GNU Dico Manual (split by node): Section: Back: 3.3.11 Databases Forward: 3.3.12 Strategies and Default Searches Chapter: FastBack: 3. The dicod daemon. Up: 3.3.11 Databases FastForward: 4. Modules Doc: Contents: Table of Contents Index: Concept Index   ?

3.3.11.1 Database Visibility

A property called database visibility is associated with each dictionary database. It determines whether the database appears in the output of SHOW DB command, and takes part in dictionary searches.

By default, all databases are defined as publicly visible. You can, however, abridge their visibility on global as well as on per-directory basis. This can be achieved using visibility ACLs.

In general, the visibility of a database is controlled by two access control lists: global visibility ACL and database visibility ACL. The latter takes precedence over the former.

Both ACLs are defined using visibility-acl statement:

Configuration: visibility-acl acl-name

Set name of an ACL controlling database visibility. If used in global scope, this statement sets global visibility ACL. If used within a database block, it sets visibility ACL for that particular database.

Consider the following example:

 
acl glob-vis {
  allow authenticated;
  deny all;
}  

acl local-nets {
  allow from (192.168.10.0/24, /tmp/dicod.sock);
}

visibility-acl glob-vis;

database {
  name "terms";
  visibility-acl local-nets;
}

In this configuration, the ‘terms’ database is visible to everybody coming from the ‘192.168.10.0/24’ network and from the UNIX socket ‘/tmp/dicod.sock’, without authorization. It is not visible to users coming from elsewhere, unless they authenticate themselves.

This document was generated by Sergey Poznyakoff on July, 7 2010 using texi2html 1.78.

Verbatim copying and distribution of this entire article is permitted in any medium, provided this notice is preserved.