diff options
author | John Southworth <john.southworth@vyatta.com> | 2011-08-01 18:48:50 -0500 |
---|---|---|
committer | John Southworth <john.southworth@vyatta.com> | 2011-08-01 18:48:50 -0500 |
commit | c6c6d717140fd6b81a74400d0ea7cf7d5ec9ef3f (patch) | |
tree | 342e65bea852904a13c2d4e983955a7908f38990 | |
parent | 29124086120aba6b937cdeb3243c2c36a1aae4ab (diff) | |
download | vyatta-op-c6c6d717140fd6b81a74400d0ea7cf7d5ec9ef3f.tar.gz vyatta-op-c6c6d717140fd6b81a74400d0ea7cf7d5ec9ef3f.zip |
Only show operator users the top level commands they are allowed to execute in tab complete
-rw-r--r-- | etc/bash_completion.d/vyatta-op | 30 |
1 files changed, 29 insertions, 1 deletions
diff --git a/etc/bash_completion.d/vyatta-op b/etc/bash_completion.d/vyatta-op index 7d6ddb5..b1f8643 100644 --- a/etc/bash_completion.d/vyatta-op +++ b/etc/bash_completion.d/vyatta-op @@ -67,6 +67,11 @@ declare -a _vyatta_op_noncompletions _vyatta_op_completions declare -x -a _vyatta_pipe_noncompletions _vyatta_pipe_completions declare _vyatta_comptype declare -x -a reply +declare -a _vyatta_operator_allowed + +if [[ "$VYATTA_USER_LEVEL_DIR" == "/opt/vyatta/etc/shell/level/users" ]]; then + _vyatta_operator_allowed=( $(cat /opt/vyatta/etc/shell/level/users/allowed-op) ) +fi source /etc/bash_completion.d/vyatta-op-run @@ -81,6 +86,21 @@ _vyatta_op_debug () done } +_vyatta_op_is_elem_of () { + local elem=$1 + local -a olist + eval "olist=( \"\${$2[@]}\" )" + for e in ${olist[*]}; do + if [[ "$e" == "$elem" ]]; then + echo -n '1' + return + fi + done + echo -n '0' + return +} + + # this is needed to provide original "default completion" behavior. # see "vyatta-cfg" completion script for details. _vyatta_op_default_expand () @@ -223,7 +243,15 @@ _vyatta_op_set_completions () if [[ "${allowed[i]}" == \<*\> ]] ; then _vyatta_op_noncompletions+=( ${allowed[i]} ) else - completions+=( ${allowed[i]} ) + if [[ "$VYATTA_USER_LEVEL_DIR" == "/opt/vyatta/etc/shell/level/admin" ]]; then + completions+=( ${allowed[i]} ) + elif [[ $(_vyatta_op_is_elem_of ${allowed[i]} _vyatta_operator_allowed) == "1" ]];then + completions+=( ${allowed[i]} ) + elif [[ $_vyatta_op_node_path == $vyatta_op_templates ]];then + continue + else + completions+=( ${allowed[i]} ) + fi fi done |