Layer: admin

Module: su

Run shells with substitute user and group

su_exec(
	
		domain
		
	)

Execute su in the caller domain.

Parameter:	Description:
domain	Domain allowed access.

Return

su_restricted_domain_template(
	
		userdomain_prefix
		
			,
		
		user_domain
		
			,
		
		user_role
		
	)

Restricted su domain template.

This template creates a derived domain which is allowed to change the linux user id, to run shells as a different user.

Parameter:	Description:
userdomain_prefix	The prefix of the user domain (e.g., user is the prefix for user_t).
user_domain	The type of the user domain.
user_role	The role associated with the user domain.

su_role_template(
	
		role_prefix
		
			,
		
		user_role
		
			,
		
		user_domain
		
	)

The role template for the su module.

Parameter:	Description:
role_prefix	The prefix of the user role (e.g., user is the prefix for user_r).
user_role	The role associated with the user domain.
user_domain	The type of the user domain.

Return