How can I switch user in a shell and use the existing gnome display session?

command-line xorg display
18,622

If you want to allow user bob to access your existing X session from the command line, you can enter these commands at the terminal prompt:

xauth nextract - $DISPLAY | sudo -u bob xauth nmerge -

Thius uses the xauth command to extract the authentication information for the current user (first part of the command, before the |) and then merge it into user bob's $HOME/.Xauthority file. Note that it requires /etc/sudoers to be configured so that you are allowed to run commands as user bob (this is the default if you're the admin user on a Ubuntu box).

You can then switch to user bob with su -l.

Alternatively, you can issue these separate commands:

xauth nextract - $DISPLAY > /tmp/xauth.temporary.file
su -l bob -c 'xauth nmerge - < /tmp/xauth.temporary.file'
rm /tmp/xauth.temporary.file

Note that:

1) the temporary file must have permissions such that user bob can read it (which often means that any user on the system can read it);

2) there is a time window during which any user that can read the temporary file can get access to your X display.

Therefore, it is better to use the sudo approach as it does not have these downsides.

Share:
18,622

Related videos on Youtube

jefe goode
Author by

jefe goode

Updated on September 18, 2022

Comments

  • jefe goode
    jefe goode over 1 year

    If I switch user in a terminal.

    su bob

    I can't open gedit because bob doesn't own the display.

    If I execute

    xhost +

    before switching to bob I can open the display for some applications but not all. I get the following output when trying to execute gedit:

    (crashreporter:4415): GnomeUI-WARNING *: While connecting to session manager: None of the authentication protocols specified are supported.
    *     GLib-GIO:ERROR:/build/buildd/glib2.0-2.28.6/./gio/gdbusconnection.c:2279:initable_init: assertion failed: (connection->initialization_error == NULL)

    • Oxwivi
      Oxwivi almost 13 years
      Try command line editors like nano.
    • jefe goode
      jefe goode almost 13 years
      @Oxwivi Sure, and I do use nano a lot but in this case gedit is just one of the GUI applications I wasn't able to open.
    • Oxwivi
      Oxwivi almost 13 years
      The only program you can't open as another user? You should include it in the question.
    • Riccardo Murri
      Riccardo Murri almost 13 years
      Try to avoid xhost + if you're on a networked computer, as that disables X security and gives anyone on the network permission to connect to your X display and do things like reading your keyboard from remote...
    • jefe goode
      jefe goode almost 13 years
      @Oxwivi It could also be firefox, that doesn't work either, it's just in general, I want to be able to do this. gedit was a poor example, you are right about that.
  • jefe goode
    jefe goode almost 13 years
    I got this to work, but: su: must be run from a terminal
  • Riccardo Murri
    Riccardo Murri almost 13 years
    @z7sg: Yes, of course it must be run in a terminal. Isn't that what your question is about? How to switch to another user in a terminal and still be able to launch X applications from that same terminal?
  • jefe goode
    jefe goode almost 13 years
    @Ricardo Yes, but su doesn't like being run from a pipe. It's a security issue.
  • Riccardo Murri
    Riccardo Murri almost 13 years
    @z7sg Oh, I see. You're right, but you can use sudo instead of su and not run into this problem. I'll edit my answer with details.
  • djb
    djb over 10 years
    From my desktop running xubuntu, I run ssh -X otherhost. From that host, DISPLAY is "localhost:10.0". When I try xauth extract - $DISPLAY I get an error, No matches found, authority file "-" not written
  • Riccardo Murri
    Riccardo Murri over 10 years
    @djb You should not need to do any xauth magic: ssh already handles the details for you.
  • djb
    djb over 10 years
    Thanks, @RiccardoMurri - I left out something. From my desktop, I ssh -X somehost to login as myself and X works. From there, I want to sudo and have that command use my desktop display. But after doing ssh -X, the remote shell has DISPLAY set to a local proxy (localhost:10.0 for example) and this can't be passed to sudu (or other su userid commands). The pipeline above fails because localhost is not known to xauth. But this works: [[ xauth nextract - ${DISPLAY/localhost/$(hostname)/unix} | sudo xauth nmerge - ]] followed by sudo xcommand . I must change localhost to $(hostname)/unix for xauth

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How do you change brightness, color and sharpness from command line?
Turn off X11 / Xorg display (not standby)
Refresh display settings - using xrandr / Laptop screen off, external screen on
Screen resolution is not saved after reboot
How to emulate Fn (function key) keypress in xte
How to set up triple monitors in 14.04 with NVIDIA GTX980M
After install Google Chrome in EC2 won't open from Ubuntu Server 14.04 LTS (HVM) command line
Displaying at 1080i instead of 1080p
Display resolution problem using VGA splitter
Ubuntu 14.04 Unknown Display