Structs§
Enums§
Functions§
- bad_
priv_ msg - boot_
secs - can
- search the EnvOptions list for matching RunOptions and return the match
- can_
dir_ include - return true if the inclusion exists and ends with .ini
- can_
include_ file_ pattern - challenge_
password - read password of user via rpassword should pam require a password, and it is successful, then we set a token
- clean_
environment - clean environment aside from ~half a dozen vars
- common_
opt_ arguments - common opt arguments
- create_
token_ dir - credits
- added around easter time
- directory_
check_ ok - may we execute with this directory
- drop_
privs - set privs (just call eprivs based on ro)
- environment_
ok - may we keep environment data
- esc_
privs - reset privs (just call eprivs based on root)
- escape_
log - add a level of escape to strings when they go to the old as “ holds entities
- get_
editor - find editor for user. return /usr/bin/vi if EDITOR and VISUAL are unset
- group_
hash - turn group list into an indexed list
- group_
matches - handler_
shim - handler.authenticate without the root privs part for linux
- hostname_
ok - may we execute with this hostname
- list
- print output list of acl
- list_
dir - return dir or exact_dir
- list_
rule - return rule or exact_rule
- list_
target - return target or exact_target
- log_
action - write to syslog a standard log
- matching
- merge_
default - name_
matches - permitted_
dates_ ok - is the RunOption valid for the dates permitted in the EnvOption
- print_
may_ not - print_
usage - print the usage
- print_
version - print version string
- prng_
alpha_ num_ string - return a lump of random alpha numeric characters
- produce_
list - return EnvOptions as a vector of strings
- read_
ini - read an ini file and traverse includes
- read_
ini_ config_ file - read through an ini config file, appending EnvOptions to vec_eo hardcoded limit of 10M for confs
- read_
ini_ config_ str - reason_
ok - check reason. this happens post authorize in order to provide feedback
- regex_
build - build a regex and replace %{USER} with the user str, prefix with ^ and suffix with $
- remove_
token - remove from disk the users token
- replace_
new_ args - escape ’' within an argument escape ’ ’ within an argument
- rule_
match - runopt_
target_ gid - search_
path - if binary is not an absolute/relative path, look for it in usual places
- search_
path_ cache - return result from search cache lookup
- set_
env_ if_ not_ passed_ through - set the environment unless it is permitted to be kept and is specified
- set_
environment - set environment for helper scripts
- set_
eprivs - set privs of usr to target_uid and target_gid. return false if fails
- set_
privs - set privs of usr to target_uid and target_gid. return false if fails
- target_
group_ ok - target_
ok - token_
dir - return the directory that the token should use
- token_
path - return the path of the users token
- tty_
name - return our best guess of what the user’s tty is
- update_
token - touch the users token on disk
- valid_
token - does the user have a valid token return false if time stamp is in the future return true if token was set within 600 seconds of wall and boot time