Manage information about files on the minion, set/read user, group data, modify the ACL of files/directories
depends: |
|
---|
salt.modules.win_file.
WindowsError
Check owner and permissions for the passed directory. This function checks the permissions and sets them, returning the changes made. Used by the file state to populate the return dict
Parameters: |
|
---|---|
Returns: |
A dictionary of changes that have been made |
Return type: |
CLI Example:
# To see changes to ``C:\Temp`` if the 'Users' group is given 'read & execute' permissions. salt '*' file.check_perms C:\Temp\ {} Administrators "{'Users': {'perms': 'read_execute'}}" # Locally using salt call salt-call file.check_perms C:\Temp\ {} Administrators "{'Users': {'perms': 'read_execute', 'applies_to': 'this_folder_only'}}" # Specify advanced attributes with a list salt '*' file.check_perms C:\Temp\ {} Administrators "{'jsnuffy': {'perms': ['read_attributes', 'read_ea'], 'applies_to': 'files_only'}}"
Change the group of a file
Under Windows, this will do nothing.
While a file in Windows does have a 'primary group', this rarely used attribute generally has no bearing on permissions unless intentionally configured and is only used to support Unix compatibility features (e.g. Services For Unix, NFS services).
Salt, therefore, remaps this function to do nothing while still being compatible with Unix behavior. When managing Windows systems, this function is superfluous and will generate an info level log entry if used directly.
If you do actually want to set the 'primary group' of a file, use file
.chpgrp
.
To set group permissions use file.set_perms
Parameters: | |
---|---|
Returns: |
None |
CLI Example:
salt '*' file.chpgrp c:\temp\test.txt administrators
Chown a file, pass the file the desired user and group
Under Windows, the group parameter will be ignored.
This is because while files in Windows do have a 'primary group' property, this is rarely used. It generally has no bearing on permissions unless intentionally configured and is most commonly used to provide Unix compatibility (e.g. Services For Unix, NFS services).
If you do want to change the 'primary group' property and understand the implications, pass the Windows only parameter, pgroup, instead.
Parameters: |
|
---|---|
Returns: |
True if successful, otherwise error |
Return type: |
CLI Example:
salt '*' file.chown c:\temp\test.txt myusername salt '*' file.chown c:\temp\test.txt myusername pgroup=Administrators salt '*' file.chown c:\temp\test.txt myusername "pgroup='None'"
Change the group of a file
Under Windows, this will set the rarely used primary group of a file. This generally has no bearing on permissions unless intentionally configured and is most commonly used to provide Unix compatibility (e.g. Services For Unix, NFS services).
Ensure you know what you are doing before using this function.
Parameters: | |
---|---|
Returns: |
True if successful, otherwise error |
Return type: |
CLI Example:
salt '*' file.chpgrp c:\temp\test.txt Administrators salt '*' file.chpgrp c:\temp\test.txt "'None'"
Return a dictionary object with the Windows file attributes for a file.
Parameters: | path (str) -- The path to the file or directory |
---|---|
Returns: | A dictionary of file attributes |
Return type: | dict |
CLI Example:
salt '*' file.get_attributes c:\temp\a.txt
Return the id of the group that owns a given file
Under Windows, this will return the uid of the file.
While a file in Windows does have a 'primary group', this rarely used attribute generally has no bearing on permissions unless intentionally configured and is only used to support Unix compatibility features (e.g. Services For Unix, NFS services).
Salt, therefore, remaps this function to provide functionality that somewhat resembles Unix behavior for API compatibility reasons. When managing Windows systems, this function is superfluous and will generate an info level log entry if used directly.
If you do actually want to access the 'primary group' of a file, use file.get_pgid.
Parameters: | |
---|---|
Returns: |
The gid of the owner |
Return type: |
CLI Example:
salt '*' file.get_gid c:\temp\test.txt
Return the group that owns a given file
Under Windows, this will return the user (owner) of the file.
While a file in Windows does have a 'primary group', this rarely used attribute generally has no bearing on permissions unless intentionally configured and is only used to support Unix compatibility features (e.g. Services For Unix, NFS services).
Salt, therefore, remaps this function to provide functionality that somewhat resembles Unix behavior for API compatibility reasons. When managing Windows systems, this function is superfluous and will generate an info level log entry if used directly.
If you do actually want to access the 'primary group' of a file, use file.get_pgroup.
Parameters: | |
---|---|
Returns: |
The name of the owner |
Return type: |
CLI Example:
salt '*' file.get_group c:\temp\test.txt
Return the mode of a file
Right now we're just returning None because Windows' doesn't have a mode like Linux
Parameters: | path (str) -- The path to the file or directory |
---|---|
Returns: | None |
CLI Example:
salt '*' file.get_mode /etc/passwd
Return the id of the primary group that owns a given file (Windows only)
This function will return the rarely used primary group of a file. This generally has no bearing on permissions unless intentionally configured and is most commonly used to provide Unix compatibility (e.g. Services For Unix, NFS services).
Ensure you know what you are doing before using this function.
Parameters: | |
---|---|
Returns: |
The gid of the primary group |
Return type: |
CLI Example:
salt '*' file.get_pgid c:\temp\test.txt
Return the name of the primary group that owns a given file (Windows only)
This function will return the rarely used primary group of a file. This generally has no bearing on permissions unless intentionally configured and is most commonly used to provide Unix compatibility (e.g. Services For Unix, NFS services).
Ensure you know what you are doing before using this function.
The return value may be 'None', e.g. if the user is not on a domain. This is a valid group - do not confuse this with the Salt/Python value of None which means no value was returned. To be certain, use the get_pgid function which will return the SID, including for the system 'None' group.
Parameters: | |
---|---|
Returns: |
The name of the primary group |
Return type: |
CLI Example:
salt '*' file.get_pgroup c:\temp\test.txt
Return the id of the user that owns a given file
Symlinks are followed by default to mimic Unix behavior. Specify follow_symlinks=False to turn off this behavior.
Parameters: | |
---|---|
Returns: |
The uid of the owner |
Return type: |
CLI Example:
salt '*' file.get_uid c:\temp\test.txt salt '*' file.get_uid c:\temp\test.txt follow_symlinks=False
Return the user that owns a given file
Symlinks are followed by default to mimic Unix behavior. Specify follow_symlinks=False to turn off this behavior.
Parameters: | |
---|---|
Returns: |
The name of the owner |
Return type: |
CLI Example:
salt '*' file.get_user c:\temp\test.txt salt '*' file.get_user c:\temp\test.txt follow_symlinks=False
Convert the group id to the group name on this system
Under Windows, because groups are just another ACL entity, this function behaves the same as uid_to_user.
For maintaining Windows systems, this function is superfluous and only exists for API compatibility with Unix. Use the uid_to_user function instead; an info level log entry will be generated if this function is used directly.
Parameters: | gid (str) -- The gid of the group |
---|---|
Returns: | The name of the group |
Return type: | str |
CLI Example:
salt '*' file.gid_to_group S-1-5-21-626487655-2533044672-482107328-1010
Convert the group to the gid on this system
Under Windows, because groups are just another ACL entity, this function behaves the same as user_to_uid, except if None is given, '' is returned.
For maintaining Windows systems, this function is superfluous and only exists for API compatibility with Unix. Use the user_to_uid function instead; an info level log entry will be generated if this function is used directly.
Parameters: | group (str) -- The name of the group |
---|---|
Returns: | The gid of the group |
Return type: | str |
CLI Example:
salt '*' file.group_to_gid administrators
Check if the path is a symlink
This is only supported on Windows Vista or later.
Inline with Unix behavior, this function will raise an error if the path is not a symlink, however, the error raised will be a SaltInvocationError, not an OSError.
Parameters: | path (str) -- The path to a file or directory |
---|---|
Returns: | True if path is a symlink, otherwise False |
Return type: | bool |
CLI Example:
salt '*' file.is_link /path/to/link
Chown a file, pass the file the desired user and group without following any symlinks.
Under Windows, the group parameter will be ignored.
This is because while files in Windows do have a 'primary group' property, this is rarely used. It generally has no bearing on permissions unless intentionally configured and is most commonly used to provide Unix compatibility (e.g. Services For Unix, NFS services).
If you do want to change the 'primary group' property and understand the implications, pass the Windows only parameter, pgroup, instead.
To set the primary group to 'None', it must be specified in quotes. Otherwise Salt will interpret it as the Python value of None and no primary group changes will occur. See the example below.
Parameters: | |
---|---|
Returns: |
True if successful, otherwise error |
Return type: |
CLI Example:
salt '*' file.lchown c:\temp\test.txt myusername salt '*' file.lchown c:\temp\test.txt myusername pgroup=Administrators salt '*' file.lchown c:\temp\test.txt myusername "pgroup='None'"
Ensure that the parent directory containing this path is available.
Parameters: |
|
---|---|
Returns: |
True if successful |
Return type: | |
Raises: |
|
CLI Example:
# To grant the 'Users' group 'read & execute' permissions. salt '*' file.makedirs C:\Temp\ Administrators "{'Users': {'perms': 'read_execute'}}" # Locally using salt call salt-call file.makedirs C:\Temp\ Administrators "{'Users': {'perms': 'read_execute', 'applies_to': 'this_folder_only'}}" # Specify advanced attributes with a list salt '*' file.makedirs C:\Temp\ Administrators "{'jsnuffy': {'perms': ['read_attributes', 'read_ea'], 'applies_to': 'this_folder_only'}}"
Set owner and permissions for each directory created.
Parameters: |
|
---|---|
Returns: |
True if successful, otherwise raises an error |
Return type: |
CLI Example:
# To grant the 'Users' group 'read & execute' permissions. salt '*' file.makedirs_perms C:\Temp\ Administrators "{'Users': {'perms': 'read_execute'}}" # Locally using salt call salt-call file.makedirs_perms C:\Temp\ Administrators "{'Users': {'perms': 'read_execute', 'applies_to': 'this_folder_only'}}" # Specify advanced attributes with a list salt '*' file.makedirs_perms C:\Temp\ Administrators "{'jsnuffy': {'perms': ['read_attributes', 'read_ea'], 'applies_to': 'this_folder_files'}}"
Ensure that the directory is available and permissions are set.
Parameters: |
|
---|---|
Returns: |
True if successful |
Return type: | |
Raises: |
|
CLI Example:
# To grant the 'Users' group 'read & execute' permissions. salt '*' file.mkdir C:\Temp\ Administrators "{'Users': {'perms': 'read_execute'}}" # Locally using salt call salt-call file.mkdir C:\Temp\ Administrators "{'Users': {'perms': 'read_execute', 'applies_to': 'this_folder_only'}}" # Specify advanced attributes with a list salt '*' file.mkdir C:\Temp\ Administrators "{'jsnuffy': {'perms': ['read_attributes', 'read_ea'], 'applies_to': 'this_folder_only'}}"
Return the path that a symlink points to
This is only supported on Windows Vista or later.
Inline with Unix behavior, this function will raise an error if the path is not a symlink, however, the error raised will be a SaltInvocationError, not an OSError.
Parameters: | path (str) -- The path to the symlink |
---|---|
Returns: | The path that the symlink points to |
Return type: | str |
CLI Example:
salt '*' file.readlink /path/to/link
Remove the named file or directory
Parameters: | |
---|---|
Returns: |
True if successful, False if unsuccessful |
Return type: |
CLI Example:
salt '*' file.remove C:\Temp
Set file attributes for a file. Note that the normal attribute means that all others are false. So setting it will clear all others.
Parameters: |
|
---|---|
Returns: |
True if successful, otherwise False |
Return type: |
CLI Example:
salt '*' file.set_attributes c:\temp\a.txt normal=True salt '*' file.set_attributes c:\temp\a.txt readonly=True hidden=True
Set the mode of a file
This just calls get_mode, which returns None because we don't use mode on Windows
Parameters: |
|
---|---|
Returns: |
None |
CLI Example:
salt '*' file.set_mode /etc/passwd 0644
Set permissions for the given path
Parameters: |
|
---|---|
Returns: |
True if successful |
Return type: | |
Raises: |
|
CLI Example:
# To grant the 'Users' group 'read & execute' permissions. salt '*' file.set_perms C:\Temp\ "{'Users': {'perms': 'read_execute'}}" # Locally using salt call salt-call file.set_perms C:\Temp\ "{'Users': {'perms': 'read_execute', 'applies_to': 'this_folder_only'}}" # Specify advanced attributes with a list salt '*' file.set_perms C:\Temp\ "{'jsnuffy': {'perms': ['read_attributes', 'read_ea'], 'applies_to': 'this_folder_only'}}"
Return a dict containing the stats about a given file
Under Windows, gid will equal uid and group will equal user.
While a file in Windows does have a 'primary group', this rarely used attribute generally has no bearing on permissions unless intentionally configured and is only used to support Unix compatibility features (e.g. Services For Unix, NFS services).
Salt, therefore, remaps these properties to keep some kind of compatibility with Unix behavior. If the 'primary group' is required, it can be accessed in the pgroup and pgid properties.
Parameters: | |
---|---|
Returns: |
A dictionary of file/directory stats |
Return type: |
CLI Example:
salt '*' file.stats /etc/passwd
Create a symbolic link to a file
This is only supported with Windows Vista or later and must be executed by a user with the SeCreateSymbolicLink privilege.
The behavior of this function matches the Unix equivalent, with one exception - invalid symlinks cannot be created. The source path must exist. If it doesn't, an error will be raised.
Parameters: | |
---|---|
Returns: |
True if successful, otherwise False |
Return type: |
CLI Example:
salt '*' file.symlink /path/to/file /path/to/link
Convert a uid to a user name
Parameters: | uid (str) -- The user id to lookup |
---|---|
Returns: | The name of the user |
Return type: | str |
CLI Example:
salt '*' file.uid_to_user S-1-5-21-626487655-2533044672-482107328-1010
Convert user name to a uid
Parameters: | user (str) -- The user to lookup |
---|---|
Returns: | The user id of the user |
Return type: | str |
CLI Example:
salt '*' file.user_to_uid myusername
© 2019 SaltStack.
Licensed under the Apache License, Version 2.0.
https://docs.saltstack.com/en/latest/ref/modules/all/salt.modules.win_file.html