[CalendarServer-users] Find group membership of users on client side
Gaurav Jain
monkeyfdude at gmail.com
Fri Dec 5 12:38:36 PST 2014
svn info
/Users/gauravjain/development/calendar/CalendarServer-5.2.2/conf/auth/accounts-test.xml
Path:
/Users/gauravjain/development/calendar/CalendarServer-5.2.2/conf/auth/accounts-test.xml
Name: accounts-test.xml
URL:
https://svn.calendarserver.org/repository/calendarserver/CalendarServer/tags/release/CalendarServer-5.2.2/conf/auth/accounts-test.xml
Repository Root: https://svn.calendarserver.org/repository/calendarserver
Repository UUID: e27351fd-9f3e-4f54-a53b-843176b1656c
Revision: 14096
Node Kind: file
Schedule: normal
Last Changed Author: wsanchez at apple.com
Last Changed Rev: 12267
Last Changed Date: 2014-01-08 13:44:52 -0800 (Wed, 08 Jan 2014)
Text Last Updated: 2014-10-21 14:50:24 -0700 (Tue, 21 Oct 2014)
Checksum: 8a080b6a50c71cb08d80a5fda62144b6b9f8beac
Relevant Group : 'group01'
Relevant User : 'cdaboo'
************************************************************************
<?xml version="1.0" encoding="utf-8"?>
<!--
Copyright (c) 2006-2014 Apple Inc. All rights reserved.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
-->
<!DOCTYPE accounts SYSTEM "accounts.dtd">
<accounts realm="Test Realm">
<user>
<uid>admin</uid>
<guid>admin</guid>
<password>admin</password>
<name>Super User</name>
<first-name>Super</first-name>
<last-name>User</last-name>
</user>
<user>
<uid>apprentice</uid>
<guid>apprentice</guid>
<password>apprentice</password>
<name>Apprentice Super User</name>
<first-name>Apprentice</first-name>
<last-name>Super User</last-name>
</user>
<user>
<uid>wsanchez</uid>
<guid>wsanchez</guid>
<email-address>wsanchez at example.com</email-address>
<password>test</password>
<name>Wilfredo Sanchez Vega</name>
<first-name>Wilfredo</first-name>
<last-name>Sanchez Vega</last-name>
</user>
<user>
<uid>cdaboo</uid>
<guid>cdaboo</guid>
<email-address>cdaboo at example.com</email-address>
<password>test</password>
<name>Cyrus Daboo</name>
<first-name>Cyrus</first-name>
<last-name>Daboo</last-name>
<members>
<member type="groups">group01</member>
</members>
</user>
<user>
<uid>sagen</uid>
<guid>sagen</guid>
<email-address>sagen at example.com</email-address>
<password>test</password>
<name>Morgen Sagen</name>
<first-name>Morgen</first-name>
<last-name>Sagen</last-name>
</user>
<user>
<uid>dre</uid>
<guid>andre</guid>
<email-address>dre at example.com</email-address>
<password>test</password>
<name>Andre LaBranche</name>
<first-name>Andre</first-name>
<last-name>LaBranche</last-name>
</user>
<user>
<uid>glyph</uid>
<guid>glyph</guid>
<email-address>glyph at example.com</email-address>
<password>test</password>
<name>Glyph Lefkowitz</name>
<first-name>Glyph</first-name>
<last-name>Lefkowitz</last-name>
</user>
<user>
<uid>i18nuser</uid>
<guid>i18nuser</guid>
<email-address>i18nuser at example.com</email-address>
<password>i18nuser</password>
<name>まだ</name>
<first-name>ま</first-name>
<last-name>だ</last-name>
</user>
<user repeat="101">
<uid>user%02d</uid>
<uid>User %02d</uid>
<guid>user%02d</guid>
<password>user%02d</password>
<name>User %02d</name>
<first-name>User</first-name>
<last-name>%02d</last-name>
<email-address>user%02d at example.com</email-address>
</user>
<user repeat="10">
<uid>public%02d</uid>
<guid>public%02d</guid>
<password>public%02d</password>
<name>Public %02d</name>
<first-name>Public</first-name>
<last-name>%02d</last-name>
</user>
<group>
<uid>group01</uid>
<guid>group01</guid>
<password>group01</password>
<name>Group 01</name>
<members>
<member type="users">cdaboo</member>
<member type="users">sagen</member>
</members>
</group>
<group>
<uid>group02</uid>
<guid>group02</guid>
<password>group02</password>
<name>Group 02</name>
<members>
<member type="users">user06</member>
<member type="users">user07</member>
</members>
</group>
<group>
<uid>group03</uid>
<guid>group03</guid>
<password>group03</password>
<name>Group 03</name>
<members>
<member type="users">user08</member>
<member type="users">user09</member>
</members>
</group>
<group>
<uid>group04</uid>
<guid>group04</guid>
<password>group04</password>
<name>Group 04</name>
<members>
<member type="groups">group02</member>
<member type="groups">group03</member>
<member type="users">user10</member>
</members>
</group>
<group> <!-- delegategroup -->
<uid>group05</uid>
<guid>group05</guid>
<password>group05</password>
<name>Group 05</name>
<members>
<member type="groups">group06</member>
<member type="users">user20</member>
</members>
</group>
<group> <!-- delegatesubgroup -->
<uid>group06</uid>
<guid>group06</guid>
<password>group06</password>
<name>Group 06</name>
<members>
<member type="users">user21</member>
</members>
</group>
<group> <!-- readonlydelegategroup -->
<uid>group07</uid>
<guid>group07</guid>
<password>group07</password>
<name>Group 07</name>
<members>
<member type="users">user22</member>
<member type="users">user23</member>
<member type="users">user24</member>
</members>
</group>
<group>
<uid>disabledgroup</uid>
<guid>disabledgroup</guid>
<password>disabledgroup</password>
<name>Disabled Group</name>
<members>
<member type="users">user01</member>
</members>
</group>
</accounts>
On Fri, Dec 5, 2014 at 12:30 PM, Cyrus Daboo <cdaboo at apple.com> wrote:
> Hi Gaurav,
>
> --On December 5, 2014 at 12:28:19 PM -0800 Gaurav Jain <
> monkeyfdude at gmail.com> wrote:
>
> That means just creating a group with members is not sufficient. Needed to
>> explicitly specify which
>>
>> * which members a group has
>> * which groups a user belong to.
>>
>> I hope my understanding is correct.
>>
>
> No that is wrong. You only need to specify group membership in the group
> records.
>
> What version of the server are you using right now? Can you attach the
> entire accounts.xml (block out any real passwords)?
>
> --
> Cyrus Daboo
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.macosforge.org/pipermail/calendarserver-users/attachments/20141205/6ecdc9cd/attachment-0001.html>
More information about the calendarserver-users
mailing list