安科网

使用 ACL 设置用户访问指定文件/目录的权限

goawalk

goawalk

2018-01-05

关注 关注

使用 ACL 设置用户访问指定文件/目录的权限

当提到文件和目录的权限时,你的第一反应可能是“属主/群组/其它”权限。 这些权限可以通过 chmodchown 等命令来修改。

文件和目录都有属主 (文件所有者 )、群组 (所属组) 以及其它权限,这些权限构成一个集合。 然而这些权限集合有它的局限性,无法做到为不同的用户设置不同的权限。

Linux 对文件和目录有以下默认权限。

  • 文件 -> 644 -> -rw-r-r- (所有者有读写权限,组成员有只读权限, 其他人也只有读权限)
  • 目录 -> 755 -> drwxr-xr-x (所有者有读、写和执行权限,组成员有读和执行的权限,其他人也有读和执行的权限)

比如: 默认情况下,所有者可以访问和编辑他们自己主目录中的文件, 也可以访问相关同组人的文件,但他们不能修改这些文件,因为组成员没有写权限,而且让组成员有写权限也是不明智的。 基于同样的原因,他/她也不能修改其他人的文件。 然而在某些情况下,多个用户想要修改同一个文件, 那该怎么办呢?

假设有个名叫 magi 的用户,他想要修改 httpd.conf 文件怎么办呢? 这个文件是归 root 用户所有的,这样如何授权呢? 为了解决这种情况,访问控制列表Access Control List(ACL)诞生了。

 

什么是 ACL?

ACL 表示访问控制列表Access Control List(ACL),它为文件系统提供了附加的、更具有弹性的权限机制。 它被设计来为补充 UNIX 文件权限机制。 ACL 允许你赋予任何某用户/组访问某项资源的权限。 setfaclgetfacl 命令会帮助你管理 ACL 而不会有任何麻烦。

 

什么是 setfacl?

setfacl 用于设置文件和目录的 ACL。

 

什么 getfacl?

getfacl - 获取文件的 ACL 。对于每个文件, getfacl 都会显示文件名、文件所有者、所属组以及ACL。 如果目录有默认 ACL, getfacl 也会显示这个默认的 ACL。

 

如何确认是否启用了 ACL?

运行 tune2fs 命令来检查是否启用了 ACL。

  1. <span class="com">#</span><span class="kwd">tune2fs</span><span class="pun">-</span><span class="pln">l </span><span class="pun">/</span><span class="pln">dev</span><span class="pun">/</span><span class="pln">sdb1 </span><span class="pun">|</span><span class="kwd">grep</span><span class="pln"> options</span>
  2. <span class="typ">Default</span><span class="kwd">mount</span><span class="pln"> options</span><span class="pun">:</span><span class="pun">(</span><span class="pln">none</span><span class="pun">)</span>

上面的输出很明显第说明 /dev/sdb1 分区没有启用 ACL。

如果结果中没有列出 acl,则你需要在挂载选项中加上 acl。 为了让它永久生效, 修改 /etc/fstab/app 这一行成这样:

  1. <span class="com">#</span><span class="kwd">more</span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">fstab</span>
  2. <span class="pln">UUID</span><span class="pun">=</span><span class="pln">f304277d</span><span class="pun">-</span><span class="lit">1063</span><span class="pun">-</span><span class="lit">40a2</span><span class="pun">-</span><span class="pln">b9dc</span><span class="pun">-</span><span class="lit">8bcf30466a03</span><span class="pun">/</span><span class="pln"> ext4 defaults </span><span class="lit">1</span><span class="lit">1</span>
  3. <span class="pun">/</span><span class="pln">dev</span><span class="pun">/</span><span class="pln">sdb1 </span><span class="pun">/</span><span class="pln">app ext4 defaults</span><span class="pun">,</span><span class="pln">acl </span><span class="lit">1</span><span class="lit">1</span>

或者,你也可以使用下面命令将其添加道文件系统的超级块中:

  1. <span class="com">#</span><span class="kwd">tune2fs</span><span class="pun">-</span><span class="pln">o </span><span class="pun">+</span><span class="pln">acl </span><span class="pun">/</span><span class="pln">dev</span><span class="pun">/</span><span class="pln">sdb1</span>

现在,通过运行以下命令来动态修改选项:

  1. <span class="com">#</span><span class="kwd">mount</span><span class="pun">-</span><span class="pln">o remount</span><span class="pun">,</span><span class="pln">acl </span><span class="pun">/</span><span class="pln">app</span>

再次运行 tune2fs 命令来看选项中是否有 acl 了:

  1. <span class="com">#</span><span class="kwd">tune2fs</span><span class="pun">-</span><span class="pln">l </span><span class="pun">/</span><span class="pln">dev</span><span class="pun">/</span><span class="pln">sdb1 </span><span class="pun">|</span><span class="kwd">grep</span><span class="pln"> options</span>
  2. <span class="typ">Default</span><span class="kwd">mount</span><span class="pln"> options</span><span class="pun">:</span><span class="pln"> acl</span>

嗯,现在 /dev/sdb1 分区中有 ACL 选项了。

 

如何查看默认的 ACL 值

要查看文件和目录默认的 ACL 值,可以使用 getfacl 命令后面加上文件路径或者目录路径。 注意, 当你对非 ACL 文件/目录运行 getfacl 命令时, 则不会显示附加的 usermask 参数值。

  1. <span class="com">#</span><span class="pln"> getfacl </span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>
  2. <span class="com">#</span><span class="kwd">file</span><span class="pun">:</span><span class="pln"> etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>
  3. <span class="com">#</span><span class="pln"> owner</span><span class="pun">:</span><span class="pln"> root</span>
  4. <span class="com">#</span><span class="pln"> group</span><span class="pun">:</span><span class="pln"> root</span>
  5. <span class="pln">user</span><span class="pun">::</span><span class="pln">rw</span><span class="pun">-</span>
  6. <span class="pln">group</span><span class="pun">::</span><span class="pln">r</span><span class="pun">--</span>
  7. <span class="pln">other</span><span class="pun">::</span><span class="pln">r</span><span class="pun">--</span>

 

如何为文件设置 ACL

以下面格式运行 setfacl 命令可以为指定文件设置 ACL。在下面的例子中,我们会给 magi 用户对 /etc/apache2/apache2.conf 文件 rwx 的权限。

  1. <span class="com">#</span><span class="kwd">setfacl</span><span class="pun">-</span><span class="pln">m u</span><span class="pun">:</span><span class="pln">magi</span><span class="pun">:</span><span class="pln">rwx </span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>

仔细分析起来:

  • setfacl: 命令
  • -m: 修改文件的当前 ACL
  • u: 指明用户
  • magi: 用户名
  • rwx: 要设置的权限
  • /etc/apache2/apache2.conf: 文件名称

再查看一次新的 ACL 值:

  1. <span class="com">#</span><span class="pln"> getfacl </span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>
  2. <span class="com">#</span><span class="kwd">file</span><span class="pun">:</span><span class="pln"> etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>
  3. <span class="com">#</span><span class="pln"> owner</span><span class="pun">:</span><span class="pln"> root</span>
  4. <span class="com">#</span><span class="pln"> group</span><span class="pun">:</span><span class="pln"> root</span>
  5. <span class="pln">user</span><span class="pun">::</span><span class="pln">rw</span><span class="pun">-</span>
  6. <span class="pln">user</span><span class="pun">:</span><span class="pln">magi</span><span class="pun">:</span><span class="pln">rwx</span>
  7. <span class="pln">group</span><span class="pun">::</span><span class="pln">r</span><span class="pun">--</span>
  8. <span class="pln">mask</span><span class="pun">::</span><span class="pln">rwx</span>
  9. <span class="pln">other</span><span class="pun">::</span><span class="pln">r</span><span class="pun">--</span>

注意: 若你发现文件或目录权限后面有一个加号(+),就表示设置了 ACL。

  1. <span class="com">#</span><span class="kwd">ls</span><span class="pun">-</span><span class="pln">lh </span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>
  2. <span class="pun">-</span><span class="pln">rw</span><span class="pun">-</span><span class="pln">rwxr</span><span class="pun">--+</span><span class="lit">1</span><span class="pln"> root root </span><span class="lit">7.1K</span><span class="typ">Sep</span><span class="lit">19</span><span class="lit">14</span><span class="pun">:</span><span class="lit">58</span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>

 

如何为目录设置 ACL

以下面格式运行 setfacl 命令可以递归地为指定目录设置 ACL。在下面的例子中,我们会将 /etc/apache2/sites-available/ 目录中的 rwx 权限赋予 magi 用户。

  1. <span class="com">#</span><span class="kwd">setfacl</span><span class="pun">-</span><span class="typ">Rm</span><span class="pln"> u</span><span class="pun">:</span><span class="pln">magi</span><span class="pun">:</span><span class="pln">rwx </span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">sites</span><span class="pun">-</span><span class="pln">available</span><span class="pun">/</span>

其中:

  • -R: 递归到子目录中

再次查看一下新的 ACL 值。

  1. <span class="com">#</span><span class="pln"> getfacl </span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">sites</span><span class="pun">-</span><span class="pln">available</span><span class="pun">/</span>
  2. <span class="com">#</span><span class="kwd">file</span><span class="pun">:</span><span class="pln"> etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">sites</span><span class="pun">-</span><span class="pln">available</span><span class="pun">/</span>
  3. <span class="com">#</span><span class="pln"> owner</span><span class="pun">:</span><span class="pln"> root</span>
  4. <span class="com">#</span><span class="pln"> group</span><span class="pun">:</span><span class="pln"> root</span>
  5. <span class="pln">user</span><span class="pun">::</span><span class="pln">rwx</span>
  6. <span class="pln">user</span><span class="pun">:</span><span class="pln">magi</span><span class="pun">:</span><span class="pln">rwx</span>
  7. <span class="pln">group</span><span class="pun">::</span><span class="pln">r</span><span class="pun">-</span><span class="pln">x</span>
  8. <span class="pln">mask</span><span class="pun">::</span><span class="pln">rwx</span>
  9. <span class="pln">other</span><span class="pun">::</span><span class="pln">r</span><span class="pun">-</span><span class="pln">x</span>

现在 /etc/apache2/sites-available/ 中的文件和目录都设置了 ACL。

  1. <span class="com">#</span><span class="kwd">ls</span><span class="pun">-</span><span class="pln">lh </span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">sites</span><span class="pun">-</span><span class="pln">available</span><span class="pun">/</span>
  2. <span class="pln">total </span><span class="lit">20K</span>
  3. <span class="pun">-</span><span class="pln">rw</span><span class="pun">-</span><span class="pln">rwxr</span><span class="pun">--+</span><span class="lit">1</span><span class="pln"> root root </span><span class="lit">1.4K</span><span class="typ">Sep</span><span class="lit">19</span><span class="lit">14</span><span class="pun">:</span><span class="lit">56</span><span class="lit">000</span><span class="pun">-</span><span class="kwd">default</span><span class="pun">.</span><span class="pln">conf</span>
  4. <span class="pun">-</span><span class="pln">rw</span><span class="pun">-</span><span class="pln">rwxr</span><span class="pun">--+</span><span class="lit">1</span><span class="pln"> root root </span><span class="lit">6.2K</span><span class="typ">Sep</span><span class="lit">19</span><span class="lit">14</span><span class="pun">:</span><span class="lit">56</span><span class="kwd">default</span><span class="pun">-</span><span class="pln">ssl</span><span class="pun">.</span><span class="pln">conf</span>
  5. <span class="pun">-</span><span class="pln">rw</span><span class="pun">-</span><span class="pln">rwxr</span><span class="pun">--+</span><span class="lit">1</span><span class="pln"> root root </span><span class="lit">1.4K</span><span class="typ">Dec</span><span class="lit">8</span><span class="lit">02</span><span class="pun">:</span><span class="lit">57</span><span class="pln"> mywebpage</span><span class="pun">.</span><span class="pln">com</span><span class="pun">.</span><span class="pln">conf</span>
  6. <span class="pun">-</span><span class="pln">rw</span><span class="pun">-</span><span class="pln">rwxr</span><span class="pun">--+</span><span class="lit">1</span><span class="pln"> root root </span><span class="lit">1.4K</span><span class="typ">Dec</span><span class="lit">7</span><span class="lit">19</span><span class="pun">:</span><span class="lit">07</span><span class="pln"> testpage</span><span class="pun">.</span><span class="pln">com</span><span class="pun">.</span><span class="pln">conf</span>

 

如何为组设置 ACL

以下面格式为指定文件运行 setfacl 命令。在下面的例子中,我们会给 appdev 组赋予 /etc/apache2/apache2.conf 文件的 rwx 权限。

  1. <span class="com">#</span><span class="kwd">setfacl</span><span class="pun">-</span><span class="pln">m g</span><span class="pun">:</span><span class="pln">appdev</span><span class="pun">:</span><span class="pln">rwx </span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>

其中:

  • g: 指明一个组

对多个用户和组授权,只需要用 逗号 区分开,就像下面这样。

  1. <span class="com">#</span><span class="kwd">setfacl</span><span class="pun">-</span><span class="pln">m u</span><span class="pun">:</span><span class="pln">magi</span><span class="pun">:</span><span class="pln">rwx</span><span class="pun">,</span><span class="pln">g</span><span class="pun">:</span><span class="pln">appdev</span><span class="pun">:</span><span class="pln">rwx </span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>

 

如何删除 ACL

以下面格式运行 setfacl 命令会删除文件对指定用户的 ACL。这只会删除用户权限而保留 mask 的值为只读。

  1. <span class="com">#</span><span class="kwd">setfacl</span><span class="pun">-</span><span class="pln">x u</span><span class="pun">:</span><span class="pln">magi </span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>

其中:

  • -x: 从文件的 ACL 中删除

再次查看 ACL 值。在下面的输出中我们可以看到 mask 的值是读。

  1. <span class="com">#</span><span class="pln"> getfacl </span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>
  2. <span class="com">#</span><span class="kwd">file</span><span class="pun">:</span><span class="pln"> etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>
  3. <span class="com">#</span><span class="pln"> owner</span><span class="pun">:</span><span class="pln"> root</span>
  4. <span class="com">#</span><span class="pln"> group</span><span class="pun">:</span><span class="pln"> root</span>
  5. <span class="pln">user</span><span class="pun">::</span><span class="pln">rw</span><span class="pun">-</span>
  6. <span class="pln">group</span><span class="pun">::</span><span class="pln">r</span><span class="pun">--</span>
  7. <span class="pln">mask</span><span class="pun">::</span><span class="pln">r</span><span class="pun">--</span>
  8. <span class="pln">other</span><span class="pun">::</span><span class="pln">r</span><span class="pun">--</span>

使用 -b 来删除文件中所有的 ACL。

  1. <span class="com">#</span><span class="kwd">setfacl</span><span class="pun">-</span><span class="pln">b </span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>

其中:

  • -b: 删除所有的 ACL 条目

再次查看删掉后的 ACl 值就会发现所有的东西都不见了,包括 mask 的值也不见了。

  1. <span class="com">#</span><span class="pln"> getfacl </span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>
  2. <span class="com">#</span><span class="kwd">file</span><span class="pun">:</span><span class="pln"> etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">.</span><span class="pln">conf</span>
  3. <span class="com">#</span><span class="pln"> owner</span><span class="pun">:</span><span class="pln"> root</span>
  4. <span class="com">#</span><span class="pln"> group</span><span class="pun">:</span><span class="pln"> root</span>
  5. <span class="pln">user</span><span class="pun">::</span><span class="pln">rw</span><span class="pun">-</span>
  6. <span class="pln">group</span><span class="pun">::</span><span class="pln">r</span><span class="pun">--</span>
  7. <span class="pln">other</span><span class="pun">::</span><span class="pln">r</span><span class="pun">--</span>

 

如何备份并还原 ACL

下面命令可以备份和还原 ACL 的值。要制作备份, 需要进入对应的目录然后这样做(假设我们要备份 sites-available 目录中的 ACL 值)。

  1. <span class="com">#</span><span class="kwd">cd</span><span class="pun">/</span><span class="pln">etc</span><span class="pun">/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">sites</span><span class="pun">-</span><span class="pln">available</span><span class="pun">/</span>
  2. <span class="com">#</span><span class="pln"> getfacl </span><span class="pun">-</span><span class="pln">R </span><span class="pun">*</span><span class="pun">></span><span class="pln"> acl_backup_for_folder</span>

还原的话,则运行下面命令:

  1. <span class="com">#</span><span class="kwd">setfacl</span><span class="pun">--</span><span class="pln">restore</span><span class="pun">=</span><span class="str">/etc/</span><span class="pln">apache2</span><span class="pun">/</span><span class="pln">sites</span><span class="pun">-</span><span class="pln">available</span><span class="pun">/</span><span class="pln">acl_backup_for_folder</span>

via: https://www.2daygeek.com/how-to-configure-access-control-lists-acls-setfacl-getfacl-linux/

作者:Magesh Maruthamuthu 译者:lujun9972 校对:wxy

本文由 LCTT 原创编译,Linux中国 荣誉推出

acl linux文件权限 文件目录

goawalk

goawalk

0 关注 0 粉丝 0 动态

关注 关注

相关推荐

腾讯AI又创新纪录:ACL 2020入选27篇论文

近日,国际计算语言学协会年会在官网公布了ACL 2020的论文收录名单,共计收录779篇论文。据不完全统计,此次腾讯共有27篇论文入选,投中论文总数刷新国内记录,领跑国内业界AI研究第一梯队。此次ACL 2020的审稿周期相比以往几乎增加了一倍的时间,据最

dynalidan 2020-05-22

ORACLE 配置邮件服务器操作示例

本文实例讲述了ORACLE 配置邮件服务器操作。分享给大家供大家参考,具体如下:。DESCRIPTION => 'Enables network permissions for the e-mail server',-- 且建议使用ip地址或者使用域

yanghuatong 2020-02-05

Linux 命令总结

getent - get entries from Name Service Switch libraries. -d, --delete delete the password for the named account

kevinli 2020-04-18

linux中ACL权限

Filesystem features: has_journal ext_attr resize_inode dir_index filetype needs_recovery extent flex_bg sparse_super large_

wenjs00 2020-02-29

Linux中ACL权限列表

传统的权限仅有三种身份搭配三种权限,并没有办法单纯的针对某一个使用者或某一个群组来设定的权限需求,此时就是要使用ACL这个机制。注意:因此目前ACL几乎已经默认加入在所有常见的Linux文件系统的挂载参数中,但rhtl6.0以及之前的版本默认不支持acl的

zhongzhiwei 2020-01-09

HAProxy实现高级负载均衡实战和ACL控制

环境:随着公司业务的发展,公司负载均衡服务已经实现四层负载均衡,但业务的复杂程度提升,公司要求把mobile手机站点作为单独的服务提供,不在和pc站点一起提供服务,此时需要做7层规则负载均衡,运维总监要求,能否用一种服务同既能实现七层负载均衡,又能实现四层

zllbirdonland 2019-12-28

Linux Squid 代理服务配置

c. acl badsrcip dst 210.34.48.56 http_access deny badsrcip 禁止用户访问210.34.48.56这个网址。d. acl badsrcip1 www.163.com http_access deny

miaoheping 2007-11-20

Linux:权限管理

使用dumpe2fs -h /dev/sda5 查看 Default mount options 选项是否只支持 ACL。如果没有开启支持acl,可以使用下面两种方法配置支持。    (/etc/fstab 是开机自动挂载的文件,如果该文件修改错误,会导致

GeorgeTH 2019-10-23

基于 PostgreSQL 的 EMQ X Auth &amp; ACL

在阅读本教程之前,假定你已经了解 MQTT、MQTT 5 以及 EMQ X 的简单知识。emqx-auth-pgsql 它通过检查每个终端接入的 username 和 password 是否与用户指定 的 PostgreSQL 数据库中存储的信息一致来实现

wagpig 2019-09-07

Linux命令 - facl文件系统的访问控制列表详解

选项-b,--remove-all:删除所有扩展的acl规则,基本的acl规则将被保留。如果没有缺省规则,将不提示。setfacl默认会重新计算ACL mask,除非mask被明确的制定。--restore=file:从文件恢复备份的acl规则。通过这种机

allcan 2019-06-01

Linux 权限管理

dumpe2fs 该命令是文件系统的命令,在文件系统命令中去理解。mount -o remount,acl / 重新挂载根分区,并挂载加入acl权限。mask是用来指定最大的有效权限的。我们给用户赋予了ACL权限是需要和mask的权“相于”才能拥有真正的权

hongsheyoumo 2016-07-06

Linux的ACL配置

首先,在linux下,对一个文件可以进行的操作的对象分别为user,group,other(其他)而对于每一对象的操作又有了读写执行。第一种使用在分区已经被挂载的情况,也就是说这个分区已经在使用但还不支持ACL功能,在不影响分区使用的情况下重新挂载分区使其

lfjjia 2015-07-05

acl 跨平台网络通信服务器编程框架 3.0.22 版本发布

acl 3.0.22 版本发布了,acl 是 one advanced C/C++ library 的简称,主要包括网络通信库以及服务器框架库等功能,支持 Linux/Windows/Solaris/FreeBsd/MacOS 平台;整个 acl 项目主要

lovelily 2014-12-15

检查NFS是否启动

3) 检查NFS是否启动成功:

陈伟堂 2011-07-25

squid3(高命中率)缓存服务器配置

cache_peer xx.xx.xx.xx parent 80 0 no-query originserver no-digest name=a

sjpeter 2015-05-19

Solr搜索结果ACL 控制另类设计

在某人的前东家那里, 在企业级别协作平台中, 文档是是管理在内容容器中, 这个内容容器可以是community 和project, 类似于Jive 的管理方式。

pangbianlaogu 2012-11-26

linux目录设置多个用户权限

Windows系统其实和Linux系统有相似地方。Windows系统文件、目录属性有只读、隐藏而Linux也一样。Linux中每一个文件都具有特定属性,主要包括文件类型和文件权限两个方面。Linux是一个多用户操作系统,它允许多个用户同时登录和工作。因此L

pointfish 2010-06-22

PyCasbin: 支持 ACL、RBAC、ABAC 多种模型的 Python 权限管理框架

PyCasbin 采用了元模型的设计思想,支持多种经典的访问控制方案,如基于角色的访问控制 RBAC、基于属性的访问控制 ABAC 等。应该有其他专门的组件负责身份认证,然后由 PyCasbin 进行访问控制,二者是相互配合的关系;2.管理用户列表或角色列

amazingbo 2019-06-30

Linux的权限访问控制ACL管理

当使用chmod命令时,只能为一个所有者和一个组分配文件或目录的权限。如果多个用户需要访问我们需要将它们放在一个组中的资源,然后为该组提供必要的权限。本文关于Linux文件ACL的教程将解释命令getfacl和setfacl的用法。此权限分配给shell脚

Shuimitaojun 2019-06-29

Yii-Casbin:在 Yii 里使用 Casbin,支持 ACL、RBAC多种模型的权限管理框架

PHP-Casbin 采用了元模型的设计思想,支持多种经典的访问控制方案,如基于角色的访问控制 RBAC、基于属性的访问控制 ABAC 等。composer require casbin/yii-adapter配置使用此扩展时,需要在你的应用程序配置中配置

sunyu0 2019-06-29
goawalk

goawalk

W3CSchool教程
HTML 教程
CSS 教程
Bootstrap 教程
Javascript 教程
jQuery 教程
后端教程
C 教程
Java 教程
PHP 教程
Python 教程
Go 教程
移动开发
Android 教程
Swift 教程
Kotlin 教程
jQuery Mobile 教程
ionic 教程
关于我们
新闻动态
联系方式
招聘英才
安科实验室
帮助与反馈

安科网(Ancii),中国第一极客网

Copyright © 2013 - 2019 Ancii.com

京ICP备18063983号 京公网安备11010802014868号