osx-acl
Tool and Ruby Library for managing ACLs on OS X
The acl_tool can be used to report on and remove orphaned or user-level entries.
Installation
Add this line to your application's Gemfile:
gem 'osx-acl'
And then execute:
$ bundle
Or install it yourself as:
$ gem install osx-acl
Building
rake build
fpm -s gem -t osxpkg --osxpkg-identifier-prefix org.rubygems.kcrawford
pkg/osx-acl-1.x.gem
Usage
From the acl_tool
Usage: /usr/bin/acl_tool [OPTIONS] path
Options
--dry-run outputs what would be done without modifying ACLs
--exclude x,y,z users to exclude from --remove-user-entries
--remove-orphans removes orphaned acl entries
--remove-user-entries removes user acl entries
--report report existing ACLs
--version outputs version information for this tool
--help outputs help information for this tool
From ruby
>> require 'acl'
=> true
>> acl = OSX::ACL.of("tmp")
=> #<OSX::ACL:0x007f92eaabc578 @path="tmp">
>> acl.entries
=> [#<OSX::ACL::Entry:0x007f92eaaf7510 @components=["user", "FFFFEEEE-DDDD-CCCC-BBBB-AAAA00000046", "_www", "70", "allow", "read"]>]
>> ace = acl.entries.first
=> #<OSX::ACL::Entry:0x007f92eaaf7510 @components=["user", "FFFFEEEE-DDDD-CCCC-BBBB-AAAA00000046", "_www", "70", "allow", "read"]>
>> ace.assignment
=> #<OSX::ACL::Assignment:0x007f92ea2a0060 @type="user", @uuid="FFFFEEEE-DDDD-CCCC-BBBB-AAAA00000046", @name="_www", @id="70">
>> ace.assignment.type
=> "user"
>> ace.assignment.name
=> "_www"
>> ace.rules
=> ["allow"]
>> ace.permissions
=> ["read"]
>> acl.remove_entry_at_index(0)
chmod -a# 0 tmp # user:FFFFEEEE-DDDD-CCCC-BBBB-AAAA00000046:_www:70:allow:read
=> true
Contributing
- Fork it ( https://github.com/[my-github-username]/osx-acl/fork )
- Create your feature branch (
git checkout -b my-new-feature) - Commit your changes (
git commit -am 'Add some feature') - Push to the branch (
git push origin my-new-feature) - Create a new Pull Request