Access Control List Routines

#ifndef HTACL_H
#define HTACL_H

#include "HTUtils.h"
#include "HTAAUtil.h"
#include "HTGroup.h"
#include "HTAccess.h"


#ifdef SHORT_NAMES
#define	HTAAgAFn	HTAA_getAclFilename
#define	HTAAoACL	HTAA_openAcl
#define	HTAAcACL	HTAA_closeAcl
#define	HTAAgAEn	HTAA_getAclEntry
#define	HTAAgFAE	HTAA_getFullAclEntry
#endif /* SHORT_NAMES */

typedef struct _HTACL {
    HTList *	methods;
    GroupDef *	groups;
} HTACL;


Opening Access Control List File

/* PUBLIC						HTAA_openAcl()
**		OPEN THE ACL FILE FOR THE GIVEN DOCUMENT
** ON ENTRY:
**	pathname	is the absolute pathname of
**			the file to be accessed.
**
** ON EXIT:
**	returns		the FILE* to open ACL.
**			NULL, if ACL not found.
*/
PUBLIC FILE *HTAA_openAcl PARAMS((CONST char * pathname));


/* PUBLIC						HTAA_closeAcl()
**			CLOSE ACL FILE
** ON ENTRY:
**	acl_file is Access Control List file to close.
**
** ON EXIT:
**	returns	nothing.
*/
PUBLIC void HTAA_closeAcl PARAMS((FILE * acl_file));

Getting ACL Entry

/* PUBLIC						HTAA_getAclEntry()
**			CONSULT THE ACCESS CONTROL LIST AND
**			GIVE A LIST OF GROUPS (AND USERS)
**			AUTHORIZED TO ACCESS A GIVEN FILE
** ON ENTRY:
**	acl_file	is an open ACL file.
**	pathname	is the absolute pathname of
**			the file to be accessed.
**	method		is the method for which access is wanted.
**
** ALC FILE FORMAT:
**
**	template : method, method, ... : group@addr, user, group, ...
**
**	The last item is in fact in exactly the same format as
**	group definition in group file, i.e. everything that
**	follows the 'groupname:' part,
**	e.g.
**		user, group, user@address, group@address,
**		(user,group,...)@(address, address, ...)
**
** ON EXIT:
**	returns		NULL, if there is no entry for the file in the ACL,
**			or ACL doesn't exist.
**			If there is, a GroupDef object containing the
**			group and user names allowed to access the file
**			is returned (this is automatically freed
**			next time this function is called).
** IMPORTANT:
**	Returns the first entry with matching template and
**	method. This function should be called multiple times
**	to process all the valid entries (until it returns NULL).
**	This is because there can be multiple entries like:
**
**		*.html : get,put : ari,timbl,robert
**		*.html : get	 : jim,james,jonathan,jojo
**
** NOTE:
**	The returned group definition may well contain references
**	to groups defined in group file. Therefore these references
**	must be resolved according to that rule file by function
**	HTAA_resolveGroupReferences() (group file is read in by
**	HTAA_readGroupFile()) and after that access authorization
**	can be checked with function HTAA_userAndInetGroup().
*/
PUBLIC GroupDef *HTAA_getAclEntry PARAMS((FILE *	acl_file,
					  CONST char *	pathname,
					  HTMethod	method));

PUBLIC HTACL * HTAA_getFullAclEntry PARAMS((FILE *	acl_file,
					    CONST char*	pathname));

#endif /* not HTACL_H */
End of file HTACL.h.