1 #!/bin/ksh -p
   2 #
   3 # CDDL HEADER START
   4 #
   5 # The contents of this file are subject to the terms of the
   6 # Common Development and Distribution License (the "License").
   7 # You may not use this file except in compliance with the License.
   8 #
   9 # You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
  10 # or http://www.opensolaris.org/os/licensing.
  11 # See the License for the specific language governing permissions
  12 # and limitations under the License.
  13 #
  14 # When distributing Covered Code, include this CDDL HEADER in each
  15 # file and include the License file at usr/src/OPENSOLARIS.LICENSE.
  16 # If applicable, add the following below this CDDL HEADER, with the
  17 # fields enclosed by brackets "[]" replaced with your own identifying
  18 # information: Portions Copyright [yyyy] [name of copyright owner]
  19 #
  20 # CDDL HEADER END
  21 #
  22 
  23 #
  24 # Copyright 2008 Sun Microsystems, Inc.  All rights reserved.
  25 # Use is subject to license terms.
  26 #
  27 
  28 #
  29 # Copyright (c) 2013 by Delphix. All rights reserved.
  30 #
  31 
  32 . $STF_SUITE/tests/functional/delegate/delegate_common.kshlib
  33 
  34 #
  35 # DESCRIPTION:
  36 # <user|group> argument is interpreted as a user if possible, then as a group as
  37 # possible.
  38 #
  39 # STRATEGY:
  40 #       1. Create user $STAFF_GROUP
  41 #       2. Delegate permissions to $STAFF_GROUP
  42 #       3. Verify user $STAFF_GROUP has the permissions.
  43 #       4. Delete user $STAFF_GROUP and allow the permission to $STAFF_GROUP
  44 #       5. Verify $STAFF_GROUP is interpreted as group.
  45 #
  46 
  47 verify_runnable "both"
  48 
  49 function cleanup
  50 {
  51         if $ID $STAFF_GROUP > /dev/null 2>&1; then
  52                 log_must del_user $STAFF_GROUP
  53         fi
  54 
  55         restore_root_datasets
  56 }
  57 
  58 log_assert "<user|group> is interpreted as user if possible, then as group."
  59 log_onexit cleanup
  60 
  61 eval set -A dataset $DATASETS
  62 typeset perms="snapshot,reservation,compression,checksum,send,userprop"
  63 
  64 log_must $USERADD $STAFF_GROUP
  65 for dtst in $DATASETS ; do
  66         log_must $ZFS allow $STAFF_GROUP $perms $dtst
  67         log_must verify_perm $dtst $perms $STAFF_GROUP
  68         log_must verify_noperm $dtst $perms $STAFF1 $STAFF2
  69 done
  70 
  71 log_must restore_root_datasets
  72 
  73 log_must del_user $STAFF_GROUP
  74 for dtst in $datasets ; do
  75         log_must $ZFS allow $STAFF_GROUP $perms $dtst
  76         log_must verify_perm $dtst $perms $STAFF1 $STAFF2
  77 done
  78 
  79 log_pass "<user|group> is interpreted as user if possible, then as group passed."