diff options
| -rw-r--r-- | NEWS | 6 | ||||
| -rw-r--r-- | README | 4 | ||||
| -rw-r--r-- | docs/remctld.pod | 8 |
3 files changed, 18 insertions, 0 deletions
@@ -11,6 +11,12 @@ remctl 3.1 (unreleased) to the initial connection if remctl_set_timeout is called before remctl_open. + The remctld server now supports an additional configuration option, + user, which sets the user as which to run a command. If this option + is set for a command configuration, remctld will run the command as + that user (including their primary and supplemental groups). The user + may be specified as either a username or a UID. + The PHP bindings no longer output a PHP warning if remctl_output fails. This was inconsistent with the other API calls (remctl_open and remctl_command can also fail but didn't result in warnings), may @@ -103,6 +103,10 @@ REQUIREMENTS principal in your local realm; see tests/data/README for more information. + To test user handling in remctld, you will need the fakeroot command + (available in the fakeroot package in Debian and Ubuntu). This test + will be skipped if fakeroot isn't available. + To check spelling in the POD documentation, Pod::Spell (available from CPAN) and either aspell or ispell with the american dictionary are also required. The user's path is searched for aspell or ispell and aspell diff --git a/docs/remctld.pod b/docs/remctld.pod index 528c3c5..43946ab 100644 --- a/docs/remctld.pod +++ b/docs/remctld.pod @@ -238,6 +238,14 @@ to the command. Be aware that even if the I<subcommand> is the designated argument to pass on standard input (C<stdin=1>), the I<subcommand> may not contain NUL characters. +=item I<user>=(I<username> | I<uid>) + +Run this command as the specified user, which can be given as either a +username or as a UID. Even if given as a UID, the user must be found in +the user database (searched via getpwuid(3)). B<remctld> will run the +command as the specified user, including that user's primary and +supplemental groups. + =back =item I<acl> |