| version 1.4, 2015/07/18 07:03:48 |
version 1.5, 2015/07/19 22:09:08 |
|
|
| The user is not required to enter a password. |
The user is not required to enter a password. |
| .It Ic keepenv |
.It Ic keepenv |
| The user's environment is maintained. |
The user's environment is maintained. |
| The default is to reset the environment. |
The default is to reset the environment, except for the variables |
| |
.Ev DISPLAY , |
| |
.Ev HOME , |
| |
.Ev LOGNAME , |
| |
.Ev MAIL , |
| |
.Ev SHELL , |
| |
.Ev PATH , |
| |
.Ev TERM , |
| |
.Ev USER |
| |
and |
| |
.Ev USERNAME . |
| .It Ic keepenv { Oo variable names Oc Ic } |
.It Ic keepenv { Oo variable names Oc Ic } |
| Reset the environment, but keep the specified variables. |
Reset the environment, but keep the space-separated specified variables. |
| .El |
.El |
| .It Ar identity |
.It Ar identity |
| The username to match. |
The username to match. |
|
|
| .El |
.El |
| .Pp |
.Pp |
| The last matching rule determines the action taken. |
The last matching rule determines the action taken. |
| |
.Pp |
| |
The current line can be extended over multiple lines using a backslash |
| |
.Pq Sq \e . |
| |
Comments can be put anywhere in the file using a hash mark |
| |
.Pq Sq # , |
| |
and extend to the end of the current line. |
| .Sh EXAMPLES |
.Sh EXAMPLES |
| The following example permits users in group wheel to execute commands as root, |
The following example permits users in group wsrc to build ports, |
| |
wheel to execute commands as root while keeping the environment |
| |
variables |
| |
.Ev ENV , |
| |
.Ev PS1 , |
| |
and |
| |
.Ev SSH_AUTH_SOCK , |
| and additionally permits tedu to run procmap as root without a password. |
and additionally permits tedu to run procmap as root without a password. |
| .Bd -literal -offset indent |
.Bd -literal -offset indent |
| permit :wheel |
# Non-exhaustive list of variables needed to |
| |
# build release(8) and ports(7) |
| |
permit nopass keepenv { \e |
| |
FTPMODE PKG_CACHE PKG_PATH SM_PATH SSH_AUTH_SOCK \e |
| |
DESTDIR DISTDIR FETCH_CMD FLAVOR GROUP MAKE MAKECONF \e |
| |
MULTI_PACKAGES NOMAN OKAY_FILES OWNER PKG_DBDIR \e |
| |
PKG_DESTDIR PKG_TMPDIR PORTSDIR RELEASEDIR SHARED_ONLY \e |
| |
SUBPACKAGE WRKOBJDIR SUDO_PORT_V1 } :wsrc |
| |
permit nopass keepenv { ENV PS1 SSH_AUTH_SOCK } :wheel |
| permit nopass tedu cmd /usr/sbin/procmap |
permit nopass tedu cmd /usr/sbin/procmap |
| .Ed |
.Ed |
| .Sh SEE ALSO |
.Sh SEE ALSO |
![[BACK]](/icons/back.gif){kind=icon}
Return to doas.conf.5 CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / usr.bin / doas