On Thu, Oct 23, 2003 at 08:54:44PM +0000, Mathias Herberts wrote:
Ok, here it is then.
My patch modifies src/server.c:check_repository_password so it can check
a user password using an external authentication process. I basically
wrote that so I could authenticate my CVS users against our corporate
Active Directory.
The patch relies on a special syntax of the password field in
CVSROOT/passwd. If the password starts with an at sign '@' then
everything following the '@' up to the ':' is considered a path to an
authentication program. As the salt used by crypt(3) cannot contain '@'
we can still use regular encrypted passwords.
I know you've done the work now, but wouldn't it be easier to use PAM
and the pam_winbind (IIRC) module to do the authentication...?