Ace Permissions Groups Explained
Ace Permissions is a permission system built into FXserver, where values are set in the server cfg.
Key Terms:
Aces: Permissions, which can either be denied or allowed
Principals: A Collection (Group) of Aces
How Does it work?
Principals are an inheritance based system that work on a Parent-Child format
so it add a principal, it would be:
add_principal group.Child group.Parent
So for Example:
add_principal group.moderator group.user
add_principal group.admin group.moderator
Here, the principal group.moderator is a Child of group.user and then group.admin is a child of group.moderator
but what does that mean?
In Simple Terms:
group.moderator inherits all the permissions that group.user has
group.admin inherits all the permissions that group.moderator has (including the ones from group.user)
A Parent can also have multiple Children:
add_principal group.support group.user
add_principal group.moderator group.support
add_principal group.admin group.support
add_principal group.owner group.admin
In this example:
group.support inherits all the permissions that group.user has
However:
group.moderator inherits all the permissions that group.support has
but so does group.admin.
and then group.owner inherits all the permissions that group.admin has
which means that the group.owner will not inherit any permissions that group.moderator exclusively has, since it is not related to that principal
In a further post, i will explain how Permissions can be Assigned to these Principals
Notes:
Yes im aware this Thread by @Vespura Exists, but this is Simplified version of it, since this is a common question i get asked alot while doing support in txAdmin and ESX. People seem to find Vespura’s “complex”
Basic Aces & Principals overview/guide