[OpenAFS] python interfaces

[Russ Allbery]

David Bear <David.Bear@asu.edu> writes:

> Finally, I've been trying to conceptualize a better way to 'get a
> handle' on access priveledges. Over the years I find there are pts
> groups or old acls that I just forgot about. Just yesterday a terminated
> employee snuck through on pts group that I forget to remove her from and
> cause a little trouble. So I was wondering if there are any 'normalized
> view' of afs acls -- something like a relational data base view that
> could be used to better represent access permissions over a directory
> set.

You'd have to build it yourself with a recursive fs, I think.  I don't
know of a tool that anyone has built for this.

> finally finally (sorry for the kicten soup), is there a way to enumerate
> all the groups a single afs id has membership in?

pts membership <user>

-- 
Russ Allbery (rra@stanford.edu)             <http://www.eyrie.org/~eagle/>