NAME

fs_removeacl - Remove a file ACL

SYNOPSIS

fs removeacl -path <file>+ [-help]

fs ra -p <file>+

DESCRIPTION

The fs removeacl command removes any file specific ACL for the given file paths. The files are reset to inherit permissions from their parent directory. The command has no effect on files that do not have an ACL set, or on directories.

OPTIONS

-path <dir/file path>+

Names each AFS file or directory to run the command on. Partial pathnames are interpreted relative to the current working directory, which is also the default value if this argument is omitted.

Specify the read/write path to avoid the failure that results from attempting to change a read-only volume. By convention, the read/write path is indicated by placing a period before the cell name at the pathname's second level (for example, /afs/.example.com). For further discussion of the concept of read/write and read-only paths through the filespace, see the fs mkmount reference page.

-help

Prints the online help for this command. All other valid options are ignored.

EXAMPLES

The following example shows the effect of setting and then removing a file ACL. Note that while the file has an ACL set it is not affected by changes to its parent's ACL.

   % fs setacl . system:anyuser all
   % touch f1
   % fs listacl -path f1
   Access list for f1 is
   Normal rights:
      system:anyuser rlidwka
   % fs setacl f1 -acl pat:friends rl
   % fs listacl -path f1
   Access list for f1 is
   Normal rights:
      system:anyuser rlidwka
      pat:friends rl
   % fs setacl . system:authuser all
   % fs listacl -path f1
   Access list for f1 is
   Normal rights:
      system:anyuser rlidwka
      pat:friends rl
   % fs removeacl -path f1
   % fs listacl -path f1
   Access list for f1 is
   Normal rights:
      system:authuser rlidwka
      system:anyuser rlidwka

PRIVILEGE REQUIRED

The issuer must have the a (administer) permission on the directory's ACL, a member of the system:administrators group, or, as a special case, must be the UID owner of the top-level directory of the volume containing this directory. The last provision allows the UID owner of a volume to repair accidental ACL errors without requiring intervention by a member of system:administrators.

SEE ALSO

fs_copyacl(1), fs_listacl(1), fs_setacl(1),

COPYRIGHT

Copyright AuriStor, Inc. 2014-2017. https://www.auristor.com/ All Rights Reserved.

ACKNOWLEDGEMENTS

"AFS" is a registered mark of International Business Machines Corporation, used under license. (USPTO Registration 1598389)

"OpenAFS" is a registered mark of International Business Machines Corporation. (USPTO Registration 4577045)

The "AuriStor" name, log 'S' brand mark, and icon are registered marks of AuriStor, Inc. (USPTO Registrations 4849419, 4849421, and 4928460) (EUIPO Registration 015539653).

"Your File System" is a registered mark of AuriStor, Inc. (USPTO Registrations 4801402 and 4849418).

"YFS" and "AuriStor File System" are trademarks of AuriStor, Inc.