How to Execute Script as Root Without Password in macOS

Take the script that you created:

#!/bin/bash

echo "plugin L2TP.ppp">>/etc/ppp/options 
echo "l2tpnoipsec">>/etc/ppp/options

Save it in your home directory, or a 'scripts' directory inside your home directory, as l2tp.sh. Allow it to be executed(write this command in Terminal):

chmod 700 ~/path/to/l2tp.sh

To execute the file using sudo (root privileges):

Method #1. In Terminal type:

$ sudo ~/path/to/l2tp.sh

Method #2. Create a file run_l2tp.command with this contents:

sudo ~/path/to/l2tp.sh

Allow it to be executed:

chmod u+x run_l2tp.command

When you double-click run_l2tp.command and enter the password the l2tp.sh file will be executed with root privileges.

Some notes:

• On UNIX like systems, ~ is short for "my home directory".
• Chmod 700 will make the file executable only by you. For more information: see this Wikipedia page.
• typing 'sudo' before a command will execute the program using root privileges. Be careful when doing this, bad things can happen if you're not sure what you're doing.
• Obviously you can omit the /path/to if you saved this script directly in your home directory.

I'm not really familiar with the Scala language at all, but it looks like the script is only built to take user input for the password, not arguments or stdin, which is what's required for Automator to pass it data.

The shell that Automator runs scripts in is non-interactive, so your script can't directly prompt the user for a password. If you can rework your script to take a password via stdin, you could use an AppleScript wrapper to get a password dialog, if that's what you're hoping for.

If you rework your pgpsign script to take a password from stdin, you can use an Applescript action (with some shell scripting embedded) to display a password dialog and get the results you desire.

Replace your Run Shell Script action in your current workflow with a Run AppleScript action, with the following code:

on run {input, parameters}
    set thePath to quoted form of POSIX path of first item of input as string
    tell application "System Events"
        display dialog "Password:" default answer "" with hidden answer
    end tell
    set pass to text returned of result
    do shell script "cd " & thePath & "; echo " & quoted form of pass & " | perl -ne 'chomp and print' | ~/scripts/pgpsign"
end run

It's not the most straightforward, so I'll run through line by line what it's doing.

on run {input, parameters}
    set thePath to quoted form of POSIX path of first item of input as string

This gets the input from the service (the folder you selected) and turns it into a string that the shell script can make use of.

tell application "System Events"
    display dialog "Password:" default answer "" with hidden answer
end tell
set pass to text returned of result

This pops up a password dialog and stores the result to the pass variable. Ordinarily in AppleScript you don't need the System Events tell portion, but because of some quirks with Automator, it's required here.

do shell script "cd " & thePath & "; echo " & quoted form of pass & " | perl -ne 'chomp and print' | ~/scripts/pgpsign"

This ties it all together and sends the required parameters to your script. First we change to the selected directory (to answer your question in the comments, as your script is written, it is necessary to first cd to the directory you want). Then echo is used to send the password to stdin, and it's piped through the perl portion to strip the trailing newline (which is an annoying characteristic of AppleScript and would otherwise cause a valid password to fail), then piped to your script.

Sorry for giving you a lot to digest, but if you want to use Automator for this, it's probably the easiest way, unless you want to hardcode your password (which is obviously inadvisable for security reasons).