list splitsubst( string X, string delimiter )
The splitsubst function splits a string X into a list. This function is similar to the split function except that the delimiter contains the entire delimiter string.
The following example returns the list: "john","jane,james"
a = splitsubst( "john,,jane,james", ",," )
These are the built-in miscellaneous functions available to use within the pmpolicy file.
| Name | Description |
|---|---|
|
Translate a string representation of an integer to an integer. | |
|
Authenticate a user on the primary policy server. | |
|
Authenticate a user on the client. | |
|
Return the filename portion of a path. | |
|
Check whether a host string matches a host definition. | |
|
Compare two date strings. | |
|
Return the directory name portion of a path | |
|
Determine whether a feature is supported on the policy server | |
|
Check whether a file or path exists on the policy server. | |
|
Examine a list of arguments for short options to break up command lines for easier parsing. | |
|
Examine a list of arguments for short or long options to break up command lines for easier parsing. | |
|
Examine a list of arguments for only long options to break up command lines for easier parsing. | |
|
Match a string to a pattern. | |
|
Check whether a host is in the specified UNIX group on the policy server. | |
|
Check whether a user is in the specified NIS netgroup on the policy server. | |
|
Check whether a user is in the NIS netgroup or specified netgroup on the policy server. | |
|
Return the current line number in the policy file. | |
|
Create a temporary file. Same as mktemp system. | |
|
Return a string representation of the operating system. | |
|
Quote a string. | |
|
Generate a random number. | |
|
Obtain information about a file on the policy server. | |
|
Format the current date/time as a string. | |
|
Run a program on the policy server. | |
|
Check whether a given time is between two times. | |
|
Convert string to lower case. | |
|
Convert string to upper case. | |
|
Return system information on the policy server; output of uname system command line. |
int atoi ( string nptr )
atoi converts the string representation of a decimal integer to an integer. If the string does not contain a number, it produces a syntax error and rejects the session.
This function returns the converted integer.
x=atoi("123");
printf("%d\n", x);
Returns: 123
int authenticate_pam ( string user [, string service] )
The authenticate_pam function authenticates a user by means of the PAM (Pluggable Authentication Method) APIs on the policy servers.
For more information on how to configure PAM, consult the documentation for your platform.
The service parameter identifies the name of the PAM service to use to authenticate the user. This can be any valid service name configured in the PAM system configuration. It defaults to the PAM service "login".
This function returns 0 to indicate failure and 1 to indicate success.
if (user=="paul" && basename(command)=="useradd")
{
if (!authenticate_pam(user, "sshd"))
{
reject;
}
runuser="root";
accept;
}© 2024 One Identity LLC. ALL RIGHTS RESERVED. Feedback 使用条款 隐私 Cookie Preference Center