X-Git-Url: https://git.tokkee.org/?a=blobdiff_plain;f=plugins%2Fadmin%2Fgroups%2Facl_definition.inc;h=f9319b0cc99f34985acc94bfe62422c30145b5f9;hb=28a907d9f00d28cbb058ac1ac319b1b22cff33ea;hp=638bd208402d3ca9f6ba73a004d2a2d4741ffec8;hpb=619afb691a2cee0eaf0408269f86d5a17361b3d6;p=gosa.git diff --git a/plugins/admin/groups/acl_definition.inc b/plugins/admin/groups/acl_definition.inc index 638bd2084..f9319b0cc 100644 --- a/plugins/admin/groups/acl_definition.inc +++ b/plugins/admin/groups/acl_definition.inc @@ -7,12 +7,29 @@ $ACLD['application']=array("cn" => "LDAP name", "description" => "Description", "gosaApplicationExecute" => "Execute", "gosaApplicationFlags" => "Modify flags", + "gotoLogonScript" => "Script", + "gosaApplicationIcon" => "Icon", "gosaApplicationName" => "Visible name"); -$ACLD['department']= array("businessCategory", +$ACLD['mimetype']=array("cn" => "LDAP name", + "create" => "Create", + "delete" => "Delete", + "description" => "Description", + "gotoMimeIcon" => "Icon", + "gotoMimeApplication" => "Modify flags", + "gotoMimeEmbeddedApplication" => "Embedded applications", + "gotoMimeLeftClickAction" => "Left click actions", + "gotoMimeFilePattern" => "File patterns", + "gotoMimeGroup" => "Mime group", + "description" => "Description"); +$ACLD['department']= array( + "businessCategory", "description", "facsimileTelephoneNumber", "l", "ou", + "create", + "delete", + "base", "postalAddress", "st", "telephoneNumber"); @@ -21,7 +38,6 @@ $ACLD['gofax']= array("cn", "description", "facsimileAlternateTelephoneNumber", "facsimileTelephoneNumber", - "faxReport", "goFaxBlocklist", "goFaxDeliveryMode", "goFaxFormat", @@ -33,18 +49,24 @@ $ACLD['gofax']= array("cn", "gosaMailForwardingAddress"); $ACLD['blocklists']= array("cn", "create", + "delete", "description", "goFaxBlocklist"); +$ACLD['ogroup']= array("ogroup","create","delete","cn", "description", "gosaGroupObjects","base"); $ACLD['group']= array("cn", + "memberUid", "create", "delete", "description", "force_gid", "password", "gidNumber"); -$ACLD['appgroup']= array(); +$ACLD['appgroup']= array("create"); $ACLD['all']= array(); -$ACLD['mailgroup']= array("default_permission", +$ACLD['acl']= array('acl'); +$ACLD['mailgroup']= array( + "create", + "default_permission", "imap_perms", "member_permissions", "mail", @@ -84,6 +106,101 @@ $ACLD['terminal']= array("gotoAdaptPath", "gotoXdmcpServer", "login", "password"); +$ACLD['workgeneric']= array("base", + "gotoMode", + "gotoSyslogServer", + "gotoNtpServer", + "FAIstate", + "action", + "password"); +$ACLD['workstartup']= array("gotoBootKernel", + "gotoKernelParameters", + "FAIdebianMirror", + "FAIclass", + "gotoModules", + "gotoShare"); +$ACLD['workservice']= array("gotoXKbModel", + "gotoXKbLayout", + "gotoXKbVariant", + "gotoXMouseType", + "gotoXMouseport", + "gotoXResolution", + "gotoXColordepth", + "AutoSync", + "gotoXHsync", + "gotoVHsync", + "gotoScannerEnable", + "gotoXDriver"); +$ACLD['printgeneric']= array("cn", + "base", + "labeledURI", + "gotoPrinterPPD", + "gotoUserPrinter", + "macAddress", + "gotoUserAdminPrinter", + "gotoGroupAdminPrinter", + "gotoUserPrinter", + "gotoAdminPrinter", + "description"); +$ACLD['servgeneric']= array("cn", + "base", + "create", + "gotoMode", + "description"); +$ACLD['servdb']= array("goKrbServer", + "goKrbRealm", + "goKrbAdmin", + "goFaxServer", + "goFaxAdmin", + "goFaxPassword", + "goFonServer", + "goFonAdmin", + "goFonPassword", + "goFonCountryCode", + "goFonAreaCode", + "goImapServer", + "goImapPassword", + "goImapName", + "goImapConnect", + "goImapAdmin", + "goImapPassword", + "goImapSievePort", + "goLogDBServer", + "goLogAdmin", + "goLogPassword", + "goGlpiServer", + "goGlpiAdmin", + "goGlpiPassword", + "goGlpiDatabase", + "goKrbPassword"); +$ACLD['servkolab']= array("postfix_mydomain", + "postfix_mydestination", + "cyrus_admins", + "cyrus_pop3s", + "cyrus_imap", + "cyrus_imaps", + "cyrus_sieve", + "proftpd_ftp", + "apache_http", + "postfix_enable_virus_scan", + "apache_allow_unauthenticated_fb", + "postfix_mynetworks", + "postfix_relayhost", + "postfix_allow_unauthenticated", + "cyrus_pop3"); +$ACLD['servservice']= array("goExportEntry", + "goExportEntry", + "goNtpServer", + "goLdapBase", + "goTerminalServer", + "goXdmcpIsEnabled", + "goSyslogServer", + "goCupsServer", + "goMailServer", + "goLdapServer"); +$ACLD['servrepository']= array("base", + "gotoMode", + "description"); $ACLD['user']= array("academicTitle", "create", "delete", @@ -116,6 +233,7 @@ $ACLD['user']= array("academicTitle", "personalTitle", "postalAddress", "postalCode", + "passwordStorage", "publicVisible", "role", "roomNumber", @@ -125,9 +243,11 @@ $ACLD['user']= array("academicTitle", "telephoneNumber", "uid", "vocation"); -$ACLD['mail']= array("custom_sieve", +$ACLD['mailAccount']= array( + "create", + "custom_sieve", "gosaMailAlternateAddress", - "gosaMailDeliveryMode", +# "gosaMailDeliveryMode", "gosaMailForwardingAddress", "gosaMailMaxSize", "gosaMailQuota", @@ -135,9 +255,12 @@ $ACLD['mail']= array("custom_sieve", "gosaSpamMailbox", "gosaSpamSortLevel", "gosaVacationMessage", + "drop_own_mails", "mail", "only_local"); -$ACLD['posix']= array("allowedHosts", +$ACLD['posixAccount']= + array( "create", + "allowedHosts", "force_ids", "gidNumber", "gosaDefaultLanguage", @@ -156,76 +279,69 @@ $ACLD['posix']= array("allowedHosts", "shadowMin", "shadowWarning", "uidNumber"); -$ACLD['samba']= - array("acctFlags" => "samba2:acctFlags", +$ACLD['sambaAccount']= + array( + "create", + "acctFlags" => "samba2:acctFlags", "allow_pwchange" => "samba2:allow_pwchange", "homeDrive" => "samba2:homeDrive", "no_password_required" => "samba2:no_password_required", "profilePath" => "samba2:profilePath", "scriptPath" => "samba2:scriptPath", "smbHome" => "samba2:smbHome", - "temporary_disable" => "samba2:temporary_disable", - "sambaHomePath" ,//=> _("Home path"), - "sambaHomeDrive" ,//=> _("Home drive"), - "sambaDomainName" ,//=> _("Samba domain name"), - "sambaLogonScript" ,//=> _("Logon script"), - "sambaProfilePath" ,//=> _("Profile path"), + "temporary_disable", + "sambaHomePath" ,//=> _("Home path"), + "sambaHomeDrive" ,//=> _("Home drive"), + "sambaDomainName" ,//=> _("Samba domain name"), + "sambaLogonScript" ,//=> _("Logon script"), + "sambaProfilePath" ,//=> _("Profile path"), - "sambaLogonTime",// => _("Limit Logon Time"), - "sambaLogoffTime",// => _("Limit Logoff Time"), - "sambaKickoffTime",// => _("Account expiry"), - "sambaPwdCanChange",// => _("Can change password"), - "sambaPwdMustChange",//=> _("Password expiry"), - "allow_pwchange" ,//=> _("Allow password change"), - "no_password_required",// => _("Login from windows client requires no password"), - "temporary_disable",// => _("Lock account"), - "sambaUserWorkstation",//=> _("Allow connection from these workstations only"), + "sambaLogonHours", - "connectclientdrives",// => _("Connect client drives at logon"), - "connectclientprinters",// => _("Connect client printers at logon"), - "defaultprinter",// => _("Default to main client printer"), + "sambaLogonTime",// => _("Limit Logon Time"), + "sambaLogoffTime",// => _("Limit Logoff Time"), + "sambaKickoffTime",// => _("Account expiry"), + "sambaPwdCanChange",// => _("Can change password"), + "sambaPwdMustChange",//=> _("Password expiry"), + "allow_pwchange" ,//=> _("Allow password change"), + "no_password_required",// => _("Login from windows client requires no password"), + "temporary_disable",// => _("Lock account"), + "sambaUserWorkstation",//=> _("Allow connection from these workstations only"), - "shadow",// => _("Shadowing"), - "brokenconn",// => _("On broken or timed out"), - "reconn",// => _("Reconnect if disconnected"), + "connectclientdrives",// => _("Connect client drives at logon"), + "connectclientprinters",// => _("Connect client printers at logon"), + "defaultprinter",// => _("Default to main client printer"), - "inherit",// => _("Inherit client config") - "tslogin",// => _("Inherit client config") - - "CtxWFHomeDir", - "CtxWFHomeDirDrive", - "CtxWFProfilePath", + "shadow",// => _("Shadowing"), + "brokenconn",// => _("On broken or timed out"), + "reconn",// => _("Reconnect if disconnected"), - "CtxMaxConnectionTime", - "CtxMaxDisconnectionTime", - "CtxMaxIdleTime", + "inherit",// => _("Inherit client config") + "tslogin",// => _("Inherit client config") - "CtxInitialProgram", - "CtxWorkDirectory" - - ) ; + "CtxWFHomeDir", + "CtxWFHomeDirDrive", + "CtxWFProfilePath", + "CtxMaxConnectionTime", + "CtxMaxDisconnectionTime", + "CtxMaxIdleTime", -$ACLD['proxyAccount']= array( - "proxyAccount", - "gosaProxyAcctFlags", - "gosaProxyQuota", - "gosaProxyWorkingStart", - "gosaProxyWorkingStop"); + "CtxInitialProgram", + "CtxWorkDirectory" + ) ; -$ACLD['pureftpdAccount']= array( - "pureftpd", - "FTPUploadBandwidth", - "FTPStatus", - "FTPDownloadBandwidth", - "FTPQuotaFiles", - "FTPQuotaMBytes", - "FTPUploadRatio", - "FTPDownloadRatio"); -$ACLD['goFonConference']= array( +$ACLD['netatalk']= array( + "create", + "netatalkShare", + "netatalkUserHomepath"); + + +$ACLD['conference']= array( "goFonConference", "goFonPIN", "base", + "delete", "cn", "description", "telephoneNumber", @@ -242,7 +358,8 @@ $ACLD['goFonConference']= array( "goFonConferenceOption_c", "goFonConferenceOwner"); -$ACLD['gotoEnvironment']=array( +$ACLD['environment']=array( + "create", "gotoPrinter", "gotoEnvironment", "gotoShare", @@ -252,34 +369,52 @@ $ACLD['gotoEnvironment']=array( "gotoLogonScript", "gotoKioskProfile", "gotoProfileQuota", - "gotoHotplugDevice" + "gotoHotplugDevice", + "gotoShareAppleMounts" ); +/* Connectivity accounts */ +$ACLD['phpgwAccount'] =array("create"); +$ACLD['webdavAccount'] =array("create"); +$ACLD['intranetAccount'] =array("create"); +$ACLD['phpscheduleitAccount'] =array("create"); +$ACLD['pptpAccount'] =array("create"); +$ACLD['proxyAccount'] =array("create","proxyAccount","gosaProxyAcctFlags","gosaProxyQuota", + "gosaProxyWorkingStart","gosaProxyWorkingStop"); +$ACLD['pureftpdAccount'] =array("create","FTPUploadBandwidth","FTPStatus", + "FTPDownloadBandwidth","FTPQuotaFiles","FTPQuotaMBytes", + "FTPUploadRatio","FTPDownloadRatio"); +$ACLD['kolabAccount'] =array("create","kolabFreeBusyFuture", "unrestrictedMailSize", "calFBURL","kolabDelegate"); +$ACLD['opengwAccount'] =array("create" =>"Enable/disable account", + "LocationTeam" =>"Location team", + "TemplateUser" =>"Template user", + "is_locked" =>"Lock status", + "TeamIDs" =>"Teams"); -$ACLD['phpgwAccount'] =array("phpgwAccount" ); -$ACLD['webdavAccount'] =array("webdavAccount" ); -$ACLD['intranetAccount'] =array("intranetAccount" ); -$ACLD['pptpAccount'] =array("gosapptp" ); -$ACLD['phpscheduleitAccount'] =array("gosaphpscheduleit" ); -$ACLD['phoneAccount'] = array("goFonDeliveryMode", +$ACLD['systems'] =array("systems" ); +$ACLD['FAIclass'] =array("FAIclass" ); + +$ACLD['phoneAccount'] = array("create","goFonDeliveryMode","goFonHomeServer", "goFonHardware","goFonPIN","goFonVoicemailPIN","telephoneNumber", "goFonMacro"); -$ACLD['nagiosAccount'] = array("NagiosAlias" -, "NagiosPager" -, "NagiosMail" -, "HostNotificationPeriod" -, "ServiceNotificationPeriod" -, "HostNotificationCommands" -, "ServiceNotificationCommands" -, "HostNotificationOptions" -, "ServiceNotificationOptions" -, "AuthorizedAllHosts" -, "AuthorizedAllServices" -, "AuthorizedSystemCommands" -, "AuthorizedAllHostCommands" -, "AuthorizedAllServiceCommands" -, "AuthorizedConfigurationInformation" -, "AuthorizedSystemInformation"); +$ACLD['nagiosAccount'] = array( + "create", + "NagiosAlias", + "NagiosPager", + "NagiosMail", + "HostNotificationPeriod", + "ServiceNotificationPeriod", + "HostNotificationCommands", + "ServiceNotificationCommands", + "HostNotificationOptions", + "ServiceNotificationOptions", + "AuthorizedAllHosts", + "AuthorizedAllServices", + "AuthorizedSystemCommands", + "AuthorizedAllHostCommands", + "AuthorizedAllServiceCommands", + "AuthorizedConfigurationInformation", + "AuthorizedSystemInformation"); $ACLD['addressbook']= array("addressbook","add", "delete", "sn", "givenName", "mail", "title", @@ -289,42 +424,21 @@ $ACLD['addressbook']= array("addressbook","add", "delete", "facsimileTelephoneNumber", "pager"); $ACLD['fonreport'] = array("fonreport", "src", "dst", "channel", "lastapp", "disposition", "duration"); $ACLD['faxreport'] = array("faxreport"); +$ACLD['connectivity']= array("connectivity"); $ACLD['logview'] = array("logview"); $ACLD['mailqueue'] = array("mailqueue","unhold_all","hold_all","del_all","requeue_all","unhold","hold","del","requeue","query","header"); $ACLD['ldapmanager']= array("ldapmanager","import","export","xlsexport","csvimport"); -$ACLD['conference'] = array( - "conference", - "cn", - "base", - "description", - "goFonPIN", - "goFonConferenceOption_P", - "goFonConferenceOption_r", - "goFonConferenceOption_M", - "goFonConferenceOption_s", - "goFonConferenceOption_i", - "goFonConferenceOption_c", - "goFonConferenceOption_D", - "goFonConferenceOptionFormat", - "goFonConferenceOptionLifetime", - "telephoneNumber", - "goFonConferenceOwner"); - - $ACLD['FAIclass'] = array( - "FAIclass" => "FAIclass" -/* ,"FAIhook-View" => "FAIhook : View", - "FAIhook-Create" => "FAIhook : Create", - "FAIhook-Delete" => "FAIhook : Delete", - "FAIhook-cn" => "FAIhook : cn", - "FAIhook-description" => "FAIhook : description", - "FAIhookEntry-View" => "FAIhookEntry : View", - "FAIhookEntry-Create" => "FAIhookEntry : Create", - "FAIhookEntry-Delete" => "FAIhookEntry : Delete", - "FAIhookEntry-cn" => "FAIhookEntry : cn", - "FAIhookEntry-description" => "FAIhookEntry : description"*/ - - ); + // Allow displaying of FAI menu element + "FAIclass" => "FAI management enabled"); + +$ACLD['phonequeue'] = array( "create","goFonTimeOut","goFonMaxLen","goFonAnnounceFrequency","goFonDialOption_t","goFonDialOption_T", + "goFonDialOption_h","goFonDialOption_r","cn","goFonHomeServer", + "goFonDialOption_H","goFonMusiconHold","goFonWelcomeMusic","goFonQueueReportHold","goFonQueueYouAreNext", + "goFonQueueThereAre","goFonQueueCallsWaiting","goFonQueueThankYou","goFonQueueMinutes","goFonQueueSeconds","goFonQueueLessThan", + "telephoneNumber","goFonQueueLanguage","goFonQueueStrategy","goFonQueueAnnounceHoldtime","goFonQueueAnnounce","goFonDialOption","goFonQueueRetry"); +$ACLD['goFonMacro'] =array("goFonMacro","edit","delete"); +$ACLD['mailogroup'] = array("create"); ?>