2013-08-27 11:05:54 +02:00
|
|
|
# -*- mode: conf -*-
|
|
|
|
|
# vim:ft=cfg
|
|
|
|
|
|
|
|
|
|
# Rights management file for Radicale - A simple calendar server
|
|
|
|
|
#
|
2016-04-09 15:31:47 +02:00
|
|
|
# The default path for this kind of files is ~/.config/radicale/rights
|
|
|
|
|
# This can be changed in the configuration file
|
|
|
|
|
#
|
|
|
|
|
# This file gives independant examples to help users write their own
|
|
|
|
|
# configuration files. Using these examples together in the same configuration
|
|
|
|
|
# file is meaningless.
|
2016-04-09 22:10:51 +02:00
|
|
|
#
|
|
|
|
|
# The first rule matching both user and collection patterns will be returned.
|
2013-08-27 11:05:54 +02:00
|
|
|
|
|
|
|
|
# This means all users starting with "admin" may read any collection
|
|
|
|
|
[admin]
|
2013-12-23 16:45:15 +01:00
|
|
|
user: ^admin.*$
|
2013-08-27 11:05:54 +02:00
|
|
|
collection: .*
|
|
|
|
|
permission: r
|
|
|
|
|
|
|
|
|
|
# This means all users may read and write any collection starting with public.
|
|
|
|
|
# We do so by just not testing against the user string.
|
|
|
|
|
[public]
|
|
|
|
|
user: .*
|
|
|
|
|
collection: ^public(/.+)?$
|
|
|
|
|
permission: rw
|
|
|
|
|
|
|
|
|
|
# A little more complex: give read access to users from a domain for all
|
|
|
|
|
# collections of all the users (ie. user@domain.tld can read domain/*).
|
|
|
|
|
[domain-wide-access]
|
|
|
|
|
user: ^.+@(.+)\..+$
|
|
|
|
|
collection: ^{0}/.+$
|
|
|
|
|
permission: r
|
|
|
|
|
|
|
|
|
|
# Allow authenticated user to read all collections
|
|
|
|
|
[allow-everyone-read]
|
2013-09-19 16:28:54 +02:00
|
|
|
user: .+
|
2013-08-27 11:05:54 +02:00
|
|
|
collection: .*
|
|
|
|
|
permission: r
|
|
|
|
|
|
|
|
|
|
# Give write access to owners
|
|
|
|
|
[owner-write]
|
2013-09-19 16:28:54 +02:00
|
|
|
user: .+
|
2015-01-12 18:21:05 +01:00
|
|
|
collection: ^%(login)s/.*$
|
2013-08-27 11:05:54 +02:00
|
|
|
permission: w
|
