On Mon, Jul 17, 2006 at 10:11:35AM -0700, Matthew Ahrens wrote: > > I want root to create a new filesystem for a new user under > > the /export/home filesystem, but then have that user get the > > right privs via inheritance rather than requiring root to run > > a set of zfs commands. > > In that case, how should the system determine who the "owner" is? We > toyed with the idea of figuring out the user based on the last component > of the filesystem name, but that seemed too tricky, at least for the > first version.
The owner of the root directory of the ZFS filesystem in question. Could delegation be derived from the ACL of the directory that would contain a new ZFS filesystem? E.g., # zfs create pool/foo # chown joe pool/foo # su - joe % zfs create pool/foo/a % chmod <add ACE that allows jane to create directories> /pool/foo/a % exit # su - jane % zfs create pool/foo/a/b % ... After all, with cheap filesystems creating a filesystem is almost like creating a directory (I know, not quite the same, but perhaps close enough for reusing the add_subdirectory ACE flag). Nico -- _______________________________________________ zfs-discuss mailing list zfs-discuss@opensolaris.org http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
