acps.3 (2010 09)

ManualsBrandsHP ManualsSoftwareHP-UX Manpages

acps(3) acps(3)

Credential Types

ACPS_CRED_KERBTICKET

Kerberos ticket encoded in ASN.1 DER.

ACPS_CRED_PASSWORD

Cleartext password.

ACPS_CRED_PIN

Cleartext pin represented as a string.

ACPS_CRED_SAML

SAML credential assertion.

ACPS_CRED_X509CERT

Base64 ASCII encoded certiﬁcate.

Subject Attributes

ACPS_SUBATTR_ASSIGNEDROLES

Comma-delineated list of (active) roles associated with the subject.

ACPS_SUBATTR_GECOS

The GECOS information associated with the subject, as deﬁned in

the passwd ﬁle or other Name Services Switch

’passwd’ reposi-

tory.

ACPS_SUBATTR_GROUPS

Comma-delineated list of groups associated with the subject.

ACPS_SUBATTR_SHELL

The shell associated with the subject, as deﬁned in the passwd ﬁle

or other NSS

’passwd’ repository.

Operation Types

ACPS_OP_BASIC Literal encoded operation string.

ACPS_OP_DOTHEIRARCHICAL

Hierarchically encoded operation string using "." as the separator.

Object Types

ACPS_OBJ_CIM28 CIM version 2.8 object representation encoded in XML.

ACPS_OBJ_FILEPATH

File object encoded as a path.

ACPS_OBJ_GENERIC Object encoded as a generic string with no additional interpreta-

tion.

ACPS_OBJ_URI Object encoded in uri syntax.

Environment Attributes

CPS_ENVATTR_COMPARTMENT

Compartment tag associated with the access control request. The

interpretation of "associated" is left to the application.

RETURN VALUES

ACPS_ALLOW The requested access was granted. This return code is only

returned as a result of checkauth() requests.

ACPS_CONFIG_ERROR

The ACPS is conﬁgured incorrectly. This might be the result of a

syntactic error in the

acps.conf ﬁle.

ACPS_DENY The requested access was not granted. This return code is only

returned as a result of checkauth() requests.

ACPS_GEN_ERROR The requested operation failed. This is the default error code for

any operation when a more speciﬁc error code does not apply.

When this is returned as the result of a checkauth() call , the

application should not allow access to the speciﬁed resource.

ACPS_MEMORY_ERROR The requested operation failed as a result of an error allocating or

de-allocating memory.

ACPS_NEED_AUTHENTICATION The requested access was denied as the result of the lack of a

necessary credential. After the requested credential is supplied,

the application can call checkauth() again, which might result

in an allow. If the application cannot supply the necessary creden-

tial, it should treat this result as equivalent to an ACPS_DENY.

ACPS_NOINFO The repository has no access control information on the user. This

return code is only returned as a result of acpm_checkauth()

requests and is never returned to an application.

ACPS_SUCCESS The requested operation was successful. This is never returned as

the result of a checkauth() request.

2 Hewlett-Packard Company − 2 − HP-UX 11i Version 3: September 2010