We are successfully using Mike's excellent guide to Unity Greeter with X2Go Remote Login Support. http://sunweavers.net/blog/unity-greeter-with-x2go-remote-login-support One of the things we want to do next, is to tweak the remote-login-service.conf so that username and password are passed to the UCCS-like WebUI of the X2Go Session Broker automaticly. I have tried add a line to the config file, but the syntax is obviously wrong:
[Remote Login Service] Servers=MyUCCSTest
[Server MyUCCSTest] Name=Remote Login URI=http://x2gobroker.localdomain:8080/uccs/inifile/ echo <mypassword> | thin-client-config-agent <myuserid>
I have also tried a lot of other variations over the above, with no success.
This test works: $ SERVER_ROOT=http://x2gobroker.localdomain:8080/uccs/inifile/ $ export SERVER_ROOT $ echo <mypassword> | thin-client-config-agent <myuserid>
Can <mypassword> and <myuserid> be implemented in a similar way to the conf file ? Anyone that have a good tip ?
--
Med vennlig hilsen / best regards
Kjetil Fleten
Fleten.net AS, Tyinvegen 5151, 2975 Vang i Valdres, Noreg Tlf +47 95861348, ORG nr. 999 542 018 (NO)
Søndergade 27, 8740 Brædstrup, Danmark Tlf. +45 41153148 CVR. nr. 35479228 (DK)
thats-IT@fleten.net, www.fleten.net <http://www.fleten.net>
Hi Kjetil,
On Mi 27 Nov 2013 02:09:47 CET, Kjetil Fleten wrote:
We are successfully using Mike's excellent guide to Unity Greeter with X2Go Remote Login Support. http://sunweavers.net/blog/unity-greeter-with-x2go-remote-login-support One of the things we want to do next, is to tweak the remote-login-service.conf so that username and password are passed to the UCCS-like WebUI of the X2Go Session Broker automaticly. I have tried add a line to the config file, but the syntax is obviously wrong:
[Remote Login Service] Servers=MyUCCSTest
[Server MyUCCSTest] Name=Remote Login URI=http://x2gobroker.localdomain:8080/uccs/inifile/ echo <mypassword> | thin-client-config-agent <myuserid>
I have also tried a lot of other variations over the above, with no success.
This test works: $ SERVER_ROOT=http://x2gobroker.localdomain:8080/uccs/inifile/ $ export SERVER_ROOT $ echo <mypassword> | thin-client-config-agent <myuserid>
Can <mypassword> and <myuserid> be implemented in a similar way to the conf file ? Anyone that have a good tip ?
Do you (a) want to allow unauthenticated access to the X2Go Session
Broker or do you (b) want to retrieve a password from the session
broker and use that for X2Go session login?
(a) This should (in theory) be possible by simple setting
,,check-credentials=False'' in x2gobroker.conf. However, I have just
tested this and it does not work in the 0.0.3.0 preview of X2Go
Session Broker. I currently providing a patch for this.
(b) the UCCS client implementation in remote-login-service supports
plain text passwords being transmitted over the wire from UCCS server
to remote-login-service. This password then will be filled into the
login dialog of Unity Greeter.
As the storage and transmission of plain text passwords is something I
do not like about the UCCS implementation, I did not implement it in
X2Go Session Broker. This of course could be coded into the broker and
then Remote Login authentication in Unity Greeter should be a bit
smoother.
My preference for reducing password input would be (a). With my
background information of your setup (broker is only reachable via
VPN) this would be less critical and could be set up with less effort.
Greets, Mike
--
DAS-NETZWERKTEAM mike gabriel, herweg 7, 24357 fleckeby fon: +49 (1520) 1976 148
GnuPG Key ID 0x25771B31 mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de
freeBusy: https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xf...
Hi Kjetil,
On Mi 27 Nov 2013 09:28:38 CET, Mike Gabriel wrote:
(a) This should (in theory) be possible by simple setting
,,check-credentials=False'' in x2gobroker.conf. However, I have just
tested this and it does not work in the 0.0.3.0 preview of X2Go
Session Broker. I currently providing a patch for this.
With this patch [1] it now works setting check-credentials = false in
x2gobroker.conf and getting into the broker without authentication.
Note that you with this patch cannot use user and group ACLs anymore,
as the user appearing in the X2Go Session Broker will be named
,,anonymous''...
Greets, Mike
[1]
http://code.x2go.org/gitweb?p=x2gobroker.git;a=commitdiff;h=2f417f45d0a10f74...
--
DAS-NETZWERKTEAM mike gabriel, herweg 7, 24357 fleckeby fon: +49 (1520) 1976 148
GnuPG Key ID 0x25771B31 mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de
freeBusy: https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xf...
Great ! We will try the patch :-)
best regards
Kjetil
Den 27-11-2013 09:55, Mike Gabriel skrev:
Hi Kjetil,
On Mi 27 Nov 2013 09:28:38 CET, Mike Gabriel wrote:
(a) This should (in theory) be possible by simple setting ,,check-credentials=False'' in x2gobroker.conf. However, I have just tested this and it does not work in the 0.0.3.0 preview of X2Go Session Broker. I currently providing a patch for this.
With this patch [1] it now works setting check-credentials = false in x2gobroker.conf and getting into the broker without authentication.
Note that you with this patch cannot use user and group ACLs anymore, as the user appearing in the X2Go Session Broker will be named ,,anonymous''...
Greets, Mike
[1] http://code.x2go.org/gitweb?p=x2gobroker.git;a=commitdiff;h=2f417f45d0a10f74...
-
Kjetil Fleten -
Mike Gabriel