Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 10 Next »

Name

PAM

Latest version

0.0.1-SNAPSHOT ( 18 Mar 2011 )

Requires Sonar version

2.0 or higher

Download

 

License

GNU LGPL 3

Developers

Marco Tizzoni

Issue tracker

http://jira.codehaus.org/browse/SONARPLUGINS/component/14697

Sources

 

Features

The Sonar PAM Plugin enables the delegation of Sonar authentication to underlying PAM subsystem. The plugin works on *nix box with Pluggable Authentication Module (PAM).

Only password-checking is done against PAM. Authorization (access control) is still fully managed in Sonar. A Sonar account must be created first for each new user wishing to use Sonar. The Sonar administrator should also assign the user to the desired groups in order to grant him necessary rights. If exists, the password in the Sonar account will be ignored as the external system password will override it.

Works on

OS and Architecture

Works

Linux AMD64

(tick)

Linux i386

(warning)

Linux x86

(warning)

Mac OS X PPC

(warning)

Solaris sparc

(warning)

(tick) Works, tested
(warning) Should work, not tested

Usage & Installation

  1. Install jpam
    1. Download jpam for your system from here
    2. Copy the jpam's native library following these directions
  2. Install Sonar PAM plugin
    1. Place the jar plugin into the /extensions/plugins directory
    2. Make sure that at least one user with global administration role exists in Sonar as well as in the external system
    3. Configure conf/sonar.properties by adding and editing the following:
      sonar.properties
  3. Restart Sonar and check logs for:
  4. Log in to Sonar

Known issue

Crash using PAM winbind authentication (pam_winbind.so)

In case of unsucessful login for wrong password/locked out account (wrong username does not produce the same issue) you may get this kind of error while using pam winbind authentication:

pam_winbind.so error

In this case Sonar crashes and restart automatically.

As far as I understand it's a pam_winbind.so issue. I've found this workaround:

  1. Edit /etc/security/pam_winbind.conf:
  2. Set Kerberos authentication:
    /etc/security/pam_winbind.conf

Known limitations

Troubleshooting

ChangeLog

  • No labels