projects / project / luci.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Merge pull request #3158 from dibdot/banIP
[project/luci.git] / modules / luci-base / root / usr / share / rpcd / acl.d / luci-base.json
1 {
2 "unauthenticated": {
3 "description": "Allow system feature probing",
4 "read": {
5 "ubus": {
6 "luci": [ "getFeatures" ]
7 }
8 }
9 },
10
11 "uci-access": {
12 "description": "Grant uci write access to all configurations",
13 "read": {
14 "uci": [ "*" ]
15 },
16 "write": {
17 "uci": [ "*" ]
18 }
19 },
20 "luci-access": {
21 "description": "Grant access to basic LuCI procedures",
22 "read": {
23 "cgi-io": [ "backup", "download" ],
24 "file": {
25 "/": [ "list" ],
26 "/*": [ "list" ],
27 "/dev/mtdblock*": [ "read" ],
28 "/etc/crontabs/root": [ "read" ],
29 "/etc/dropbear/authorized_keys": [ "read" ],
30 "/etc/filesystems": [ "read" ],
31 "/etc/rc.local": [ "read" ],
32 "/etc/sysupgrade.conf": [ "read" ],
33 "/proc/filesystems": [ "read" ],
34 "/proc/mtd": [ "read" ],
35 "/proc/partitions": [ "read" ],
36 "/proc/sys/kernel/hostname": [ "read" ],
37 "/sys/devices/virtual/ubi/*/name": [ "read" ]
38 },
39 "ubus": {
40 "file": [ "list", "read", "stat" ],
41 "iwinfo": [ "assoclist", "freqlist", "txpowerlist", "countrylist" ],
42 "luci": [ "getBoardJSON", "getDUIDHints", "getHostHints", "getIfaddrs", "getInitList", "getLocaltime", "getTimezones", "getDHCPLeases", "getLEDs", "getNetworkDevices", "getUSBDevices", "getWirelessDevices", "getSwconfigFeatures", "getSwconfigPortState", "getBlockDevices", "getMountPoints" ],
43 "network.device": [ "status" ],
44 "network.interface": [ "dump" ],
45 "network": [ "get_proto_handlers" ],
46 "system": [ "validate_firmware_image" ],
47 "uci": [ "changes", "get" ]
48 },
49 "uci": [ "*" ]
50 },
51 "write": {
52 "cgi-io": [ "upload" ],
53 "file": {
54 "/etc/crontabs/root": [ "write" ],
55 "/etc/dropbear/authorized_keys": [ "write" ],
56 "/etc/luci-uploads/*": [ "write" ],
57 "/etc/rc.local": [ "write" ],
58 "/etc/sysupgrade.conf": [ "write" ],
59 "/sbin/block": [ "exec" ],
60 "/sbin/firstboot": [ "exec" ],
61 "/sbin/reboot": [ "exec" ],
62 "/sbin/sysupgrade": [ "exec" ],
63 "/bin/tar": [ "exec" ],
64 "/tmp/backup.tar.gz": [ "write" ],
65 "/tmp/firmware.bin": [ "write" ]
66 },
67 "ubus": {
68 "file": [ "write", "remove", "exec" ],
69 "iwinfo": [ "scan" ],
70 "luci": [ "setInitAction", "setLocaltime", "setPassword", "setBlockDetect", "setUmount", "setReboot" ],
71 "uci": [ "add", "apply", "confirm", "delete", "order", "set", "rename" ]
72 },
73 "uci": [ "*" ]
74 }
75 },
76 "luci-app-firewall": {
77 "description": "Grant access to firewall procedures",
78 "read": {
79 "ubus": {
80 "luci": [ "getConntrackHelpers" ]
81 },
82 "uci": [ "firewall" ]
83 },
84 "write": {
85 "uci": [ "firewall" ]
86 }
87 }
88 }
Lua Configuration Interface (mirror)