IETF ACM Model (NACM)

The NACM handler provides the required access control APIs within the server. More...

Collaboration diagram for IETF ACM Model (NACM):

Typedefs
typedef status_t(*	agt_acm_group_cbfn_t) (const xmlChar *username, xmlChar **retgroups)
	typedef for NACM External Groups callback function More...

Functions
void	agt_acm_ietf_register_group_cbfn (agt_acm_group_cbfn_t cbfn)
	Register a get-external-groups callback function. More...

Detailed Description

The NACM handler provides the required access control APIs within the server.

Full implementation of RFC 8341.

https://tools.ietf.org/rfc/rfc8341

Typedef Documentation

agt_acm_group_cbfn_t

typedef status_t(* agt_acm_group_cbfn_t) (const xmlChar *username, xmlChar **retgroups)

typedef for NACM External Groups callback function

Get the list of group names for this username These groups are added to the usergroup cache for the session

• OK for SIL; NOT OK for SIL-SA

Parameters

	username	return the list of group names that this username is a member
[out]	retgroups	address of return malloced string *retgroups is set to a malloced string that will be parsed. It contains a whitespace delimited list of group named ' group1 group2 group3' The caller will free this string with m__free

Returns

status: if an error occurs the session will only use NACM groups

Function Documentation

agt_acm_ietf_register_group_cbfn()

void agt_acm_ietf_register_group_cbfn

(

agt_acm_group_cbfn_t

cbfn

)

Register a get-external-groups callback function.

• OK for SIL; NOT OK for SIL-SA

This will be invoked at the start of each session as the acm_cache is created for a session

Parameters

cbfn	callnack function to register