1.\" Copyright (c) 1991, 2008 Ollivier Robert 2.\" All rights reserved. 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted under the GNU General Public Licence. 6.\" Look into the COPYING file. 7.\" 8.\" @(#) $Id$ 9.\"" 10.Dd September 25, 1994 11.Dt CALIFE.AUTH 5 12.Os 13.Sh NAME 14.Nm calife.auth 15.Nd format of the calife authorization file 16.Sh DESCRIPTION 17The 18.Nm calife.auth 19files are files consisting of newline separated records, one per user, 20containing three colon (``:'') separated fields. These fields are as 21follows: 22.Pp 23.Bl -tag -width shell -offset indent 24.It Ar name 25User's login name / 26.Ar @group / 27.Ar %group . 28.It Ar shell 29User's shell 30.It Ar user1,user2,...,usern 31List of logins allowed for the user name 32.El 33.Pp 34The 35.Ar name 36field is the login used to access the computer account. 37.Pp 38The login name must never begin with a hyphen (``-''); also, it is strongly 39suggested that neither upper-case characters or dots (``.'') be part 40of the name, as this tends to confuse mailers. No field may contain a 41colon (``:'') as this has been used historically to separate the fields 42in the user database. 43.Pp 44One alternative syntax is to use 45.Ar @group 46to specify that any user in the given 47.Ar group 48is allowed to use 49.Nm calife 50to become root. Alternative syntax using 51.Ar %group 52is also allowed just like 53.Nm sudo . 54.Pp 55The 56.Ar shell 57field is the command interpreter the user prefers. 58If there is nothing in the 59.Ar shell 60field, the user's current shell as found in the 61.Pq Pa /etc/passwd 62file is assumed. 63.Pp 64If the 65.Ar shell 66field is '*', then the account is considered as 67.Ar locked 68and access is denied. 69.Pp 70If the third parameter is specified, it is assumed to be the list of 71login the current user has the right to become. It enables use of 72.Nm calife 73for non-root only accounts. 74.Pp 75.Nm calife.auth 76is placed in 77.Ar @ETCDIR@ . 78.Sh EXAMPLE 79.Bd -literal 80# calife.auth-dist 81# 82# Format 83# 84# name[:shell_to_be_run][:user1,user2,usern] 85# 86fcb 87roberto:/bin/tcsh 88pb::guest,blaireau 89%wheel 90.Ed 91.Sh SEE ALSO 92.Xr calife 1 , 93.Xr su 1 94.Sh HISTORY 95A 96.Nm 97file format appeared in DG/UX and SunOS, written for Antenne 2 in 1991. It 98has evolved with the extra shell specification. The login list was 99reintroduced in 2.7. 100.Sh AUTHOR 101Ollivier Robert <roberto@keltia.frmug.fr.net> 102