table of contents
PAM_SM_CHAUTHTOK(3) | Linux-PAM Manual | PAM_SM_CHAUTHTOK(3) |
NAME¶
pam_sm_chauthtok - PAM service function for authentication token management
SYNOPSIS¶
#define PAM_SM_PASSWORD
#include <security/pam_modules.h>
int pam_sm_chauthtok(pam_handle_t *pamh, int flags, int argc, const char **argv);
DESCRIPTION¶
The pam_sm_chauthtok function is the service module's implementation of the pam_chauthtok(3) interface.
This function is used to (re-)set the authentication token of the user.
Valid flags, which may be logically OR'd with PAM_SILENT, are:
PAM_SILENT
PAM_CHANGE_EXPIRED_AUTHTOK
PAM_PRELIM_CHECK
If the control value sufficient is used in the password stack, the PAM_PRELIM_CHECK section of the modules following that control value is not always executed.
PAM_UPDATE_AUTHTOK
The PAM library calls this function twice in succession. The first time with PAM_PRELIM_CHECK and then, if the module does not return PAM_TRY_AGAIN, subsequently with PAM_UPDATE_AUTHTOK. It is only on the second call that the authorization token is (possibly) changed.
RETURN VALUES¶
PAM_AUTHTOK_ERR
PAM_AUTHTOK_RECOVERY_ERR
PAM_AUTHTOK_LOCK_BUSY
PAM_AUTHTOK_DISABLE_AGING
PAM_PERM_DENIED
PAM_TRY_AGAIN
PAM_SUCCESS
PAM_USER_UNKNOWN
SEE ALSO¶
pam(3), pam_chauthtok(3), pam_sm_chauthtok(3), pam_strerror(3), PAM(8)
05/18/2017 | Linux-PAM Manual |