[hcoop/domtool2.git] / src / acl.sig

(* HCoop Domtool (http://hcoop.sourceforge.net/)
 * Copyright (c) 2006, Adam Chlipala
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
 *)

(* Per-user access control lists for resources various *)

signature ACL = sig

    type acl = {user : string,  (* The UNIX user being granted a permission *)
		class : string, (* The type of permission granted *)
		value : string} (* The object for which it is granted *)

    val query : acl -> bool
    (* Is this permission granted? *)

    val queryAll : string -> (string * string list) list
    (* What are all of a user's permissions, by class? *)

    val users : unit -> string list
    (* Which users have been granted privileges? *)

    val whoHas : {class : string, value : string} -> string list
    (* Which users have a permission? *)

    val class : {user : string, class : string} -> DataStructures.StringSet.set
    (* For what objects does the user have the permission? *)

    val grant : acl -> unit
    val revoke : acl -> unit
    (* Grant/ungrant the user the permission. *)

    val revokeFromAll : {class : string, value : string} -> unit

    val rmuser : string -> unit
    (* Remove all of a user's privileges. *)

    val read : string -> unit
    val write : string -> unit
    (* Read/write saved ACL state from/to a file *)

    val queryDomain : {user : string, domain : string} -> bool
    (* Like a call to [query] for class 'domain', but considers subdomains, too *)
end
Commit	Line	Data
12adf55a AC	1	(* HCoop Domtool (http://hcoop.sourceforge.net/)
	2	* Copyright (c) 2006, Adam Chlipala
	3	*
	4	* This program is free software; you can redistribute it and/or
	5	* modify it under the terms of the GNU General Public License
	6	* as published by the Free Software Foundation; either version 2
	7	* of the License, or (at your option) any later version.
	8	*
	9	* This program is distributed in the hope that it will be useful,
	10	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	11	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	12	* GNU General Public License for more details.
	13	*
	14	* You should have received a copy of the GNU General Public License
	15	* along with this program; if not, write to the Free Software
	16	* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
	17	*)
	18
	19	(* Per-user access control lists for resources various *)
	20
	21	signature ACL = sig
	22
	23	type acl = {user : string, (* The UNIX user being granted a permission *)
	24	class : string, (* The type of permission granted *)
	25	value : string} (* The object for which it is granted *)
	26
	27	val query : acl -> bool
	28	(* Is this permission granted? *)
	29
08a04eb4 AC	30	val queryAll : string -> (string * string list) list
	31	(* What are all of a user's permissions, by class? *)
	32
1824f573 AC	33	val users : unit -> string list
	34	(* Which users have been granted privileges? *)
	35
094877b1 AC	36	val whoHas : {class : string, value : string} -> string list
	37	(* Which users have a permission? *)
	38
12adf55a AC	39	val class : {user : string, class : string} -> DataStructures.StringSet.set
	40	(* For what objects does the user have the permission? *)
	41
	42	val grant : acl -> unit
	43	val revoke : acl -> unit
	44	(* Grant/ungrant the user the permission. *)
	45
e69e60cc AC	46	val revokeFromAll : {class : string, value : string} -> unit
	47
	48	val rmuser : string -> unit
	49	(* Remove all of a user's privileges. *)
	50
12adf55a AC	51	val read : string -> unit
	52	val write : string -> unit
	53	(* Read/write saved ACL state from/to a file *)
	54
51cc45f7 AC	55	val queryDomain : {user : string, domain : string} -> bool
51cc45f7 AC	56	(* Like a call to [query] for class 'domain', but considers subdomains, too *)
12adf55a	57	end