Isis::KWrap - manage entries in the KWrapper password file.
use Isis::KWrap;
# Create or change the 'testid0.cgi' entry, and if necessary
# create the pts and/or kas entries.
$ref = Isis::KWrap::setEntryLocal( base => '/afs/isis.unc.edu/home/t/e/testid0/public_cgi',
user => 'testid0.cgi' );
# read 'testid0.cgi' entries.
$ref = Isis::KWrap::getEntryLocal( principal => 'testid0',
instance=>'cgi' );
# ... which is equivalent to this
$ref = Isis::KWrap::getEntryLocal( user => 'testid0.cgi');
# delete the 'testid0.cgi' kwrapper, pts, and kas entries.
$ref = Isis::KWrap::delEntryLocal( user => 'testid0.cgi' );
getEntryLocal and setEntryLocal return either a reference to a
hash with the keys user, principal, instance, password,
and base on success, or undef on failure. setEntryLocal
also tries to create a kwrap:$instance PTS group, and tries to
add principal.instance to that group if it can. Failure of these
PTS group operations is not reported to the caller, or indeed even
noticed internally.
delEntryLocal deletes the kwrapper, pts and kas entries, and if
the old base was a directory, performs a recursive fs cleanacl
on that directory. It also attempts to remove principal.instance
from the kwrap:$instance pts group. It returns true on
success, false on failure.
The module contains other miscellaneous code that may be useful, but which will probably move to other modules once we figure out what's appropriate. So don't go thinking that other routines you find here are going to hang around.