lcfgcap - display/test LCFG authorization capabilities
This documentation refers to lcfgcap version 1.0.13/usr/bin/lcfgcap [options] [user] capability
This command queries the LCFG authorization system to determine whether the specified user has the given capability. The LCFG resource profile.authorize is used to determine the authorization module. If no user is specified, the current user is assumed.
There is one required argument which is the capabilities you wish to check. You can also specify the name of the user to check, if you do not then the real user-id for the current process will be used.
Use the authorization module LCFG::Authorize, regardless of the module specified by the profile.authorize resource.
Quiet. The command prints nothing but exits with a status of 0 or 1, depending on whether the specified user has the given capability or not.
Verbose.
Will return an exit code of zero if the user has the required capabilities and an exit code of 1 otherwise. If there is a problem whilst carrying out a query then an exit code of 2 will be returned.
Requires an authorization module such as LCFG::Authorize. You may supply your own alternative module. If so it should be specified in the profile.authorize LCFG resource.
There are no known bugs in this software. Please report any problems to the author (see below for details), patches are very welcome.
Scientific5, Fedora12
Paul Anderson <dcspaul@inf.ed.ac.uk>, Simon Wilkinson <sxw@inf.ed.ac.uk>
This code is copyright of the University of Edinburgh, it can be distributed under the terms of the GPL license version 2 or greater.