cdist-web/src/extra/manual/beta/_sources/man7/cdist-type__acl.rst.txt

cdist-type__acl(7)
==================

NAME
----
cdist-type__acl - Set ACL entries


DESCRIPTION
-----------
Fully supported and tested on Linux (ext4 filesystem), partial support for FreeBSD.

See ``setfacl`` and ``acl`` manpages for more details.


REQUIRED MULTIPLE PARAMETERS
----------------------------
entry
   Set ACL entry following ``getfacl`` output syntax.


OPTIONAL PARAMETERS
-------------------
source
   Read ACL entries from stdin or file.
   Ordering of entries is not important.
   When reading from file, comments and empty lines are ignored.

file
   Create/change file with ``__file`` using ``user:group:mode`` pattern.

directory
   Create/change directory with ``__directory`` using ``user:group:mode`` pattern.


BOOLEAN PARAMETERS
------------------
default
   Set all ACL entries as default too.
   Only directories can have default ACLs.
   Setting default ACL in FreeBSD is currently not supported.

recursive
   Make ``setfacl`` recursive (Linux only), but not ``getfacl`` in explorer.

remove
   Remove undefined ACL entries.
   ``mask`` and ``other`` entries can't be removed, but only changed.


DEPRECATED PARAMETERS
---------------------
Parameters ``acl``, ``user``, ``group``, ``mask`` and ``other`` are deprecated and they
will be removed in future versions. Please use ``entry`` parameter instead.


EXAMPLES
--------

.. code-block:: sh

    __acl /srv/project \
        --default \
        --recursive \
        --remove \
        --entry user:alice:rwx \
        --entry user:bob:r-x \
        --entry group:project-group:rwx \
        --entry group:some-other-group:r-x \
        --entry mask::r-x \
        --entry other::r-x

    # give Alice read-only access to subdir,
    # but don't allow her to see parent content.

    __acl /srv/project2 \
        --remove \
        --entry default:group:secret-project:rwx \
        --entry group:secret-project:rwx \
        --entry user:alice:--x

    __acl /srv/project2/subdir \
        --default \
        --remove \
        --entry group:secret-project:rwx \
        --entry user:alice:r-x

    # read acl from stdin
    echo 'user:alice:rwx' \
        | __acl /path/to/directory --source -

    # create/change directory too
    __acl /path/to/directory \
        --default \
        --remove \
        --directory root:root:770 \
        --entry user:nobody:rwx


AUTHORS
-------
Ander Punnar <ander-at-kvlt-dot-ee>


COPYING
-------
Copyright \(C) 2018 Ander Punnar. You can redistribute it
and/or modify it under the terms of the GNU General Public License as
published by the Free Software Foundation, either version 3 of the
License, or (at your option) any later version.
Initial commit 2019-04-23 18:55:23 +00:00			`cdist-type__acl(7)`
			`==================`

			`NAME`
			`----`
			`cdist-type__acl - Set ACL entries`


			`DESCRIPTION`
			`-----------`
Update beta manual 2019-05-28 16:02:04 +00:00			`Fully supported and tested on Linux (ext4 filesystem), partial support for FreeBSD.`
Initial commit 2019-04-23 18:55:23 +00:00
			See ``setfacl`` and ``acl`` manpages for more details.


Update beta manual 2019-06-21 12:22:50 +00:00			`REQUIRED MULTIPLE PARAMETERS`
Initial commit 2019-04-23 18:55:23 +00:00			`----------------------------`
Update cdist beta docs 2020-01-23 06:23:58 +00:00			`entry`
Update beta manual 2019-06-21 12:22:50 +00:00			Set ACL entry following ``getfacl`` output syntax.
Initial commit 2019-04-23 18:55:23 +00:00

Update cdist beta docs 2020-01-23 06:23:58 +00:00			`OPTIONAL PARAMETERS`
			`-------------------`
			`source`
			`Read ACL entries from stdin or file.`
			`Ordering of entries is not important.`
			`When reading from file, comments and empty lines are ignored.`

			`file`
			Create/change file with ``__file`` using ``user:group:mode`` pattern.

			`directory`
			Create/change directory with ``__directory`` using ``user:group:mode`` pattern.


Initial commit 2019-04-23 18:55:23 +00:00			`BOOLEAN PARAMETERS`
			`------------------`
Update beta manual 2019-06-21 12:22:50 +00:00			`default`
			`Set all ACL entries as default too.`
			`Only directories can have default ACLs.`
			`Setting default ACL in FreeBSD is currently not supported.`

Initial commit 2019-04-23 18:55:23 +00:00			`recursive`
			Make ``setfacl`` recursive (Linux only), but not ``getfacl`` in explorer.

			`remove`
Update beta manual 2019-06-21 12:22:50 +00:00			`Remove undefined ACL entries.`
			``mask`` and ``other`` entries can't be removed, but only changed.


			`DEPRECATED PARAMETERS`
			`---------------------`
Update cdist beta docs 2020-01-23 06:23:58 +00:00			Parameters ``acl``, ``user``, ``group``, ``mask`` and ``other`` are deprecated and they
			will be removed in future versions. Please use ``entry`` parameter instead.
Initial commit 2019-04-23 18:55:23 +00:00

			`EXAMPLES`
			`--------`

			`.. code-block:: sh`

			`__acl /srv/project \`
Update beta manual 2019-06-21 12:22:50 +00:00			`--default \`
Initial commit 2019-04-23 18:55:23 +00:00			`--recursive \`
Update beta manual 2019-06-21 12:22:50 +00:00			`--remove \`
Update cdist beta docs 2020-01-23 06:23:58 +00:00			`--entry user:alice:rwx \`
			`--entry user:bob:r-x \`
			`--entry group:project-group:rwx \`
			`--entry group:some-other-group:r-x \`
			`--entry mask::r-x \`
			`--entry other::r-x`
Update beta manual 2019-06-21 12:22:50 +00:00
			`# give Alice read-only access to subdir,`
			`# but don't allow her to see parent content.`

			`__acl /srv/project2 \`
			`--remove \`
Update cdist beta docs 2020-01-23 06:23:58 +00:00			`--entry default:group:secret-project:rwx \`
			`--entry group:secret-project:rwx \`
			`--entry user:alice:--x`
Update beta manual 2019-06-21 12:22:50 +00:00
			`__acl /srv/project2/subdir \`
Initial commit 2019-04-23 18:55:23 +00:00			`--default \`
			`--remove \`
Update cdist beta docs 2020-01-23 06:23:58 +00:00			`--entry group:secret-project:rwx \`
			`--entry user:alice:r-x`

			`# read acl from stdin`
			`echo 'user:alice:rwx' \`
			`\| __acl /path/to/directory --source -`

			`# create/change directory too`
			`__acl /path/to/directory \`
			`--default \`
			`--remove \`
			`--directory root:root:770 \`
			`--entry user:nobody:rwx`
Initial commit 2019-04-23 18:55:23 +00:00

			`AUTHORS`
			`-------`
			`Ander Punnar <ander-at-kvlt-dot-ee>`


			`COPYING`
			`-------`
			`Copyright \(C) 2018 Ander Punnar. You can redistribute it`
			`and/or modify it under the terms of the GNU General Public License as`
			`published by the Free Software Foundation, either version 3 of the`
			`License, or (at your option) any later version.`