sssd 2.6.1
Enumerations

To achieve a consistent user experience and to facilitate internationalization all messages show to the user are generate by the PAM client and not by the SSSD server components. More...

Enumerations

enum  user_info_type {
  SSS_PAM_USER_INFO_OFFLINE_AUTH = 0x01 , SSS_PAM_USER_INFO_OFFLINE_AUTH_DELAYED , SSS_PAM_USER_INFO_OFFLINE_CHPASS , SSS_PAM_USER_INFO_OTP_CHPASS ,
  SSS_PAM_USER_INFO_CHPASS_ERROR , SSS_PAM_USER_INFO_GRACE_LOGIN , SSS_PAM_USER_INFO_EXPIRE_WARN , SSS_PAM_USER_INFO_ACCOUNT_EXPIRED
}
 Different types of user messages. More...
 

Detailed Description

To achieve a consistent user experience and to facilitate internationalization all messages show to the user are generate by the PAM client and not by the SSSD server components.

To indicate what message the client should display to the user SSSD can send a SSS_PAM_USER_INFO message where the data part contains one of the following tags as an unsigned 32-bit integer value and optional data.

Examples:

Enumeration Type Documentation

◆ user_info_type

Different types of user messages.

Enumerator
SSS_PAM_USER_INFO_OFFLINE_AUTH 

Inform the user that the authentication happened offline.

This message is generated by the PAM responder.

Parameters
Timewhen the cached password will expire in seconds since the UNIX Epoch as returned by time(2) as int64_t. A value of zero indicates that the cached password will never expire.
SSS_PAM_USER_INFO_OFFLINE_AUTH_DELAYED 

Tell the user how low a new authentication is delayed.

This message is generated by the PAM responder.

Parameters
Timewhen an authentication is allowed again in seconds since the UNIX Epoch as returned by time(2) as int64_t.
SSS_PAM_USER_INFO_OFFLINE_CHPASS 
  • Tell the user that it is not possible to change the password while the system is offline. This message is generated by the PAM responder.
SSS_PAM_USER_INFO_OTP_CHPASS 

Tell the user that he needs to kinit or login and logout to get a TGT after an OTP password change.

SSS_PAM_USER_INFO_CHPASS_ERROR 

Tell the user that a password change failed and optionally give a reason.

Parameters
Sizeof the message as unsigned 32-bit integer value. A value of 0 indicates that no message is following.
Stringwith the specified length.
SSS_PAM_USER_INFO_GRACE_LOGIN 

Warn the user that the password is expired and inform about the remaining number of grace logins.

Parameters
Thenumber of remaining grace logins as uint32_t
SSS_PAM_USER_INFO_EXPIRE_WARN 

Warn the user that the password will expire soon.

Parameters
Numberof seconds before the user's password will expire.
SSS_PAM_USER_INFO_ACCOUNT_EXPIRED 

Tell the user that the account has expired and optionally give a reason.

Parameters
Sizeof the message as unsigned 32-bit integer value. A value of 0 indicates that no message is following.
Stringwith the specified length.