OSF DCE Application Development Guide--Core Components
Authorization
• group
The group entry establishes the permissions for the local group named in this entry.
An ACL may contain a number of entries of this type, but each entry must be unique
with respect to the group it specifies.
• foreign_group
The foreign_group entry establishes the permissions for the foreign group named in
this entry. An ACL may contain a number of entries of this type, but each entry must
be unique with respect to the foreign group it specifies. This entry type is exactly
like the group entry type, except that this entry explicitly names a cell (for the entry
type group, the principals inherit the default cell identifier).
• other_obj
The other_obj entry establishes the permissions for local principals whose identities
do not correspond to any entry type that explicitly names a principal or group; an
ACL may contain only one entry of this type.
• foreign_other
The foreign_other entry establishes the permissions for all principals that are
members of a specified foreign cell and whose identities do not correspond to any
foreign_user or foreign_group entry. An ACL may contain a number of entries of
this type, but each entry must specify a different foreign cell.
• any_other
The any_other entry establishes the permissions for principals whose privilege
attributes do not match those specified in any other entry type. An ACL may contain
only one entry of this type.
The followng addtional ACL entry types are supplied for delegated identities:
• user_obj_delegate
• user_delegate
• foreign_user_delegate
• group_obj_delegate
• group_delegate
• foreign_group_delegate
• foreign_other_delegate
• other_obj_delegate
• foreign_other_delegate
• any_other_delegate
These ACL entry types are described in detail in Chapter 26, along with the extensions
to the ACL checking algorithm for delegation.
ACL entries for privilege attributes consist of three fields in the following form:
entry_type[:key]: permissions
124245 Tandem Computers Incorporated 24−5