login: radius: T2089: only query servers when uid matches ...

Do not query RADIUS servers when commit is running started from a non RADIUS
user (localuser, root). This should reduce the overall system boot time.

1 files changed, 6 insertions, 0 deletions

diff --git a/src/pam-configs/radius b/src/pam-configs/radius
index 0d9fbbb03..0e2c71e38 100644
--- a/src/pam-configs/radius
+++ b/src/pam-configs/radius
@@ -3,12 +3,18 @@ Default: yes
 Priority: 257
 Auth-Type: Primary
 Auth:
+    [default=ignore success=1] pam_succeed_if.so uid eq 1001 quiet
+    [default=ignore success=ignore] pam_succeed_if.so uid eq 1002 quiet
     [authinfo_unavail=ignore success=end default=ignore] pam_radius_auth.so
 
 Account-Type: Primary
 Account:
+    [default=ignore success=1] pam_succeed_if.so uid eq 1001 quiet
+    [default=ignore success=ignore] pam_succeed_if.so uid eq 1002 quiet
     [authinfo_unavail=ignore success=end perm_denied=bad default=ignore] pam_radius_auth.so
 
 Session-Type: Additional
 Session:
+    [default=ignore success=1] pam_succeed_if.so uid eq 1001 quiet
+    [default=ignore success=ignore] pam_succeed_if.so uid eq 1002 quiet
     [authinfo_unavail=ignore success=ok default=ignore] pam_radius_auth.so