From 55da06ba5d21227c1552f51dad65817ad6b87130 Mon Sep 17 00:00:00 2001
From: Yohann D'ANELLO <ynerant@crans.org>
Date: Sun, 11 Jul 2021 12:02:27 +0200
Subject: [PATCH] [zamok] Add PAM rule to use namespaces

Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
---
 roles/zamok-tools/tasks/main.yml | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/roles/zamok-tools/tasks/main.yml b/roles/zamok-tools/tasks/main.yml
index 41bb2ce4..ccb961be 100644
--- a/roles/zamok-tools/tasks/main.yml
+++ b/roles/zamok-tools/tasks/main.yml
@@ -111,3 +111,14 @@
     - "000-perso-vhosts.conf"
     - "001-perso.conf"
   notify: Reload apache
+
+- name: Add PAM rule to use namespaces to have separate temporary directories
+  pamd:
+    name: common-session
+    type: session
+    control: optional
+    module_path: pam_systemd.so
+    new_type: session
+    new_control: optional
+    new_module_path: pam_namespace.so
+    state: after
-- 
GitLab