lfc_getidmap - get virtual uid/gid(s) associated with a given
dn/role(s)
#include <sys/types.h>
#include "lfc_api.h"
int lfc_getidmap (const char *username,
int nbgroups, const char
**groupnames, uid_t *userid, gid_t
*gids)
int lfc_getidmapc (const char *username,
const char *user_ca, int nbgroups,
const char **groupnames, uid_t
*userid, gid_t *gids)
lfc_getidmap gets the virtual uid/gid(s) associated with a
given dn/role(s). If the dn or any of the roles does not exist yet in the
Database an entry is added to the mapping table.
- username
- specifies the user name (dn). It must be at most 255 characters long.
- user_ca
- specifies the CA from the user proxy. It must be at most 255 characters
long.
- nbgroups
- is the number of group names.
- groupnames
- is the address of an array of group names (vo/role). Each group name must
be at most 255 characters long. This pointer can be NULL. In this case the
vo is obtained from a static mapping file.
- userid
- specifies the address of a buffer to receive the Virtual User Id.
- gids
- specifies the address of a buffer to receive the Virtual Group Ids. It
must be big enough to receive nbgroups group ids, but at least one
group id in case nbgroups is zero.
This routine returns 0 if the operation was successful or -1 if
the operation failed. In the latter case, serrno is set
appropriately.
- ENOMEM
- Memory could not be allocated in the server to receive the group names or
to send back the gids.
- EACCES
- One of username, user_ca or the primary (first) group is
banned.
- EFAULT
- username, userid or gids is a NULL pointer.
- EINVAL
- nbgroups is negative or the length of username,
user_ca or of one of the group names exceeds 255.
- SENOSHOST
- Host unknown.
- SENOSSERV
- Service unknown.
- SECOMERR
- Communication error.
- SENOMAPFND
- DISABLEAUTOVIDS is set and username or one of the groups
does not exist.
- ENSNACT
- Name server is not running or is being shutdown.