Software Distributor Administrator Guide (September 2010)
3. Can you modify an existing product?
Superuser Yes
Other Yes, if the ACL for the existing product grants you write
permission, i.e. permission to overwrite/change the contents of the
product. If you are denied authorization to change an existing
product, swpackage generates an error message and excludes the
product from the session.
If you are denied insert and write permission for all selected
products, swpackage terminates with an error.
4. Can you change the depot-level attributes?
Superuser Yes
Other Yes, if the depot is a new one and you passed check #1 above or if
the ACL for an existing depot grants you write permission, i.e.
permission to write/change the contents of the depot (same as #2
above).
If you are denied authorization to change an existing depot, and
if the PSF specifies some depot-level attributes, then swpackage
produces a warning message and does not change the depot
attributes.
10.6.4.1 ACL Creation
When swpackage creates a new depot or a new product, it also creates an ACL for it:
New depot
swpackage creates an ACL for the depot and a template ACL for
all the products that will be packaged into it.
The depot ACL is generated from the host’s
global_soc_template ACL (that is, the template ACL established
for new depots and new root file systems).
The depot’s product_template ACL is generated from the host’s
global_product_template ACL (that is, the host’s template
ACL for new products).
The user running swpackage is established as the owner of the new
depot and is granted permissions as defined in the depot ACL (which
come from the global_soc_template).
New product
swpackage creates an ACL for the product; the ACL is generated
from the depot’s product_template ACL.
ACL creation can be disabled by setting the create_target_acls
command option to false.
10.6 Packaging Tasks and Examples 263