Sudoers: add group ALL to runas (#800)

Enables `sudo -g`; feature parity with legacy metadata SSH key users.
author: kkm (aka Kirill Katsnelson) <kkm@smartaction.ai> 2019-07-03 21:32:01 -0700
committer: Liam Hopkins <liamh@google.com> 2019-07-03 21:32:01 -0700
commit: 5d9e07f1c27d5c10953538fcba59fee32aee2d2c (patch)
tree: 9214b9cffc7dc87ca1f0ee47063f67ef67a37bc0
parent: 14f700ecc1adc0fa7b0e450126065f7f45347d2a (diff)
download: google-compute-image-packages-5d9e07f1c27d5c10953538fcba59fee32aee2d2c.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/packages/google-compute-engine-oslogin/pam_module/pam_oslogin_admin.cc b/packages/google-compute-engine-oslogin/pam_module/pam_oslogin_admin.cc
index d711d80..9a77434 100644
--- a/packages/google-compute-engine-oslogin/pam_module/pam_oslogin_admin.cc
+++ b/packages/google-compute-engine-oslogin/pam_module/pam_oslogin_admin.cc
@@ -86,7 +86,7 @@ PAM_EXTERN int pam_sm_acct_mgmt(pam_handle_t *pamh, int flags, int argc,
                  user_name);
       std::ofstream sudoers_file;
       sudoers_file.open(filename.c_str());
-      sudoers_file << user_name << " ALL=(ALL) NOPASSWD: ALL"
+      sudoers_file << user_name << " ALL=(ALL:ALL) NOPASSWD: ALL"
                    << "\n";
       sudoers_file.close();
       chown(filename.c_str(), 0, 0);
author	kkm (aka Kirill Katsnelson) <kkm@smartaction.ai>	2019-07-03 21:32:01 -0700
committer	Liam Hopkins <liamh@google.com>	2019-07-03 21:32:01 -0700
commit	5d9e07f1c27d5c10953538fcba59fee32aee2d2c (patch)
tree	9214b9cffc7dc87ca1f0ee47063f67ef67a37bc0
parent	14f700ecc1adc0fa7b0e450126065f7f45347d2a (diff)
download	google-compute-image-packages-5d9e07f1c27d5c10953538fcba59fee32aee2d2c.tar.gz