Help

Login script to mess with non-sudoer's home folder

samuellarsson
New Contributor III

Posted on β€Ž10-09-2019 07:37 AM

Hi,

I'm experimenting with a login script (triggered by a LaunchAgent) that moves the logged in user's Desktop folder to a new location while symlinking another folder to the Desktop folder, effectively displaying another folder's contents on the actual Desktop. It's working perfectly on users that are sudoers, but fails if they are not, because of insufficient privileges.

Can I run the script when a non-sudoer logs in, but with higher (such as an arbitrary sudoer account or even root) privileges somehow? Has anyone attempted this?

Thanks,
Samuel

0 Kudos
3 REPLIES 3

patgmac
Contributor III

Posted on β€Ž10-09-2019 09:38 AM

You could try using https://github.com/chilcote/outset along with a script in the the login-every-privileged folder.

samuellarsson
New Contributor III

Posted on β€Ž10-09-2019 11:54 PM

You could try using https://github.com/chilcote/outset along with a script in the the login-every-privileged folder.

Thanks, that sounds just about what I needed. I'll post my solution once I've tested it.

0 Kudos

PaulHazelden
Contributor III

Posted on β€Ž10-10-2019 02:50 AM

I have done that by using a watch file and LaunchDaemon.
The LaunchAgent runs and when you want to rename the Desktop, you touch a file that is being watched by the LaunchDaemon.
You will need to save the location of the Users Desktop, and then read it in the Daemon script. The Agent runs as the User, the Daemon runs as root. I have used multiple of these in turn to set up Network home folders and to redirect their folders to the Network ones. Just need to pop in a wait command to halt the Agent script for long enough for the Daemon one to do its task.

0 Kudos
Jamf helps organizations succeed with Apple. By enabling IT to empower end users, we bring the legendary Apple experience to businesses, education and government organizations. Learn about Jamf.