Using howdy only for gdm

[stdedos]

Hello there,

Can someone append to the https://github.com/boltgolt/howdy/wiki/Only-using-howdy-for-specific-authentication-types article how would gdm-auth would work?

I have gotten e.g. the https://askubuntu.com/a/1304887/645458 working, but gdm seems to have a lot of files 😕

ua@h /etc/pam.d$ ls -lah gdm-*
-rw-r--r-- 1 root root 1,2K Νοε  10  2020 gdm-autologin
-rw-r--r-- 1 root root 1,4K Νοε  10  2020 gdm-fingerprint
-rw-r--r-- 1 root root  383 Νοε  10  2020 gdm-launch-environment
-rw-r--r-- 1 root root 1,3K Νοε  10  2020 gdm-password
ua@h /etc/pam.d$

[saidsay-so]

Feel free to add it, the wiki can be edited by anyone.

[stdedos]

I know 😅

My question was: I don't know/understand how does gdm work in this case. I was hoping someone who have done it could add his/her walkthrough

[saidsay-so]

You need to add the module to the gdm-password file with the options you want (auth sufficient pam_howdy.so for example if you want to authenticate only with it if it succeeds).

[stdedos]

I tried your suggestion

#%PAM-1.0
auth    requisite       pam_nologin.so
auth    required    pam_succeed_if.so user != root quiet_success
auth    sufficient  pam_howdy.so
@include common-auth
...

and even after "patching test" to check "what does howdy thinks" of the input (https://github.com/boltgolt/howdy/issues/900):

Login screen does not unlock.

Moreover I don't see camera "activating" either (it has an indicator light). I even tried https://github.com/boltgolt/howdy/wiki/Common-issues#lowering-file-security (I haven't restarted the system, but I don't think it should be necessary?)

[saidsay-so]

You have to add it in the first lines, but make sure to test with another service that you don't use (maybe su) before to not lock you out.