[Libwebsockets] PAM authentication for http sessions
necktwi at ferryfair.com
Tue Sep 4 05:49:12 CEST 2018
> On 04-Sep-2018, at 8:58 AM, Andy Green <andy at warmcat.com> wrote:
> On 09/04/2018 11:17 AM, Necktwi Ozfguah wrote:
>> For a FileSystem operation, is it possible to set UID and GID on the
> You can tell lws to drop privileges and take on a noprivileged uid and gid just by setting the context creation info .uid and .gid
> It implies you start your app as root. The transition to the different uid + gid happens after the vhost protocol init, which allows you to open / create / modify things still as root in your LWS_CALLBACK_PROTOCOL_INIT. This is very convenient for opening logfiles or whatever in directories that are only root-accessible, and still be able to use the fd after the privileges to do that have gone.
>> process? Is there any mechanism drafted to use PAM with libwebsockets.
> AFAIK I don't have any use for PAM + lws.
> What would you actually use it for?
To determine uid of the http session user. Never mind, "You can tell lws to drop privileges and take on a noprivileged uid and gid just by setting the context creation info .uid and .gid" is all I am looking for. Thank you for implementing thread pool, I shall checkout.
>> … NeckTwi
>> Libwebsockets mailing list
>> Libwebsockets at ml.libwebsockets.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Libwebsockets