Categorygithub.com/steiler/acls
modulepackage
0.1.1
Repository: https://github.com/steiler/acls.git
Documentation: pkg.go.dev
Overview
Versions
1
Dependencies
10
Dependents
1
Files
286 SLOC

# README

Overview

This library provides the means to, without any cgo dependencies, adjust the regular linux filesystem ACLs (system.posix_acl_access) as well as the default ACLs (system.posix_acl_default). It therefore is a golang native implementation of the getfacl / setfacl commands.

Sample

The following code will try to load the actual ACL entries from the filePath referenced file.

If the filePath referenced object does not have an ACL attached, the regular file permissions are loadded as ACL Entries.

Subsequentyl a new entry for the linux group with GID 5558 and a permission of 7 (rwx) is added.

Then the ACL is applied as an Access ACL to the filePath provided filesystem object.

package main

import (
  log "github.com/sirupsen/logrus"
  "github.com/steiler/acls"
)

func main() {
    // Define the path to the file for which you want to get ACLs.
    filePath := "/tmp/foo"

    // init the ACL struct
    a := &acls.ACL{}
    // load (access) ACL entries from a given path object
    err := a.Load(filePath, acls.PosixACLAccess)
    if err != nil {
        log.Fatal(err)
    }
    // add a new entry referencing a group with GID 5558 granting permission rwx (7)
    err = a.AddEntry(acls.NewEntry(acls.TAG_ACL_GROUP, 5558, 7))
    if err != nil {
        log.Fatal(err)
    }
    // print a visual representation of the ACL
    fmt.Println(a.String())

    // Apply the ACL as an access ACL to the given filesystem path object.
    err = a.Apply(filePath, acls.PosixACLAccess)
    if err != nil {
        log.Fatal(err)
    }
}

The output of the fmt.Println(a.String()) looks like the following:

Version: 2
Entries:
Tag:   USER_OBJ ( 1), ID:       1000, Perm: rwx (7)
Tag:  GROUP_OBJ ( 4), ID:       1000, Perm: rwx (7)
Tag:      GROUP ( 8), ID:       5558, Perm: rwx (7)
Tag:       MASK (16), ID: 4294967295, Perm: rwx (7)
Tag:      OTHER (32), ID: 4294967295, Perm: r-x (5)

Features

- Add ACL Entry
- Delete ACL Entry
- Modify ACL Entry
- Print ACL Entry
- Read ACL entries from one file object, apply to another
- Adjust default and access ACL

# Functions

NewEntry returns a new ACLEntry.
PermUintToString takes an int representation of a permission and returns the string representation "rwx".
No description provided by the author

# Constants

No description provided by the author
No description provided by the author
Discretionary access rights for all users.
Discretionary access rights for processes whose effective group ID or any supplemental groups match the ACL entry qualifier.
Discretionary access rights for processes whose effective groupID or any supplemental groups match the group ID of the file's owner.
The maximum discretionary access rights that can be granted to a process in the file group class.
Discretionary access rights for processes not covered by any other ACL entry.
Same as ACL_OTHER.
Undefined ACL type.
Discretionary access rights for processes whose effective user ID matches the ACL entry qualifier.
Discretionary access rights forprocesses whose effective user IDmatches the user ID of the file's owner.

# Structs

ACL handles Posix ACL data.
ACLEntry the ACLEntry represents the single lines of permission.

# Type aliases

No description provided by the author
No description provided by the author