getusraclattr, nextusracl, or putusraclattr Subroutine

AIX Version 4.3 Base Operating System and Extensions Technical Reference, Volume 1

getusraclattr, nextusracl or putusraclattr Subroutine

Purpose

Accesses the user screen information in the SMIT ACL database.

Library

Security Library (libc.a)

Syntax

#include <usersec.h>

int getusraclattr(User, Attribute, Value, Type)
char *User;
char *Attribute;
void *Value;
int Type;

char *nextusracl(void)

int putusraclattr(User, Attribute, Value, Type)
char *User;
char *Attribute;
void *Value;
int Type;

Description

The getusraclattr subroutine reads a specified user attribute from the SMIT ACL database. If the database is not already open, this subroutine does an implicit open for reading.

Similarly, the putusraclattr subroutine writes a specified attribute into the user SMIT ACL database. If the database is not already open, this subroutine does an implicit open for reading and writing. Data changed by the putusraclattr subroutine must be explicitly committed by calling the putusraclattr subroutine with a Type parameter specifying SEC_COMMIT. Until all the data is committed, only the getusraclattr subroutine within the process returns written data.

The nextusracl subroutine returns the next user in a linear search of the user SMIT ACL database. The consistency of consecutive searches depends upon the underlying storage-access mechanism and is not guaranteed by this subroutine.

The setacldb and endacldb subroutines should be used to open and close the database.

Parameters

Attribute	Specifies which attribute is read. The following possible attributes are defined in the usersec.h file: S_SCREENS String of SMIT screens. The attribute type is SEC_LIST. S_ACLMODE String specifying the SMIT ACL database search scope. The attribute type is SEC_CHAR. S_FUNCMODE String specifying the databases to be searched. The attribute type is SEC_CHAR.
Type	Specifies the type of attribute expected. Valid types are defined in the usersec.h file and include: SEC_CHAR The format of the attribute is a null-terminated character string. For the getusraclattr subroutine, the user should supply a pointer to a defined character pointer variable. For the putusraclattr subroutine, the user should supply a character pointer. SEC_LIST The format of the attribute is a series of concatenated strings, each null-terminated. The last string in the series must be an empty (zero character count) string. For the getusraclattr subroutine, the user should supply a pointer to a defined character pointer variable. For the putusraclattr subroutine, the user should supply a character pointer. SEC_COMMIT For the putusraclattr subroutine, this value specified by itself indicates that changes to the named user are to be committed to permanent storage. The Attribute and Value parameters are ignored. If no user is specified, the changes to all modified users are committed to permanent storage. SEC_DELETE The corresponding attribute is deleted from the user SMIT ACL database. SEC_NEW Updates the user SMIT ACL database file with the new user name when using the putusraclattr subroutine.
Value	Specifies a buffer, a pointer to a buffer, or a pointer to a pointer depending on the Attribute and Type parameters. See the Type parameter for more details.

Return Values

If successful, the getusraclattr returns 0. Otherwise, a value of -1 is returned and the errno global variable is set to indicate the error.

Error Codes

Possible return codes are:

EACCES	Access permission is denied for the data request.
ENOENT	The specified User parameter does not exist or the attribute is not defined for this user.
ENOATTR	The specified user attribute does not exist for this user.
EINVAL	The Attribute parameter does not contain one of the defined attributes or null.
EINVAL	The Value parameter does not point to a valid buffer or to valid data for this type of attribute.
EPERM	Operation is not permitted.

Related Information

The getgrpaclattr, nextgrpacl, or putgrpaclattr subroutine, setacldb, or endacldb subroutine.