Netgroup support in Policy Kit would work similarly to unix groups. Where one might use the identity "unix-group:foo", the netgroup version would allow "netgroup:foo".
Netgroup entries only acknowledge the username portion of the netgroup (hostname, username, domainname) triple.
An example /etc/netgroup file would look like:
somegroup (-,john,) (-,jane,) othergroup
othergroup (-,mary,) (-,bill,)
Which puts "unix-user:mary" in netgroups "somegroup" and "othergroup".
I'll be submitting a patch in the next week or two to add this functionality. The only problem is I'll have to re-factor local authority and identity code to remove the need for getgrouplist which doesn't exist for netgroups (see get_groups_for_user in polkitbackendlocalauthority.c).
The new tests I'm adding for bug #43608 cover all the code I'm re-factoring.
Same as: /bugs.launchpad .net/ubuntu/ +source/ policykit- 1/+bug/ 724052
https:/
Netgroup support in Policy Kit would work similarly to unix groups. Where one might use the identity "unix-group:foo", the netgroup version would allow "netgroup:foo".
Netgroup entries only acknowledge the username portion of the netgroup (hostname, username, domainname) triple.
An example /etc/netgroup file would look like:
somegroup (-,john,) (-,jane,) othergroup
othergroup (-,mary,) (-,bill,)
Which puts "unix-user:mary" in netgroups "somegroup" and "othergroup".
I'll be submitting a patch in the next week or two to add this functionality. The only problem is I'll have to re-factor local authority and identity code to remove the need for getgrouplist which doesn't exist for netgroups (see get_groups_for_user in polkitbackendlo calauthority. c).
The new tests I'm adding for bug #43608 cover all the code I'm re-factoring.