tests/passwd.xml

   1 <?xml version="1.0" encoding="UTF-8"?>
   2
   3 <!--
   4
   5         Subversion stuff
   6
   7         $Id$
   8
   9          -->
  10
  11 <!--
  12
  13         This specification-by-example defines a key tree layout for users, groups and password.
  14
  15         Its purpose is similar to the Unix well-known files:
  16
  17          /etc/passwd
  18          /etc/group
  19          /etc/shadow
  20
  21         It defines 2 trees, system/users and system/groups
  22         All keys must be owned by root with RO permissions to others, exept for the
  23         password keys which should be readable only to root.
  24
  25         In this example we'll define the 'jdoe' user and 'root' keys.
  26
  27         Avi Alkalay
  28         <avi at unix.sh>
  29         Nov 2005
  30
  31 -->
  32
  33
  34
  35 <keyset xmlns="http://www.libelektra.org"
  36         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
  37         xsi:schemaLocation="http://www.libelektra.org elektra.xsd"
  38
  39         parent="system">
  40
  41
  42
  43         <key basename="users/jdoe">
  44                 <!-- The 'jdoe' record -->
  45
  46                 <!-- Real name -->
  47                 <key basename="gecos" value="John Doe"/>
  48
  49                 <!-- User and group IDs -->
  50                 <key basename="uid" value="500"/>
  51                 <key basename="gid" value="800"/>
  52
  53                 <!-- Home directory and shell program -->
  54                 <key basename="home" value="/root"/>
  55                 <key basename="shell" value="/bin/bash"/>
  56
  57                 <!-- Password metainfo as /etc/shadow.
  58                           Check the 'mode' attribute, meaning they are secure keys -->
  59                 <key basename="passwdChangeAfter" mode="0600" value="99999"/>
  60                 <key basename="passwdChangeBefore" mode="0600" value="0"/>
  61                 <key basename="passwdDisableAfter" mode="0600"/>
  62                 <key basename="passwdDisabledSince" mode="0600"/>
  63                 <key basename="passwdReserved" mode="0600"/>
  64                 <key basename="passwdWarnBefore" mode="0600" value="7"/>
  65
  66                 <!-- Obsolete key.... from /etc/passwd -->
  67                 <key basename="password" mode="0644" value="x"/>
  68
  69                 <!-- Real password goes here in encrypted form -->
  70                 <key basename="shadowPassword" mode="0600" value="an encrypted passwd should appear here"/>
  71         </key>
  72
  73
  74         <!-- The group which jdoe is member of -->
  75         <key basename="groups/guests">
  76                 <key basename="gid" value="800"/>
  77                 <key basename="members" value="jdoe,miriam,ana"/>
  78         </key>
  79
  80
  81
  82
  83
  84
  85
  86
  87
  88         <!-- The 'root' record -->
  89
  90         <key basename="users/root">
  91                 <key basename="gecos" value="root"/>
  92                 <key basename="uid" value="0"/>
  93                 <key basename="gid" value="0"/>
  94                 <key basename="home" value="/root"/>
  95                 <key basename="shell" value="/bin/bash"/>
  96                 <key basename="passwdChangeAfter" mode="0600" value="99999"/>
  97                 <key basename="passwdChangeBefore" mode="0600" value="0"/>
  98                 <key basename="passwdDisableAfter" mode="0600"/>
  99                 <key basename="passwdDisabledSince" mode="0600"/>
 100                 <key basename="passwdReserved" mode="0600"/>
 101                 <key basename="passwdWarnBefore" mode="0600" value="7"/>
 102                 <key basename="password" mode="0644" value="x"/>
 103                 <key basename="shadowPassword" mode="0600" value="an encrypted passwd should appear here"/>
 104         </key>
 105
 106
 107         <key basename="groups/root">
 108                 <key basename="gid" value="0"/>
 109                 <key basename="members" value="root"/>
 110         </key>
 111
 112
 113
 114         <!-- Just another group that has root as a member -->
 115         <key basename="groups/sys">
 116                 <key basename="gid" value="3"/>
 117                 <key basename="members" value="root,bin,adm"/>
 118         </key>
 119
 120
 121 </keyset>