Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Question for expert only in Access control list
Top Forums UNIX for Advanced & Expert Users Question for expert only in Access control list Post 302989095 by mecnio on Saturday 7th of January 2017 07:03:33 PM
Old 01-07-2017
Question Question for expert only in Access control list
If I'm the admin for the financial system and I want to configure authorization pf file system permission.Also, The first rule is that Managers and clerks can read and write billings for all cases. The second rules is that Paralegals and administrative assits can read and write billings only on cases assigned to their supervising Manager.
how to write these rules in Linux by using ACL approach
 

10 More Discussions You Might Find Interesting

1. Filesystems, Disks and Memory

Access Control

In Windows XP, there are 3 default access control groups namely: Administrators, Users and Power Users. Is there default access control groups in Unix system? If there is, what are they? newbie. (1 Reply)
Discussion started by: zertoir
1 Replies

2. UNIX for Dummies Questions & Answers

Access control Lists

Hi, I was wondering if someone could help me with ACL's. I have a file, say output, created by the root user, member of group other. Its permissions are rwxr--r--. I want only people in group other to have rwx access, but I also want one other user, stephen, member of some_other_group to have rwx... (1 Reply)
Discussion started by: sroberts82
1 Replies

3. Shell Programming and Scripting

Access Control List

Hey all, I have a directory (own by user: b; group: grpB) which I want a user (user: a; group: grpA) to be able to read and execute from, I wonder if I should add user a to this particular directory's ACL or that I would add group grpB to user a's subgroup? I would like to know the difference... (3 Replies)
Discussion started by: mpang_
3 Replies

4. Solaris

Command for access control list

Hi, I want to set access control list on folders but it should be recursively, any Idea? command (1 Reply)
Discussion started by: manoj.solaris
1 Replies

5. UNIX for Dummies Questions & Answers

FTP access & control question

Folks; I need some help with these: 1. understanding how to control access rights and manage visibility using FTP in Solaris, in other words, I need to use FTP in Solaris to be able to give some users access to add/modify data to/from the UNIX server. 2. How can i control the space allowed for... (2 Replies)
Discussion started by: Katkota
2 Replies

6. UNIX for Dummies Questions & Answers

Does U*X have Access Control Lists?

In OS like windows, I can define an Access Control List (ACL) and specify which accounts and groups have what access to a specific file. I assume U*X, Linux and cygwin on windows have this ACL feature too. I'm using cygwin on windows. What do I type at a bash prompt to allow a specific user... (1 Reply)
Discussion started by: siegfried
1 Replies

7. UNIX for Dummies Questions & Answers

Internet Access Control

I need to control intenet access @ work. xample. I need PC 1 to only be able to access these five sites and add to the list as needed. Can anyone pint me a direction. (1 Reply)
Discussion started by: fruiz
1 Replies

8. AIX

Access control using LDAP

Hello, I've configurated a LDAP user authentication on AIX V6 against Active Directory (Windows Server 2008). The Tree is built as follows: test (DC) |--- testgroup (group with members: user1, user2) | |--- sys1 (OU) | |--- sys1group (group with member: user1) | |--- sys2 (OU)... (0 Replies)
Discussion started by: xia777
0 Replies

9. UNIX for Dummies Questions & Answers

eTrust Access Control

Hi, I am using eTrust Access Control at work. I have got no output after type checklogin. I wonder what is the reason. Does anyone know? Thanks eTrustAC selang v8.00a-1555.13 - eTrustAC command line interpreter Copyright (c) 2006 CA. All rights reserved. eTrustAC> checklogin user1... (0 Replies)
Discussion started by: uuontario
0 Replies

10. Proxy Server

How to use Squid on Linux to control certain IP to access Web Server and certain IP cannot access?

Dear all experts here, :) I would like to install a proxy server on Linux server to perform solely to control the access of Web server. In this case, some of my vendor asked me to try Squid and I have installed it onto my Linux server. I would like know how can I set the configuration to... (1 Reply)
Discussion started by: kwliew999
1 Replies

LEARN ABOUT SUSE

create_rule

CREATE 
RULE(7)							   SQL Commands 						    CREATE RULE(7)

NAME

       CREATE RULE - define a new rewrite rule

SYNOPSIS

       CREATE [ OR REPLACE ] RULE name AS ON event
	   TO table [ WHERE condition ]
	   DO [ ALSO | INSTEAD ] { NOTHING | command | ( command ; command ... ) }

DESCRIPTION

       CREATE  RULE defines a new rule applying to a specified table or view.  CREATE OR REPLACE RULE will either create a new rule, or replace an
       existing rule of the same name for the same table.

       The PostgreSQL rule system allows one to define an alternative action to be performed on insertions,  updates,  or  deletions  in  database
       tables.	Roughly  speaking,  a  rule  causes additional commands to be executed when a given command on a given table is executed. Alterna-
       tively, an INSTEAD rule can replace a given command by another, or cause a command not to be executed at all. Rules are used  to  implement
       table views as well. It is important to realize that a rule is really a command transformation mechanism, or command macro. The transforma-
       tion happens before the execution of the commands starts.  If you actually want an operation that fires	independently  for  each  physical
       row, you probably want to use a trigger, not a rule.  More information about the rules system is in in the documentation.

       Presently,  ON  SELECT rules must be unconditional INSTEAD rules and must have actions that consist of a single SELECT command. Thus, an ON
       SELECT rule effectively turns the table into a view, whose visible contents are the rows returned by the rule's SELECT command rather  than
       whatever had been stored in the table (if anything). It is considered better style to write a CREATE VIEW command than to create a real ta-
       ble and define an ON SELECT rule for it.

       You can create the illusion of an updatable view by defining ON INSERT, ON UPDATE, and ON DELETE rules (or any subset of those that's  suf-
       ficient	for  your  purposes) to replace update actions on the view with appropriate updates on other tables. If you want to support INSERT
       RETURNING and so on, then be sure to put a suitable RETURNING clause into each of these rules.

       There is a catch if you try to use conditional rules for view updates: there must be an unconditional INSTEAD rule for each action you wish
       to  allow  on  the  view.  If  the rule is conditional, or is not INSTEAD, then the system will still reject attempts to perform the update
       action, because it thinks it might end up trying to perform the action on the dummy table of the view in some cases. If you want to  handle
       all the useful cases in conditional rules, add an unconditional DO INSTEAD NOTHING rule to ensure that the system understands it will never
       be called on to update the dummy table.	Then make the conditional rules non-INSTEAD; in the cases where they are applied, they add to  the
       default INSTEAD NOTHING action. (This method does not currently work to support RETURNING queries, however.)

PARAMETERS

       name   The  name  of a rule to create. This must be distinct from the name of any other rule for the same table. Multiple rules on the same
	      table and same event type are applied in alphabetical name order.

       event  The event is one of SELECT, INSERT, UPDATE, or DELETE.

       table  The name (optionally schema-qualified) of the table or view the rule applies to.

       condition
	      Any SQL conditional expression (returning boolean). The condition expression cannot refer to any tables except NEW and OLD, and can-
	      not contain aggregate functions.

       INSTEAD
	      INSTEAD indicates that the commands should be executed instead of the original command.

       ALSO   ALSO indicates that the commands should be executed in addition to the original command.

	      If neither ALSO nor INSTEAD is specified, ALSO is the default.

       command
	      The command or commands that make up the rule action. Valid commands are SELECT, INSERT, UPDATE, DELETE, or NOTIFY.

       Within  condition and command, the special table names NEW and OLD can be used to refer to values in the referenced table.  NEW is valid in
       ON INSERT and ON UPDATE rules to refer to the new row being inserted or updated. OLD is valid in ON UPDATE and ON DELETE rules to refer	to
       the existing row being updated or deleted.

NOTES

       You must be the owner of a table to create or change rules for it.

       In  a  rule for INSERT, UPDATE, or DELETE on a view, you can add a RETURNING clause that emits the view's columns. This clause will be used
       to compute the outputs if the rule is triggered by an INSERT RETURNING, UPDATE RETURNING, or DELETE RETURNING  command  respectively.  When
       the  rule  is triggered by a command without RETURNING, the rule's RETURNING clause will be ignored. The current implementation allows only
       unconditional INSTEAD rules to contain RETURNING; furthermore there can be at most one RETURNING clause among all the rules  for  the  same
       event.  (This  ensures that there is only one candidate RETURNING clause to be used to compute the results.)  RETURNING queries on the view
       will be rejected if there is no RETURNING clause in any available rule.

       It is very important to take care to avoid circular rules. For example, though each of the following two rule definitions are  accepted	by
       PostgreSQL, the SELECT command would cause PostgreSQL to report an error because of recursive expansion of a rule:

       CREATE RULE "_RETURN" AS
	   ON SELECT TO t1
	   DO INSTEAD
	       SELECT * FROM t2;

       CREATE RULE "_RETURN" AS
	   ON SELECT TO t2
	   DO INSTEAD
	       SELECT * FROM t1;

       SELECT * FROM t1;

       Presently,  if  a  rule	action contains a NOTIFY command, the NOTIFY command will be executed unconditionally, that is, the NOTIFY will be
       issued even if there are not any rows that the rule should apply to. For example, in:

       CREATE RULE notify_me AS ON UPDATE TO mytable DO ALSO NOTIFY mytable;

       UPDATE mytable SET name = 'foo' WHERE id = 42;

       one NOTIFY event will be sent during the UPDATE, whether or not there are any rows that match the condition id = 42. This is an implementa-
       tion restriction that might be fixed in future releases.

COMPATIBILITY

       CREATE RULE is a PostgreSQL language extension, as is the entire query rewrite system.

SQL - Language Statements					    2010-05-14							    CREATE RULE(7)
All times are GMT -4. The time now is 02:33 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy