'Add User' not working for admin users with JupyterHub run using PAMAuthentication and SudoSpawner #58
Comments
|
I have the same question,have you solved it ? |
|
So I thought I would comment since I have a way to do this: The issue is that you don't have root anymore so that the The local authenticators usually allow you to set an (Change c.NameOfAuthenticator.add_user_cmd = [
"a_command",
"an_arg",
"annother_arg",
]Which is the command that is passed the username to add to. You can change it to something like this: c.NameOfAuthenticator.add_user_cmd = [
"/usr/bin/sudo",
"/useradder.sh",
]Where #! /bin/bash
username="${1}"
# Only except names with 0-9 a-z A-Z and a -
if ! [[ "${username}" =~ ^[0-9a-zA-Z-]+$ ]]; then
echo "Invalid username" >&2
exit 1
fi
home="/home/${username}"
# Check if home exists and error if it does
if [ -e "${home}" ]; then
exit 1
fi
options=(
"--home-dir=${home}"
"--create-home"
"--shell=/bin/bash"
"--password='!'"
"${username}"
)
useradd "${options[@]}"You should ensure this chown root:root /useradder.sh
chmod 700 /useradder.shFinally we need a sudoers entry that will allow this user to run the command without password Mine is in Which should get it working for you |
I've configured Jupyterhub with SudoSpawner (which runs as a non-root user) and I'm able to run it without any trouble. But when I logged in with the user rhea (as provided in the example) with admin permissions set, I'm not able to add users in the system. I'm getting the following error:
I'm guessing it is caused by running JupyterHub as a non-root user and also using PAM Authentication which eventually uses the system users. The only limitation for my project is I must not run JupyterHub as a root user. Is there a way to add users using sudospawner with a different authenticator, else Is there a way to give restricted sudo permission for the user rhea to be able to add users to the system?? @minrk @willingc @yuvipanda
The text was updated successfully, but these errors were encountered: