PreviousNext

sec_acl_bind_auth(3sec)

Returns an opaque handle to an object's ACL

Synopsis

#include <dce/daclif.h>

void sec_acl_bind_auth(
unsigned char *entry_name,
boolean32 bind_to_entry,
sec_acl_bind_auth_info_t *auth_info,
error_status_t *status);

Parameters

Input

entry_name
The name of the target object. Subsequent access control list (ACL) operations using the returned handle will affect the ACL of this object.

bind_to_entry
A bind indicator, for use when entry_name identifies both an entry in the global namespace and an actual object. A TRUE value binds the handle to the entry in the namespace, while FALSE binds the handle to the actual object.

auth_info
A pointer to the sec_acl_bind_auth_info_t structure that identifies the authentication protocol, protection level, and authorization protocol to use in establishing the binding. (See the rpc_binding_set_auth_info(3rpc) reference page for more information on authorization.) If this argument is not supplied, default authorization information is used as it is in the sec_acl_bind( ) routine.

Output

h
A pointer to the sec_acl_handle_t variable to receive the returned ACL handle. The other sec_acl routines use this handle to refer to the ACL for the object specified with entry_name.

status
A pointer to the completion status. On successful completion, the routine returns error_status_ok. Otherwise, it returns an error.

Description
The sec_acl_bind_auth( ) routine returns a handle bound to the indicated object's ACL. This routine and the sec_acl_bind( ) routine provide the handle that identifies the ACL on which other sec_acl routines operate. Use this routine instead of the sec_acl_bind( ) routine to specify authorization information explicitly instead of using the default authorization information.

Note
If the specified name is both an actual object and an entry in the global namespace, there are two ACLs associated with it. For example, in addition to the ACL normally attached to file system objects, the root directory of a file system has an ACL corresponding to its entry in the global namespace. This controls access by outsiders to the entire file system, whereas the resident ACL for the root directory only controls access to the directory and, by inheritance, its subdirectories. The ambiguity must be resolved with the bind_to_entry parameter.

Files

/usr/include/dce/daclif.idl
The idl file from which dce/daclif.h was derived.

Errors

The following describes a partial list of errors that might be returned. Refer to the OSF DCE Problem Determination Guide for complete descriptions of all error messages.

sec_acl_object_not_found
The requested object could not be found.

sec_acl_no_acl_found
There is no ACL associated with the specified object.

error_status_ok
The call was successful.

Related Information
Functions:

sec_intro(3sec)

sec_acl_bind(3sec)