23 +355,23 @@ Choose action: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Password - authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Authenti -cation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@gmail. -com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -380,8 +380,8 @@ com Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -391,8 +391,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -402,8 +402,8 @@ https://ubuntu.fr/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntuforum-br.org/ 1339 @@ -413,8 +413,8 @@ https://ubuntuforum-br.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://www.ubuntu-it.org/ 1340 @@ -424,8 +424,8 @@ https://www.ubuntu-it.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.com 1341 @@ -438,23 +438,23 @@ Choose action: ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Password - authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Authenti -cation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@gmail. -com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -463,8 +463,8 @@ com Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -474,8 +474,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -485,8 +485,8 @@ https://ubuntu.fr/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntuforum-br.org/ 1339 @@ -496,8 +496,8 @@ https://ubuntuforum-br.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://www.ubuntu-it.org/ 1340 @@ -507,8 +507,8 @@ https://www.ubuntu-it.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.com 1341 @@ -520,7 +520,7 @@ Choose action: > 1 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -528,29 +528,29 @@ Choose action: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd + USER=user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > if [ -v AUTHD_PAM_CLI_TERM ]; then export TERM=${AUTHD_PAM_CLI_TERM}; fi > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Provider - selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Prov +ider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Password - authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Pass +word authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Authenti -cation method selection == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Auth +entication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@gmail. -com + 3. Send URL to user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@gm +ail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -559,8 +559,8 @@ com Or enter 'r' to go back to choose the provider Choose your authentication method: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.com 1337 @@ -570,8 +570,8 @@ https://ubuntu.com Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.fr/ 1338 @@ -581,8 +581,8 @@ https://ubuntu.fr/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntuforum-br.org/ 1339 @@ -592,8 +592,8 @@ https://ubuntuforum-br.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://www.ubuntu-it.org/ 1340 @@ -603,8 +603,8 @@ https://www.ubuntu-it.org/ Or enter 'r' to go back to select the authentication method Choose action: > 2 -(user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr Code -authentication == +(user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd@localhost) == Qr C +ode authentication == Enter the code in the login page https://ubuntu.com 1341 @@ -616,7 +616,7 @@ Choose action: > 1 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -624,7 +624,7 @@ Choose action: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-authenticate-user-with-qr-code-on-shared-sshd + USER=user-integration-pre-check-ssh-authenticate-user-with-qr-code-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_max_attempts_reached b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_max_attempts_reached index f56fda73a..cd2ed90de 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_max_attempts_reached +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_max_attempts_reached @@ -1,221 +1,221 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Provider s -election == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Provider s -election == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Provider s -election == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Provider s -election == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Provider s -election == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Provider s -election == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Provider s -election == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > invalid password 'wrongpass', should be 'goodpass' -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Provider s -election == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Provider s -election == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Password a -uthentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Passwo +rd authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) invalid passw -ord 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) invalid p +assword 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > invalid password 'wrongpass', should be 'goodpass' -(user-integration-pre-check-deny-authentication-if-max-attempts-reached@localhost) == Provider s -election == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached@localhost) == Provid +er selection == 1. local 2. ExampleBroker Choose your provider: diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_max_attempts_reached_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_max_attempts_reached_on_shared_sshd index 307592951..7c19de24b 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_max_attempts_reached_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_max_attempts_reached_on_shared_sshd @@ -1,221 +1,221 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > invalid password 'wrongpass', should be 'goodpass' -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Password authentication == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) invalid password 'wrongpass', should be 'goodpass' +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) invalid password 'wrongpass', should be 'goodpass' == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > invalid password 'wrongpass', should be 'goodpass' -(user-integration-pre-check-deny-authentication-if-max-attempts-reached-on-shared-sshd@localhost -) == Provider selection == +(user-integration-pre-check-ssh-deny-authentication-if-max-attempts-reached-on-shared-sshd@local +host) == Provider selection == 1. local 2. ExampleBroker Choose your provider: diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_newpassword_does_not_match_required_criteria b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_newpassword_does_not_match_required_criteria index f2717d1e6..6388a948e 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_newpassword_does_not_match_required_criteria +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_newpassword_does_not_match_required_criteria @@ -1,318 +1,383 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password fails the dictionary check - it is too simplistic/system +atic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password fails the dictionary check - it is too simplistic/system +atic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password fails the dictionary check - it is too simplistic/system +atic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Confirm Password: > -(user-needs-reset2@localhost) Password entries don't match +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Password entries don't match == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password fails the dictionary check - it is too simplistic/system +atic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Confirm Password: > -(user-needs-reset2@localhost) Password entries don't match +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Password entries don't match == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password fails the dictionary check - it is too simplistic/system +atic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Confirm Password: > -(user-needs-reset2@localhost) Password entries don't match +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Password entries don't match == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password fails the dictionary check - it is too simplistic/system +atic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Confirm Password: > -(user-needs-reset2@localhost) Password entries don't match +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Password entries don't match == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Confirm Password: > Environment: - USER=user-needs-reset2 - LOGNAME=user-needs-reset2 + USER=user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-required-criteria + LOGNAME=user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-required-criteria HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -326,52 +391,62 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) The password fails the dictionary check - it is too simplistic/system +atic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Confirm Password: > -(user-needs-reset2@localhost) Password entries don't match +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Password entries don't match == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria@localhost) Confirm Password: > Environment: - USER=user-needs-reset2 - LOGNAME=user-needs-reset2 + USER=user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-required-criteria + LOGNAME=user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-required-criteria HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_newpassword_does_not_match_required_criteria_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_newpassword_does_not_match_required_criteria_on_shared_sshd index 4c3f7c8b5..1f4ad910d 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_newpassword_does_not_match_required_criteria_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/deny_authentication_if_newpassword_does_not_match_required_criteria_on_shared_sshd @@ -1,318 +1,383 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password fails the dictionary check - it is too si +mplistic/systematic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password fails the dictionary check - it is too si +mplistic/systematic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password fails the dictionary check - it is too si +mplistic/systematic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Confirm Password: > -(user-needs-reset2@localhost) Password entries don't match +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Password entries don't match == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password fails the dictionary check - it is too si +mplistic/systematic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Confirm Password: > -(user-needs-reset2@localhost) Password entries don't match +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Password entries don't match == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password fails the dictionary check - it is too si +mplistic/systematic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Confirm Password: > -(user-needs-reset2@localhost) Password entries don't match +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Password entries don't match == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Confirm Password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password fails the dictionary check - it is too si +mplistic/systematic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Confirm Password: > -(user-needs-reset2@localhost) Password entries don't match +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Password entries don't match == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Confirm Password: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-needs-reset2 + LOGNAME=user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-required-criteria-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -320,57 +385,67 @@ Enter your new password: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-needs-reset2 + USER=user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-required-criteria-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-needs-reset2@localhost) == Provider selection == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-needs-reset2@localhost) == Password authentication == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-needs-reset2@localhost) == Password reset == +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password is shorter than 8 characters +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password is shorter than 8 characters == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) The password fails the dictionary check - it is too simplistic/sys -tematic +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) The password fails the dictionary check - it is too si +mplistic/systematic == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Confirm Password: > -(user-needs-reset2@localhost) Password entries don't match +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Password entries don't match == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) No password supplied +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) No password supplied == Password reset == Enter 'r' to cancel the request and go back to choose the provider Enter your new password: > -(user-needs-reset2@localhost) Confirm Password: +(user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-re +quired-criteria-on-shared-sshd@localhost) Confirm Password: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-needs-reset2 + LOGNAME=user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-required-criteria-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -378,7 +453,7 @@ Enter your new password: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-needs-reset2 + USER=user-needs-reset-integration-pre-check-ssh-deny-authentication-if-newpassword-does-not-match-required-criteria-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_local_broker_is_selected b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_local_broker_is_selected index 7b0104053..bf051d677 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_local_broker_is_selected +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_local_broker_is_selected @@ -1,30 +1,30 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-local-broker-is-selected@localhost) == Provider select -ion == +(user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected@localhost) == Provider se +lection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-local-broker-is-selected@localhost) == Provider select -ion == +(user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected@localhost) == Provider se +lection == 1. local 2. ExampleBroker Choose your provider: > 1 -(user-integration-pre-check-exit-authd-if-local-broker-is-selected@localhost) SSH PAM user 'user --integration-pre-check-exit-authd-if-local-broker-is-selected' using local broker +(user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected@localhost) SSH PAM user ' +user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected' using local broker Password: ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-local-broker-is-selected@localhost) == Provider select -ion == +(user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected@localhost) == Provider se +lection == 1. local 2. ExampleBroker Choose your provider: > 1 -(user-integration-pre-check-exit-authd-if-local-broker-is-selected@localhost) SSH PAM user 'user --integration-pre-check-exit-authd-if-local-broker-is-selected' using local broker +(user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected@localhost) SSH PAM user ' +user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected' using local broker Password: ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_local_broker_is_selected_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_local_broker_is_selected_on_shared_sshd index 1bdc4efca..96a5db896 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_local_broker_is_selected_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_local_broker_is_selected_on_shared_sshd @@ -1,32 +1,32 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-local-broker-is-selected-on-shared-sshd@localhost) == -Provider selection == +(user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected-on-shared-sshd@localhost) + == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-local-broker-is-selected-on-shared-sshd@localhost) == -Provider selection == +(user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected-on-shared-sshd@localhost) + == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 1 -(user-integration-pre-check-exit-authd-if-local-broker-is-selected-on-shared-sshd@localhost) SSH - PAM user 'user-integration-pre-check-exit-authd-if-local-broker-is-selected-on-shared-sshd' usi -ng local broker +(user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected-on-shared-sshd@localhost) + SSH PAM user 'user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected-on-shared-s +shd' using local broker Password: ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-local-broker-is-selected-on-shared-sshd@localhost) == -Provider selection == +(user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected-on-shared-sshd@localhost) + == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 1 -(user-integration-pre-check-exit-authd-if-local-broker-is-selected-on-shared-sshd@localhost) SSH - PAM user 'user-integration-pre-check-exit-authd-if-local-broker-is-selected-on-shared-sshd' usi -ng local broker +(user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected-on-shared-sshd@localhost) + SSH PAM user 'user-integration-pre-check-ssh-exit-authd-if-local-broker-is-selected-on-shared-s +shd' using local broker Password: ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_user_sigints b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_user_sigints index ebe1c0a45..46408d006 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_user_sigints +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_user_sigints @@ -1,28 +1,30 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-user-sigints@localhost) == Provider selection == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-user-sigints@localhost) == Provider selection == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-exit-authd-if-user-sigints@localhost) == Password authentication == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints@localhost) == Password authentication + == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-user-sigints@localhost) == Provider selection == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-exit-authd-if-user-sigints@localhost) == Password authentication == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints@localhost) == Password authentication + == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > @@ -30,12 +32,13 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-user-sigints@localhost) == Provider selection == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-exit-authd-if-user-sigints@localhost) == Password authentication == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints@localhost) == Password authentication + == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > @@ -45,12 +48,13 @@ xterm-256color > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-user-sigints@localhost) == Provider selection == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints@localhost) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-exit-authd-if-user-sigints@localhost) == Password authentication == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints@localhost) == Password authentication + == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_user_sigints_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_user_sigints_on_shared_sshd index f8ee7514e..874982e05 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_user_sigints_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/exit_authd_if_user_sigints_on_shared_sshd @@ -1,33 +1,33 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Provider sel -ection == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Provider + selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Provider sel -ection == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Provider + selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Password aut -hentication == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Password + authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Provider sel -ection == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Provider + selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Password aut -hentication == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Password + authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > @@ -35,14 +35,14 @@ Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Provider sel -ection == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Provider + selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Password aut -hentication == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Password + authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > @@ -52,14 +52,14 @@ xterm-256color > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Provider sel -ection == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Provider + selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Password aut -hentication == +(user-integration-pre-check-ssh-exit-authd-if-user-sigints-on-shared-sshd@localhost) == Password + authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/prevent_user_from_switching_username b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/prevent_user_from_switching_username index 9f010c3e8..0b55e1896 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/prevent_user_from_switching_username +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/prevent_user_from_switching_username @@ -1,58 +1,61 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Password authenti -cation == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Password auth +entication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Password authenti -cation == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Password auth +entication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Authentication me -thod selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Authenticatio +n method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username@gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -63,25 +66,26 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Password authenti -cation == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Password auth +entication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Authentication me -thod selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Authenticatio +n method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username@gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -90,33 +94,34 @@ thod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Password authenti -cation == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Password auth +entication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Authentication me -thod selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Authenticatio +n method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username@gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -125,36 +130,38 @@ thod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Password authenti -cation == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Password auth +entication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Authentication me -thod selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Authenticatio +n method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username@gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -163,39 +170,42 @@ thod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Password authenti -cation == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Password auth +entication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Authentication me -thod selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Authenticatio +n method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username@gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -204,44 +214,47 @@ thod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Password authenti -cation == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Password auth +entication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Password authenti -cation == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Password auth +entication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Authentication me -thod selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Authenticatio +n method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username@gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -250,26 +263,28 @@ thod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Password authenti -cation == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Password auth +entication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-prevent-user-from-switching-username - LOGNAME=user-integration-pre-check-prevent-user-from-switching-username + USER=user-integration-pre-check-ssh-prevent-user-from-switching-username + LOGNAME=user-integration-pre-check-ssh-prevent-user-from-switching-username HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh @@ -283,25 +298,26 @@ Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Password authenti -cation == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Password auth +entication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Authentication me -thod selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Authenticatio +n method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username@gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -310,26 +326,28 @@ thod selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Provider selectio -n == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Provider sele +ction == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username@localhost) Unsupported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) Unsupported inpu +t Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username@localhost) == Password authenti -cation == +(user-integration-pre-check-ssh-prevent-user-from-switching-username@localhost) == Password auth +entication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > Environment: - USER=user-integration-pre-check-prevent-user-from-switching-username - LOGNAME=user-integration-pre-check-prevent-user-from-switching-username + USER=user-integration-pre-check-ssh-prevent-user-from-switching-username + LOGNAME=user-integration-pre-check-ssh-prevent-user-from-switching-username HOME=${AUTHD_TEST_HOME} PATH=${AUTHD_TEST_PATH} SHELL=/bin/sh diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/prevent_user_from_switching_username_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/prevent_user_from_switching_username_on_shared_sshd index 3bf9fb39a..c25ff327d 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/prevent_user_from_switching_username_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/prevent_user_from_switching_username_on_shared_sshd @@ -1,62 +1,62 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pa -ssword authentication == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pa -ssword authentication == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Au -thentication method selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@ -gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-s +shd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -67,27 +67,27 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pa -ssword authentication == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Au -thentication method selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@ -gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-s +shd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -96,35 +96,35 @@ gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pa -ssword authentication == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Au -thentication method selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@ -gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-s +shd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -133,39 +133,39 @@ gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pa -ssword authentication == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Au -thentication method selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@ -gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-s +shd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -174,43 +174,43 @@ gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pa -ssword authentication == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Au -thentication method selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@ -gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-s +shd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -219,48 +219,48 @@ gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pa -ssword authentication == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pa -ssword authentication == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Au -thentication method selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@ -gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-s +shd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -269,28 +269,28 @@ gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pa -ssword authentication == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -298,32 +298,32 @@ Gimme your password: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd + USER=user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pa -ssword authentication == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Au -thentication method selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@ -gmail.com + 3. Send URL to user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-s +shd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -332,28 +332,28 @@ gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pr -ovider selection == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Provider selection == 1. local 2. ExampleBroker Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > r -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) Unsup -ported input +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) U +nsupported input Choose your provider: > 2 -(user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd@localhost) == Pa -ssword authentication == +(user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd@localhost) = += Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -361,7 +361,7 @@ Gimme your password: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-prevent-user-from-switching-username-on-shared-sshd + USER=user-integration-pre-check-ssh-prevent-user-from-switching-username-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/remember_last_successful_broker_and_mode b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/remember_last_successful_broker_and_mode index c9a4d49c1..dcd220692 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/remember_last_successful_broker_and_mode +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/remember_last_successful_broker_and_mode @@ -1,41 +1,42 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Provider sele -ction == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Provider +selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Provider sele -ction == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Provider +selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Password auth -entication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Password +authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Provider sele -ction == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Provider +selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Password auth -entication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Password +authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@gmail.c +om 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -46,22 +47,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Provider sele -ction == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Provider +selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Password auth -entication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Password +authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@gmail.c +om 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -70,8 +72,8 @@ n method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method @@ -79,22 +81,23 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Provider sele -ction == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Provider +selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Password auth -entication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Password +authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@gmail.c +om 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -103,36 +106,37 @@ n method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Provider sele -ction == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Provider +selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Password auth -entication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Password +authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@gmail.c +om 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -141,22 +145,22 @@ n method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate/Remember_last_successful_broker_a nd_mode] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -164,27 +168,28 @@ nd_mode] SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Provider sele -ction == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Provider +selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Password auth -entication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Password +authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@gmail.c +om 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -193,22 +198,22 @@ n method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate/Remember_last_successful_broker_a nd_mode] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -216,11 +221,11 @@ nd_mode] SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode Connection to localhost closed. > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method @@ -228,22 +233,23 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Provider sele -ction == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Provider +selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Password auth -entication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Password +authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@gmail.c +om 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -252,22 +258,22 @@ n method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate/Remember_last_successful_broker_a nd_mode] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -275,39 +281,40 @@ nd_mode] SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode Connection to localhost closed. > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Provider sele -ction == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Provider +selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Password auth -entication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Password +authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@gmail.c +om 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -316,22 +323,22 @@ n method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate/Remember_last_successful_broker_a nd_mode] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -339,25 +346,25 @@ nd_mode] SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode Connection to localhost closed. > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate/Remember_last_successful_broker_a nd_mode] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -365,27 +372,28 @@ nd_mode] SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Provider sele -ction == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Provider +selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Password auth -entication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Password +authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@gmail.c +om 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -394,22 +402,22 @@ n method selection == Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate/Remember_last_successful_broker_a nd_mode] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -417,25 +425,25 @@ nd_mode] SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode Connection to localhost closed. > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode@localhost) == Authenticatio -n code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode@localhost) == Authentic +ation code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate/Remember_last_successful_broker_a nd_mode] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -443,7 +451,7 @@ nd_mode] SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── diff --git a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/remember_last_successful_broker_and_mode_on_shared_sshd b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/remember_last_successful_broker_and_mode_on_shared_sshd index 69048cc89..7e8dcdd94 100644 --- a/pam/integration-tests/testdata/TestSSHAuthenticate/golden/remember_last_successful_broker_and_mode_on_shared_sshd +++ b/pam/integration-tests/testdata/TestSSHAuthenticate/golden/remember_last_successful_broker_and_mode_on_shared_sshd @@ -1,42 +1,42 @@ > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Provider selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Provider selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Password authentication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Provider selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Password authentication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-s -shd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shar +ed-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -47,23 +47,23 @@ Choose your authentication method: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Provider selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Password authentication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-s -shd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shar +ed-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -72,8 +72,8 @@ shd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method @@ -81,23 +81,23 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Provider selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Password authentication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-s -shd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shar +ed-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -106,37 +106,37 @@ shd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Provider selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Password authentication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-s -shd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shar +ed-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -145,21 +145,21 @@ shd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -167,28 +167,28 @@ Enter your one time credential: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Provider selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Password authentication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-s -shd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shar +ed-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -197,21 +197,21 @@ shd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -219,11 +219,11 @@ Enter your one time credential: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd Connection to localhost closed. > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method @@ -231,23 +231,23 @@ Choose action: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Provider selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Password authentication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-s -shd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shar +ed-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -256,21 +256,21 @@ shd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -278,40 +278,40 @@ Enter your one time credential: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd Connection to localhost closed. > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Provider selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Password authentication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-s -shd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shar +ed-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -320,21 +320,21 @@ shd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -342,24 +342,24 @@ Enter your one time credential: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd Connection to localhost closed. > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -367,28 +367,28 @@ Enter your one time credential: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Provider selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Provider selection == 1. local 2. ExampleBroker Choose your provider: > 2 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Password authentication == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Password authentication == Enter 'r' to cancel the request and go back to select the authentication method Gimme your password: > -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication method selection == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication method selection == 1. Password authentication 2. Use a Login code - 3. Send URL to user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-s -shd@gmail.com + 3. Send URL to user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shar +ed-sshd@gmail.com 4. Use your fido device foo 5. Use your phone +33... 6. Use your phone +1... @@ -397,21 +397,21 @@ shd@gmail.com Or enter 'r' to go back to choose the provider Choose your authentication method: > 8 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -419,24 +419,24 @@ Enter your one time credential: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd Connection to localhost closed. > ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS} -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == 1. Proceed with Authentication code 2. Resend sms Or enter 'r' to go back to select the authentication method Choose action: > 1 -(user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd@localhost) = -= Authentication code == +(user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd@localhos +t) == Authentication code == Enter 'r' to cancel the request and go back to select the authentication method Enter your one time credential: > temporary pass0 SSHD: Connected to ssh via authd module! [TestSSHAuthenticate] HOME=${AUTHD_TEST_HOME} - LOGNAME=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + LOGNAME=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd PATH=${AUTHD_TEST_PATH} PWD=${AUTHD_TEST_PWD} SHELL=/bin/sh @@ -444,7 +444,7 @@ Enter your one time credential: SSH_CONNECTION=${AUTHD_TEST_SSH_CONNECTION} SSH_TTY=${AUTHD_TEST_SSH_TTY} TERM=xterm-256color - USER=user-integration-pre-check-remember-last-successful-broker-and-mode-on-shared-sshd + USER=user-integration-pre-check-ssh-remember-last-successful-broker-and-mode-on-shared-sshd Connection to localhost closed. > ──────────────────────────────────────────────────────────────────────────────── From 79ddfaeb46d9583226cbd0f5020448f8efc4808a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Thu, 17 Oct 2024 15:24:25 +0200 Subject: [PATCH 13/17] pam/integration-tests/helpers: Add support for running a shared authd daemon The daemon is ref-counted in order to decide when killing it, so that multiple tests can share the same daemon if they want to --- pam/integration-tests/helpers_test.go | 68 +++++++++++++++++++++++++-- 1 file changed, 65 insertions(+), 3 deletions(-) diff --git a/pam/integration-tests/helpers_test.go b/pam/integration-tests/helpers_test.go index 7f4a69edf..760f182f6 100644 --- a/pam/integration-tests/helpers_test.go +++ b/pam/integration-tests/helpers_test.go @@ -32,7 +32,20 @@ var ( authdArtifactsDirSync sync.Once ) -func runAuthd(t *testing.T, gpasswdOutput, groupsFile string, currentUserAsRoot bool) string { +type authdInstance struct { + mu sync.Mutex + instances uint64 + socket string + gPasswd string + groups string + cleanup func() +} + +var ( + sharedAuthdInstance = authdInstance{} +) + +func runAuthdForTesting(t *testing.T, gpasswdOutput, groupsFile string, currentUserAsRoot bool) (string, func()) { t.Helper() ctx, cancel := context.WithCancel(context.Background()) @@ -41,13 +54,62 @@ func runAuthd(t *testing.T, gpasswdOutput, groupsFile string, currentUserAsRoot env = append(env, authdCurrentUserRootEnvVariableContent) } socketPath, stopped := testutils.RunDaemon(ctx, t, daemonPath, testutils.WithEnvironment(env...)) - t.Cleanup(func() { + + return socketPath, func() { cancel() <-stopped - }) + } +} + +func runAuthd(t *testing.T, gpasswdOutput, groupsFile string, currentUserAsRoot bool) string { + t.Helper() + + socketPath, cleanup := runAuthdForTesting(t, gpasswdOutput, groupsFile, currentUserAsRoot) + t.Cleanup(cleanup) return socketPath } +func sharedAuthd(t *testing.T) (string, string) { + t.Helper() + + sa := &sharedAuthdInstance + t.Cleanup(func() { + sharedAuthdInstance.mu.Lock() + defer sharedAuthdInstance.mu.Unlock() + + sa.instances-- + if testutils.IsVerbose() { + t.Logf("Authd shared instances decreased: %v", sa.instances) + } + if sa.instances != 0 { + return + } + require.NotNil(t, sa.cleanup) + cleanup := sa.cleanup + sa.socket = "" + sa.gPasswd = "" + sa.groups = "" + sa.cleanup = nil + cleanup() + }) + + sharedAuthdInstance.mu.Lock() + defer sharedAuthdInstance.mu.Unlock() + + sa.instances++ + if testutils.IsVerbose() { + t.Logf("Authd shared instances increased: %v", sa.instances) + } + if sa.instances != 1 { + return sa.socket, sa.gPasswd + } + + sa.gPasswd = filepath.Join(t.TempDir(), "gpasswd.output") + sa.groups = filepath.Join(testutils.TestFamilyPath(t), "gpasswd.group") + sa.socket, sa.cleanup = runAuthdForTesting(t, sa.gPasswd, sa.groups, true) + return sa.socket, sa.gPasswd +} + func preparePamRunnerTest(t *testing.T, clientPath string) []string { t.Helper() From 2927d666fa05c9d2a084befcc4c7b1a6ad09a028 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Thu, 17 Oct 2024 14:32:34 +0200 Subject: [PATCH 14/17] pam/integration-tests: Run all the tests that we can with a shared authd --- pam/integration-tests/cli_test.go | 5 ++--- pam/integration-tests/gdm_test.go | 6 +++--- pam/integration-tests/native_test.go | 5 ++--- pam/integration-tests/ssh_test.go | 3 +-- 4 files changed, 8 insertions(+), 11 deletions(-) diff --git a/pam/integration-tests/cli_test.go b/pam/integration-tests/cli_test.go index 3deb5dad4..9f869bdb5 100644 --- a/pam/integration-tests/cli_test.go +++ b/pam/integration-tests/cli_test.go @@ -25,8 +25,7 @@ func TestCLIAuthenticate(t *testing.T) { const socketPathEnv = "AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK" tapeCommand := fmt.Sprintf("./pam_authd login socket=${%s}", socketPathEnv) - defaultGPasswdOutput, groupsFile := prepareGPasswdFiles(t) - defaultSocketPath := runAuthd(t, defaultGPasswdOutput, groupsFile, true) + defaultSocketPath, defaultGPasswdOutput := sharedAuthd(t) tests := map[string]struct { tape string @@ -197,7 +196,7 @@ func TestCLIChangeAuthTok(t *testing.T) { const socketPathEnv = "AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK" const tapeBaseCommand = "./pam_authd %s socket=${%s}" tapeCommand := fmt.Sprintf(tapeBaseCommand, "passwd", socketPathEnv) - defaultSocketPath := runAuthd(t, os.DevNull, os.DevNull, true) + defaultSocketPath, _ := sharedAuthd(t) tests := map[string]struct { tape string diff --git a/pam/integration-tests/gdm_test.go b/pam/integration-tests/gdm_test.go index e027d5eca..dfc883197 100644 --- a/pam/integration-tests/gdm_test.go +++ b/pam/integration-tests/gdm_test.go @@ -123,7 +123,7 @@ func TestGdmModule(t *testing.T) { "PAM does not support binary protocol") libPath := buildPAMModule(t) - socketPath := runAuthd(t, os.DevNull, os.DevNull, true) + socketPath, _ := sharedAuthd(t) testCases := map[string]struct { supportedLayouts []*authd.UILayout @@ -898,7 +898,7 @@ func TestGdmModuleAuthenticateWithoutGdmExtension(t *testing.T) { libPath := buildPAMModule(t) moduleArgs := []string{} - socketPath := runAuthd(t, os.DevNull, os.DevNull, true) + socketPath, _ := sharedAuthd(t) moduleArgs = append(moduleArgs, "socket="+socketPath) gdmLog := prepareFileLogging(t, "authd-pam-gdm.log") @@ -932,7 +932,7 @@ func TestGdmModuleAcctMgmtWithoutGdmExtension(t *testing.T) { libPath := buildPAMModule(t) moduleArgs := []string{} - socketPath := runAuthd(t, os.DevNull, os.DevNull, true) + socketPath, _ := sharedAuthd(t) moduleArgs = append(moduleArgs, "socket="+socketPath) gdmLog := prepareFileLogging(t, "authd-pam-gdm.log") diff --git a/pam/integration-tests/native_test.go b/pam/integration-tests/native_test.go index 4d2256114..7c5df9a04 100644 --- a/pam/integration-tests/native_test.go +++ b/pam/integration-tests/native_test.go @@ -23,8 +23,7 @@ func TestNativeAuthenticate(t *testing.T) { tapeCommand := fmt.Sprintf("./pam_authd login socket=${%s} force_native_client=true", socketPathEnv) - defaultGPasswdOutput, groupsFile := prepareGPasswdFiles(t) - defaultSocketPath := runAuthd(t, defaultGPasswdOutput, groupsFile, true) + defaultSocketPath, defaultGPasswdOutput := sharedAuthd(t) tests := map[string]struct { tape string @@ -311,7 +310,7 @@ func TestNativeChangeAuthTok(t *testing.T) { const socketPathEnv = "AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK" const tapeBaseCommand = "./pam_authd %s socket=${%s} force_native_client=true" tapeCommand := fmt.Sprintf(tapeBaseCommand, "passwd", socketPathEnv) - defaultSocketPath := runAuthd(t, os.DevNull, os.DevNull, true) + defaultSocketPath, _ := sharedAuthd(t) tests := map[string]struct { tape string diff --git a/pam/integration-tests/ssh_test.go b/pam/integration-tests/ssh_test.go index 469a429df..71d08334c 100644 --- a/pam/integration-tests/ssh_test.go +++ b/pam/integration-tests/ssh_test.go @@ -74,8 +74,7 @@ func testSSHAuthenticate(t *testing.T, sharedSSHd bool) { require.NoError(t, err, "Setup: Can't read sshd host public key") saveArtifactsForDebugOnCleanup(t, []string{sshdHostKey + ".pub"}) - defaultGPasswdOutput, groupsFile := prepareGPasswdFiles(t) - defaultSocketPath := runAuthd(t, defaultGPasswdOutput, groupsFile, true) + defaultSocketPath, defaultGPasswdOutput := sharedAuthd(t) const tapeCommand = "ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS}" defaultTapeSettings := []tapeSetting{{vhsHeight, 1000}, {vhsWidth, 800}} From 023a127a22bb301557766b882b5fd8e6fa17737b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Thu, 17 Oct 2024 14:39:48 +0200 Subject: [PATCH 15/17] pam/integration-tests: Allow to run tests with individual authd instances It can be useful for debugging purposes --- pam/integration-tests/helpers_test.go | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/pam/integration-tests/helpers_test.go b/pam/integration-tests/helpers_test.go index 760f182f6..6ffe680ad 100644 --- a/pam/integration-tests/helpers_test.go +++ b/pam/integration-tests/helpers_test.go @@ -72,6 +72,14 @@ func runAuthd(t *testing.T, gpasswdOutput, groupsFile string, currentUserAsRoot func sharedAuthd(t *testing.T) (string, string) { t.Helper() + if os.Getenv("AUTHD_TESTS_USE_INDIVIDUAL_AUTHD_INSTANCES") != "" { + gPasswd := filepath.Join(t.TempDir(), "gpasswd.output") + groups := filepath.Join(testutils.TestFamilyPath(t), "gpasswd.group") + socket, cleanup := runAuthdForTesting(t, gPasswd, groups, true) + t.Cleanup(cleanup) + return socket, gPasswd + } + sa := &sharedAuthdInstance t.Cleanup(func() { sharedAuthdInstance.mu.Lock() From 975fd89669ec0cefb82268f4d8ad38284284de84 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Thu, 17 Oct 2024 14:49:40 +0200 Subject: [PATCH 16/17] pam/integration-tests: Allow single authd instances for each test In case of issues it allows easier debugging --- pam/integration-tests/cli_test.go | 12 ++++++------ pam/integration-tests/gdm_test.go | 2 +- pam/integration-tests/native_test.go | 12 ++++++------ pam/integration-tests/ssh_test.go | 8 ++++---- 4 files changed, 17 insertions(+), 17 deletions(-) diff --git a/pam/integration-tests/cli_test.go b/pam/integration-tests/cli_test.go index 9f869bdb5..1078c4611 100644 --- a/pam/integration-tests/cli_test.go +++ b/pam/integration-tests/cli_test.go @@ -25,8 +25,6 @@ func TestCLIAuthenticate(t *testing.T) { const socketPathEnv = "AUTHD_TESTS_CLI_AUTHENTICATE_TESTS_SOCK" tapeCommand := fmt.Sprintf("./pam_authd login socket=${%s}", socketPathEnv) - defaultSocketPath, defaultGPasswdOutput := sharedAuthd(t) - tests := map[string]struct { tape string tapeSettings []tapeSetting @@ -161,8 +159,7 @@ func TestCLIAuthenticate(t *testing.T) { filepath.Join(outDir, "pam_authd")) require.NoError(t, err, "Setup: symlinking the pam client") - socketPath := defaultSocketPath - gpasswdOutput := defaultGPasswdOutput + var socketPath, gpasswdOutput string if tc.wantLocalGroups || tc.currentUserNotRoot { // For the local groups tests we need to run authd again so that it has // special environment that generates a fake gpasswd output for us to test. @@ -171,6 +168,8 @@ func TestCLIAuthenticate(t *testing.T) { var groupsFile string gpasswdOutput, groupsFile = prepareGPasswdFiles(t) socketPath = runAuthd(t, gpasswdOutput, groupsFile, !tc.currentUserNotRoot) + } else { + socketPath, gpasswdOutput = sharedAuthd(t) } td := newTapeData(tc.tape, tc.tapeSettings...) @@ -196,7 +195,6 @@ func TestCLIChangeAuthTok(t *testing.T) { const socketPathEnv = "AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK" const tapeBaseCommand = "./pam_authd %s socket=${%s}" tapeCommand := fmt.Sprintf(tapeBaseCommand, "passwd", socketPathEnv) - defaultSocketPath, _ := sharedAuthd(t) tests := map[string]struct { tape string @@ -256,11 +254,13 @@ func TestCLIChangeAuthTok(t *testing.T) { t.Run(name, func(t *testing.T) { t.Parallel() - socketPath := defaultSocketPath + var socketPath string if tc.currentUserNotRoot { // For the not-root tests authd has to run in a more restricted way. // In the other cases this is not needed, so we can just use a shared authd. socketPath = runAuthd(t, os.DevNull, os.DevNull, false) + } else { + socketPath, _ = sharedAuthd(t) } if _, ok := tc.tapeVariables[vhsTapeUserVariable]; !ok && !tc.currentUserNotRoot { diff --git a/pam/integration-tests/gdm_test.go b/pam/integration-tests/gdm_test.go index dfc883197..6a2e4ba0c 100644 --- a/pam/integration-tests/gdm_test.go +++ b/pam/integration-tests/gdm_test.go @@ -123,7 +123,6 @@ func TestGdmModule(t *testing.T) { "PAM does not support binary protocol") libPath := buildPAMModule(t) - socketPath, _ := sharedAuthd(t) testCases := map[string]struct { supportedLayouts []*authd.UILayout @@ -790,6 +789,7 @@ func TestGdmModule(t *testing.T) { t.Parallel() t.Cleanup(pam_test.MaybeDoLeakCheck) + socketPath, _ := sharedAuthd(t) moduleArgs := []string{"socket=" + socketPath} gdmLog := prepareFileLogging(t, "authd-pam-gdm.log") diff --git a/pam/integration-tests/native_test.go b/pam/integration-tests/native_test.go index 7c5df9a04..efd7652d5 100644 --- a/pam/integration-tests/native_test.go +++ b/pam/integration-tests/native_test.go @@ -23,8 +23,6 @@ func TestNativeAuthenticate(t *testing.T) { tapeCommand := fmt.Sprintf("./pam_authd login socket=${%s} force_native_client=true", socketPathEnv) - defaultSocketPath, defaultGPasswdOutput := sharedAuthd(t) - tests := map[string]struct { tape string tapeSettings []tapeSetting @@ -261,8 +259,7 @@ func TestNativeAuthenticate(t *testing.T) { filepath.Join(outDir, "pam_authd")) require.NoError(t, err, "Setup: symlinking the pam client") - socketPath := defaultSocketPath - gpasswdOutput := defaultGPasswdOutput + var socketPath, gpasswdOutput string if tc.wantLocalGroups || tc.currentUserNotRoot { // For the local groups tests we need to run authd again so that it has // special environment that generates a fake gpasswd output for us to test. @@ -271,6 +268,8 @@ func TestNativeAuthenticate(t *testing.T) { var groupsFile string gpasswdOutput, groupsFile = prepareGPasswdFiles(t) socketPath = runAuthd(t, gpasswdOutput, groupsFile, !tc.currentUserNotRoot) + } else { + socketPath, gpasswdOutput = sharedAuthd(t) } if tc.tapeCommand == "" { @@ -310,7 +309,6 @@ func TestNativeChangeAuthTok(t *testing.T) { const socketPathEnv = "AUTHD_TESTS_CLI_AUTHTOK_TESTS_SOCK" const tapeBaseCommand = "./pam_authd %s socket=${%s} force_native_client=true" tapeCommand := fmt.Sprintf(tapeBaseCommand, "passwd", socketPathEnv) - defaultSocketPath, _ := sharedAuthd(t) tests := map[string]struct { tape string @@ -375,11 +373,13 @@ func TestNativeChangeAuthTok(t *testing.T) { t.Run(name, func(t *testing.T) { t.Parallel() - socketPath := defaultSocketPath + var socketPath string if tc.currentUserNotRoot { // For the not-root tests authd has to run in a more restricted way. // In the other cases this is not needed, so we can just use a shared authd. socketPath = runAuthd(t, os.DevNull, os.DevNull, false) + } else { + socketPath, _ = sharedAuthd(t) } if _, ok := tc.tapeVariables[vhsTapeUserVariable]; !ok && !tc.currentUserNotRoot { diff --git a/pam/integration-tests/ssh_test.go b/pam/integration-tests/ssh_test.go index 71d08334c..59347a20b 100644 --- a/pam/integration-tests/ssh_test.go +++ b/pam/integration-tests/ssh_test.go @@ -74,14 +74,12 @@ func testSSHAuthenticate(t *testing.T, sharedSSHd bool) { require.NoError(t, err, "Setup: Can't read sshd host public key") saveArtifactsForDebugOnCleanup(t, []string{sshdHostKey + ".pub"}) - defaultSocketPath, defaultGPasswdOutput := sharedAuthd(t) - const tapeCommand = "ssh ${AUTHD_PAM_SSH_USER}@localhost ${AUTHD_PAM_SSH_ARGS}" defaultTapeSettings := []tapeSetting{{vhsHeight, 1000}, {vhsWidth, 800}} - defaultSSHDPort := "" - defaultUserHome := "" + var defaultSSHDPort, defaultUserHome, defaultSocketPath, defaultGPasswdOutput string if sharedSSHd { + defaultSocketPath, defaultGPasswdOutput = sharedAuthd(t) serviceFile := createSshdServiceFile(t, execModule, execChild, defaultSocketPath) defaultSSHDPort, defaultUserHome = startSSHdForTest(t, serviceFile, sshdHostKey, "authd-test-user-sshd-accept-all", sshdPreloadLibrary, true, false) @@ -221,6 +219,8 @@ func testSSHAuthenticate(t *testing.T, sharedSSHd bool) { var groupsFile string gpasswdOutput, groupsFile = prepareGPasswdFiles(t) socketPath = runAuthd(t, gpasswdOutput, groupsFile, true) + } else if !sharedSSHd { + socketPath, gpasswdOutput = sharedAuthd(t) } user := tc.user From 1493b084b1119d86f2fe6d1f443c82600e2e8bdc Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Marco=20Trevisan=20=28Trevi=C3=B1o=29?= Date: Thu, 17 Oct 2024 16:02:51 +0200 Subject: [PATCH 17/17] brokers/manager: Run cleanup function, if any, on errors --- internal/brokers/manager.go | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/internal/brokers/manager.go b/internal/brokers/manager.go index 21a45cf8f..6d5bc126f 100644 --- a/internal/brokers/manager.go +++ b/internal/brokers/manager.go @@ -40,10 +40,17 @@ func NewManager(ctx context.Context, brokersConfPath string, configuredBrokers [ brokersConfPathWithExample, cleanup, err := useExampleBrokers() if err != nil { return nil, err - } else if brokersConfPathWithExample != "" { + } + if brokersConfPathWithExample != "" { brokersConfPath = brokersConfPathWithExample } + defer func() { + if err != nil && cleanup != nil { + cleanup() + } + }() + // Connect to the system bus // Don't call dbus.SystemBus which caches globally system dbus (issues in tests) bus, err := dbus.ConnectSystemBus()