Execute macOS scripts as Defined User

Description

By default, ~~the~~ FileWave Client ~~executes~~runs scripts and tasks ~~with~~as ~~elevated permissions (~~root on ~~macOS).~~macOS. ~~The~~Use ~~below~~this ~~shows~~pattern when a ~~method~~script needs to ~~launch~~run a command as anthe ~~alternate~~currently ~~user~~logged-in ~~when~~console ~~ran through FileWave.~~user.

Ingredients

Text editor
FileWave Central

Directions

~~The~~sudo sudo-u sets the target user. launchctl asuser runs the command ~~may~~in bethat ~~used~~user's tolaunchd ~~define~~context. Some commands need one or the other; using both is a ~~user~~practical topattern ~~run~~for acommands ~~command.~~that ~~Launchctl may also be used to define a user. In some instances only one of these options may be successful. However, both may be defined in~~expect the ~~same~~logged-in ~~command~~user ~~at the same time, increasing the chances of success.~~session.

The script below ~~method not only shows a method to define the user, but grabs~~finds the current ~~'console'~~console ~~user.~~user and runs whoami in that user's context.

#!/bin/zsh
current_user=$(stat -f%Su /dev/console)
current_user_id=$(id -u "$current_user)current_user")

whoami

launchctl asuser "$current_user_idcurrent_user_id" sudo -u "$current_usercurrent_user" whoami

When ~~ran~~FileWave ~~through FileWave,~~runs the ~~output of~~script, the ~~above~~first ~~will show the~~whoami output ~~of the 'whoami' command has altered, by first echoing~~shows the root ~~username~~user. ~~and~~The ~~then~~second ~~the~~output ~~name of~~shows the active console ~~user of the device.~~user.

If the current logged-in user ~~logged~~is ~~in where 'sholden'~~sholden, the output should ~~show:~~be:

root
sholden