Peter Billson wrote:

Now that I have it working, I want to get rid of it. I'm in a library/kiosk terminal situation, and it seems like a real waste of resources to autologin, but then autologout in case the patron just walked away with their credit card number in a cache somewhere in the browser (I rebuild the home directory each time). So our machines sit there and cycle through the login process. Ugh.

Does anyone know a way to remotely login or logout a kiosk machine with GDM? It would be great if the librarians could just start a session on one of the kiosk machines without having to hand out passwords or walk over to the
machine to start the session.

Joe,
I use xscreensaver and PAM mySQL (and KDM but GDM would work too) to control the patron's sessions.

1) The kiosk uses autologin when started then the screensaver locks the screen.

2) Depending on the library, the patron gets a password from either a librarian or by scanning their library card at a self-serve terminal.

3) When the password is assigned a script is run to clean up the previous session - i.e. close all open programs, delete any saved files, etc.

4) After the user logs in, the password is changed so the one the patron knows is no longer valid.

 5) The station re-locks in one of three ways:
     a) If the patron walks away the screensaver will activate
        re-locking the station
     b) I provide a "Log Out" icon that cleans up the patron's session
        and activates the screensaver.
     c) A timer script activates the screensaver when the patron's
        allotted time is up.


6) I have set up a script so that the library can deactivate the screensaver without passwords (like when the library is giving a class) but the problem I have found in using this generally is that in the rush after school kids will just pounce on an open computer. The kid who requested the session often finds someone sitting at the computer that the librarian just assigned to him/her.


Pete Billson

That sounds like an interesting approach. The swipe card thing would be interesting to learn more about, though it doesn't really apply to us as we're a small rural library. We're lucky if the user has ever had a library card. And we get so many latch-key kids right after school that handing out one-time passwords would be a pain. Actually, I was thinking about this and came up with the following:

The autologin script has to be called every time the client initiates a connection with GDM (There's probably a more standard XDMCP nomenclature for this) . So that script is where the wiggle room is; it can be built to return a bad username until the librarian takes some action. I fooled around with this idea yesterday and wrote an XML-RPC client autologin script in python that makes a request to an XML-RPC enabled web application to get the username. The web app is of course controlled by the library staff, and if they enable the kiosk then a good username is returned to the autologin script and the patron can start using the kiosk. It appears to work as expected. The only hacky bit is getting GDM to rerun the script, and the worst case solution is that the patron just hits the disconnect button on the login screen after the librarian has assigned them to a terminal, and then a very short timed login starts. This can probably be done by the web app as well, killing off the connection from the server side. J. Toman




-------------------------------------------------------
This SF.Net email is sponsored by xPML, a groundbreaking scripting language
that extends applications into web and mobile media. Attend the live webcast
and join the prime developer group breaking into this new coding territory!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642
_____________________________________________________________________
Ltsp-discuss mailing list.   To un-subscribe, or change prefs, goto:
     https://lists.sourceforge.net/lists/listinfo/ltsp-discuss
For additional LTSP help,   try #ltsp channel on irc.freenode.net

Reply via email to