1 (* HCoop
Domtool (http
://hcoop
.sourceforge
.net
/)
2 * Copyright (c
) 2006, Adam Chlipala
4 * This program is free software
; you can redistribute it
and/or
5 * modify it under the terms
of the GNU General Public License
6 * as published by the Free Software Foundation
; either version
2
7 * of the License
, or (at your option
) any later version
.
9 * This program is distributed
in the hope that it will be useful
,
10 * but WITHOUT ANY WARRANTY
; without even the implied warranty
of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE
. See the
12 * GNU General Public License for more details
.
14 * You should have received a copy
of the GNU General Public License
15 * along
with this program
; if not
, write to the Free Software
16 * Foundation
, Inc
., 51 Franklin Street
, Fifth Floor
, Boston
, MA
02110-1301, USA
.
19 (* Per
-user access control lists for resources various
*)
21 structure Acl
:> ACL
= struct
23 type acl
= {user
: string,
27 structure SM
= DataStructures
.StringMap
28 structure SS
= DataStructures
.StringSet
30 val acl
: SS
.set SM
.map SM
.map ref
= ref SM
.empty
32 fun query
{user
, class
, value
} =
33 case SM
.find (!acl
, user
) of
36 case SM
.find (classes
, class
) of
38 | SOME values
=> SS
.member (values
, value
)
41 case SM
.find (!acl
, user
) of
43 | SOME classes
=> SM
.foldri (fn (class
, values
, out
) =>
44 (class
, SS
.foldr (op::) [] values
) :: out
)
47 fun users () = SM
.foldri (fn (user
, _
, ls
) => user
:: ls
) [] (!acl
)
49 fun whoHas
{class
, value
} =
50 SM
.foldri (fn (user
, classes
, users
) =>
51 case SM
.find (classes
, class
) of
54 if SS
.member (values
, value
) then
59 fun class
{user
, class
} =
60 case SM
.find (!acl
, user
) of
63 case SM
.find (classes
, class
) of
65 | SOME values
=> values
67 fun grant
{user
, class
, value
} =
69 val classes
= Option
.getOpt (SM
.find (!acl
, user
), SM
.empty
)
70 val values
= Option
.getOpt (SM
.find (classes
, class
), SS
.empty
)
72 acl
:= SM
.insert (!acl
, user
,
73 SM
.insert (classes
, class
,
74 SS
.add (values
, value
)))
77 fun revoke
{user
, class
, value
} =
79 val classes
= Option
.getOpt (SM
.find (!acl
, user
), SM
.empty
)
80 val values
= Option
.getOpt (SM
.find (classes
, class
), SS
.empty
)
82 val values
= if SS
.member (values
, value
) then
83 SS
.delete (values
, value
)
87 acl
:= SM
.insert (!acl
, user
,
88 SM
.insert (classes
, class
,
94 val inf
= TextIO.openIn fname
97 case TextIO.inputLine inf
of
100 case String.tokens
Char.isSpace line
of
104 case TextIO.inputLine inf
of
107 case String.tokens
Char.isSpace line
of
110 classes (SM
.insert (clss
, class
,
111 foldl SS
.add
' SS
.empty values
))
113 users (SM
.insert (usrs
, user
, classes SM
.empty
))
115 | _
=> raise Fail
"Unexpected ACL file format"
117 acl
:= users SM
.empty
118 before TextIO.closeIn inf
123 val outf
= TextIO.openOut fname
125 val writeValues
= SS
.app (fn value
=>
126 (TextIO.output (outf
, " ");
127 TextIO.output (outf
, value
)))
129 val writeClasses
= SM
.appi (fn (class
, values
) =>
130 if SS
.isEmpty values
then
133 (TextIO.output (outf
, class
);
135 TextIO.output (outf
, "\n")))
137 val writeUsers
= SM
.appi (fn (user
, classes
) =>
138 if SM
.numItems classes
= 0 then
141 (TextIO.output (outf
, user
);
142 TextIO.output (outf
, "\n");
143 writeClasses classes
;
144 TextIO.output (outf
, "\n")))