From 1a8cdb8ca1751ecff8edd78915dc9de97124eae4 Mon Sep 17 00:00:00 2001 From: Jan Siwiec <jan.siwiec@vsb.cz> Date: Mon, 14 Jun 2021 07:22:34 +0000 Subject: [PATCH] Update standard-file-acl.md --- docs.it4i/storage/standard-file-acl.md | 46 ++++++++++++++++++++------ 1 file changed, 36 insertions(+), 10 deletions(-) diff --git a/docs.it4i/storage/standard-file-acl.md b/docs.it4i/storage/standard-file-acl.md index 66bc2db4f..8cd5718b5 100644 --- a/docs.it4i/storage/standard-file-acl.md +++ b/docs.it4i/storage/standard-file-acl.md @@ -1,6 +1,6 @@ # Standard File ACL -Access control list (ACL) provides an additional, more flexible permission mechanism for file systems. It is designed to assist with UNIX file permissions. ACL allows you to give permissions for any user or group to any disk resource. For more information, see the [wikipedia][1] page. +Access control list (ACL) provides an additional, more flexible permission mechanism for file systems. It is designed to assist with UNIX file permissions. ACL allows you to give permissions for any user or group to any disk resource. ## Show ACL @@ -8,40 +8,59 @@ To show permissions, use: ```code # getfacl <file/dir> -Examples -Set all permissions for user johnny to file named abc: +``` + +### Examples + +Set all permissions for user John to file named abc: + +```code +# setfacl -m "u:John:rwx" abc +``` -# setfacl -m "u:johnny:rwx" abc Check permissions: +```code # getfacl abc # file: abc # owner: someone # group: someone user::rw- -user:johnny:rwx +user:John:rwx group::r-- mask::rwx other::r-- -Change permissions for user johnny: +``` + +Change permissions for user John: + +```code +# setfacl -m "u:John:r-x" abc +``` -# setfacl -m "u:johnny:r-x" abc Check permissions: +```code # getfacl abc # file: abc # owner: someone # group: someone user::rw- -user:johnny:r-x +user:John:r-x group::r-- mask::r-x other::r-- +``` + Remove all ACL entries: +```code # setfacl -b abc +``` + Check permissions: +```code # getfacl abc # file: abc # owner: someone @@ -49,11 +68,18 @@ Check permissions: user::rw- group::r-- other::r-- -Output of ls command -You will notice that there is an ACL for a given file because it will exhibit a + (plus sign) after its Unix permissions in the output of ls -l. +``` +## Output of ls command + +You will notice that there is an ACL for a given file because it will exhibit `+` after its Unix permissions in the output of `ls -l`. + +```code $ ls -l /dev/audio crw-rw----+ 1 root audio 14, 4 nov. 9 12:49 /dev/audio +``` + +```code $ getfacl /dev/audio getfacl: Removing leading '/' from absolute path names # file: dev/audio -- GitLab