glite-catalog-chkperm

glite-catalog-chkperm — Checks if the calling user has the requested privileges

Synopsis

glite-catalog-chkperm [ -h ] [ -q ] [ -s SERVICE ] [ -V ] [ -v ] [ -r ] MODE LFN...

DESCRIPTION

glite-catalog-chkperm is a command-line tool for checking permissions on files and directories in the catalog.

MODE is a combination of the letters 'pdrwlxgs' specifying the requested permission; see glite-catalog-chmod(1) for their meaning.

The exit code of the command will be 0 if the calling user has all the requested permissions for every files and/or directories matching the command line. The exit code will be non-0 if the calling user does not have enough permissions to one or more files/directories.

OPTIONS

-h

Print a short help message on parameters and usage, and exit.

-q

Quiet operation.

-s SERVICE

Specifies the service endpoint to use. If SERVICE starts with http://, https:// or httpg://, then it is taken as a direct service endpoint URL. Otherwise SERVICE is taken as a service instance name and Service Discovery is invoked to look up the endpoint.

If this option is not specified, Service Discovery will be invoked and the first available catalog will be used. If the Service Discovery fails, the program will exit with an error.

Note

If this option is not specified, only services with a known good status will be returned by Service Discovery. However if you explicitely specify a service name or an endpoint, the tool will try to use it regardless of its registered status.

Note

If you specify an HTTP URL with an empty host name, the tool will dump the SOAP requests to the standard output and will read the SOAP reply from stdin.

-v

Increases the verbosity level.

-V

Print the version number and exit.

-r

Check the permissions recursively.

MODE

Permissions to check for.

LFN

Name of the files and/or directories to test. The following URI formats are recognized:

LFN - Logical File Name. It can be either <path> or lfn://<path>. <path> must be absolute and must start with a slash (/). <path> may contain wildcards (? meaning any character and * meaning any string). Wildcards may appear at any part of the path, so you can specify constructs like /*/*/foo meaning every file named foo in any subdirecory two levels below the root directory.

GUID - Globally Unique Identifier. It must be given in the form of guid://<GUID>. The LFN belonging to the GUID will be looked up in the catalog and used for subsequent operations. GUID must have the form XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX, where every X means a hexadecimal digit.

SURL - Storage URL. This is an URL of the form srm://<path>. The tool will look up the LFN for which the SURL is registered as a replica and will use that LFN for subsequent operations.

ENVIRONMENT VARIABLES

GLITE_SD_FIREMAN_TYPE

Specifies the type of the Fireman catlog service to use during service discovery. The default value is org.glite.FiremanCatalog.

GLITE_SD_SEINDEX_TYPE

Specifies the type of the Storage Element Index service to use during service discovery. The default value is org.glite.SEIndex.

GLITE_SD_METADATA_TYPE

Specifies the type of the Metadata service to use during service discovery. The default value is org.glite.Metadata.

SEE ALSO

glite-catalog-chmod(1), glite-catalog-getacl(1), glite-catalog-ls(1)