logo
Free, unlimited AI code reviews that run on commit
git-lrc git-lrc GitHub Install Now We'd appreciate a star git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt

Wallet::ACL::NetDB::Root - Wallet ACL verifier for NetDB roles (root instances)

Contents

Author

       Russ Allbery <eagle@eyrie.org>

perl v5.40.0                                       2024-11-12                      Wallet::ACL::NetDB::Root(3pm)

Caveats

       The instance to strip is not currently configurable.

       The  list  of  possible NetDB roles that should be considered sufficient to grant access is not currently
       configurable.

Description

       Wallet::ACL::NetDB::Root works identically to Wallet::ACL::NetDB except that it requires the principal to
       be a root instance (in other words, to be in the form <principal>/root@<realm>) and strips the "/root"
       portion from the principal before checking against NetDB roles.  As with the base NetDB ACL verifier, the
       value of a "netdb-root" ACL is a node, and the ACL grants access to a given principal if and only if the
       that principal (with "/root" stripped) has one of the roles user, admin, or team for that node.

       To use this object, the same configuration parameters must be set as for Wallet::ACL::NetDB.  See
       Wallet::Config(3) for details on those configuration parameters and information about how to set wallet
       configuration.

Diagnostics

       Same as for Wallet::ACL::NetDB.

Methods

       check(PRINCIPAL, ACL)
           Returns  true  if  PRINCIPAL  is granted access according to ACL, false if not, and undef on an error
           (see "DIAGNOSTICS" below).  ACL is a node, and PRINCIPAL will be granted access if it has an instance
           of "root" and if (with "/root" stripped off and the realm stripped off if configured) has  the  user,
           admin, or team role for that node.

Name

       Wallet::ACL::NetDB::Root - Wallet ACL verifier for NetDB roles (root instances)

See Also

Net::Remctl(3),   Wallet::ACL(3),   Wallet::ACL::Base(3),    Wallet::ACL::NetDB(3),    Wallet::Config(3),
       wallet-backend(8)

       NetDB  is  a  free  software  system  for  managing  DNS, DHCP, and related machine information for large
       organizations.  For more information on NetDB, see <https://web.stanford.edu/group/networking/netdb/>.

       This  module   is   part   of   the   wallet   system.    The   current   version   is   available   from
       <https://www.eyrie.org/~eagle/software/wallet/>.

Synopsis

           my $verifier = Wallet::ACL::NetDB::Root->new;
           my $status = $verifier->check ($principal, $node);
           if (not defined $status) {
               die "Something failed: ", $verifier->error, "\n";
           } elsif ($status) {
               print "Access granted\n";
           } else {
               print "Access denied\n";
           }

See Also

Wallet
Wallet PNG Icons
Man Pages
Wallet::ACL::NetDB Man Pages
Man Pages
The following list categorizes the known issues and irregularities with running Podman as a non Man Pages
Man Pages
gmx Man Pages
Man Pages
Wallet::ACL::Nested Man Pages
Accessible
Accessible PNG Icons
Man Pages
Catalyst::ActionRole::RequireSSL::Role Man Pages
Man Pages
node Man Pages
Man Pages
Config::Model::Instance Man Pages
← View Library functions Category← Back to File and directory operations🙏  Credits & Acknowledgments