...
There are seven standard AFS permissions, each referred to by one of the letters r, l, i, d, w, k and a. The lida permissions apply to directories and the rwk permissions apply to files.
DIRECTORY PERMISSIONS
ACL | Permissions |
---|---|
l (lookup) | Allows one to list the contents of a directory. It does not allow the reading of files. |
i (insert) | Allows one to create new files in a directory or copy new files to a directory. |
d (delete) | Allows one to remove files and sub-directories from a directory. |
a (administer) | Allows one to change a directory's ACL. The owner of a directory can always change |
FILE PERMISSIONS
ACL | Permissions |
---|---|
r (read) | Allows one to read the contents of file in the directory. |
w (write) | Allows one to modify the contents of files in a directory and use chmod on them. |
k (lock) | Allows programs to lock files in a directory. |
Shortcuts
When specifying directory rights using fs, the following shortcuts may be used:
Shortcut | Permissions |
---|---|
all | rlidwka |
read | rl |
write | rlidwk |
none | removes all entries |
Set ACL
The ACL can be modified using the fs setacl command.
...
Code Block |
---|
fs setacl -dir /afs/<dir> -acl <user> read |
As a shortcut, you can abbreviate "setacl" to "sa" and/or leave out the "-dir" and "-acl" as long as you maintain the arguments in the order given
Code Block |
---|
fs sa /afs/<dir> <user> read |
To add user or group to an ACL - write permission:
...