Delegation
The concept of delegation has been removed from Sun WebServer 2.0. All the access controls that were previously located within delegated files must be relocated into the single access.conf for a particular site.
Converting a delegated ACL
-
Given the following Sun WebServer 1.0 ACL and delegated file:
-
ACL in /etc/http/access.acl:
url /statistics { delegate /var/http/acls/.admin_acl } -
/var/http/acls/.admin_acl file:
realm admin password_file /usr/auth/admin_user group_file /usr/auth/admin_group + group stat_admins
-
These must be collapsed into a single ACL:
Note -The realm
adminmust have been created first; see the previous example.
url /statistics { realm admin + group stat_admins }
-
Converting a delegated ACL (advanced)
-
Given the following Sun WebServer 1.0 ACL and delegated file:
-
ACL in access.acl:
url /statistics { delegate /var/http/acls/.admin_acl } -
/var/http/acls/.admin_acl file (the ownership of this file is
joe:adm)
realm admins password_file /usr/auth/admin_user group_file /usr/auth/admin_group + group stat_admins
-
-
These must be collapsed into a single ACL:
url /statistics { realm admins administrators { user joe group adm } + group stat_admins }
- © 2010, Oracle Corporation and/or its affiliates