Home Explore Help
Register Sign In
dingyu
/
CooPaging
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 24ea2b632f
Branches Tags
CooPaging
/
etc
/
asterisk
/
cli_permissions.conf

cli_permissions.conf 2.4 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182 
  1. ;
    2. 

  2. ; CLI permissions configuration example for Asterisk
    3. 

  3. ;
    4. 

  4. ; All the users that you want to connect with asterisk using
    5. 

  5. ; rasterisk, should have write/read access to the
    6. 

  6. ; asterisk socket (asterisk.ctl). You could change the permissions
    7. 

  7. ; of this file in 'asterisk.conf' config parameter: 'astctlpermissions' (0666)
    8. 

  8. ; found on the [files] section.
    9. 

  9. ;
    10. 

  10. ; general options:
    11. 

  11. ;
    12. 

  12. ; default_perm = permit | deny
    13. 

  13. ;                This is the default permissions to apply for a user that
    14. 

  14. ;                does not has a permissions definided.
    15. 

  15. ;
    16. 

  16. ; user options:
    17. 

  17. ; permit = <command name> | all		; allow the user to run 'command' |
    18. 

  18. ;					; allow the user to run 'all' the commands
    19. 

  19. ; deny = <command name> | all		; disallow the user to run 'command' |
    20. 

  20. ;					; disallow the user to run 'all' commands.
    21. 

  21. ;
    22. 

  22. 

  23. [general]
    24. 

  24. 

  25. default_perm=permit	; To leave asterisk working as normal
    26. 

  26. 			; we should set this parameter to 'permit'
    27. 

  27. ;
    28. 

  28. ; Follows the per-users permissions configs.
    29. 

  29. ;
    30. 

  30. ; This list is read in the sequence that is being written, so
    31. 

  31. ; In this example the user 'eliel' is allow to run only the following
    32. 

  32. ; commands:
    33. 

  33. ;          sip show peer
    34. 

  34. ;          core set debug
    35. 

  35. ;          core set verbose
    36. 

  36. ; If the user is not specified, the default_perm option will be apply to
    37. 

  37. ; every command.
    38. 

  38. ;
    39. 

  39. ; Notice that you can also use regular expressions to allow or deny access to a
    40. 

  40. ; certain command like: 'core show application D*'. In this example the user will be
    41. 

  41. ; allowed to view the documentation for all the applications starting with 'D'.
    42. 

  42. ; Another regular expression could be: 'channel originate SIP/[0-9]* extension *'
    43. 

  43. ; allowing the user to use 'channel originate' on a sip channel and with the 'extension'
    44. 

  44. ; parameter and avoiding the use of the 'application' parameter.
    45. 

  45. ;
    46. 

  46. ; We can also use the templates syntax:
    47. 

  47. ; [supportTemplate](!)
    48. 

  48. ; deny=all
    49. 

  49. ; permit=sip show       ; all commands starting with 'sip show' will be allowed
    50. 

  50. ; permit=core show
    51. 

  51. ;
    52. 

  52. ; You can specify permissions for a local group instead of a user,
    53. 

  53. ; just put a '@' and we will know that is a group.
    54. 

  54. ; IMPORTANT NOTE: Users permissions overwrite group permissions.
    55. 

  55. ;
    56. 

  56. ;[@adm]
    57. 

  57. ;deny=all
    58. 

  58. ;permit=sip
    59. 

  59. ;permit=core
    60. 

  60. ;
    61. 

  61. ;
    62. 

  62. ;[eliel]
    63. 

  63. ;deny=all
    64. 

  64. ;permit=sip show peer
    65. 

  65. ;deny=sip show peers
    66. 

  66. ;permit=core set
    67. 

  67. ;
    68. 

  68. ;
    69. 

  69. ;User 'tommy' inherits from template 'supportTemplate':
    70. 

  70. ;	deny=all
    71. 

  71. ;	permit=sip show
    72. 

  72. ;	permit=core show
    73. 

  73. ;[tommy](supportTemplate)
    74. 

  74. ;permit=core set debug
    75. 

  75. ;permit=dialplan show
    76. 

  76. ;
    77. 

  77. ;
    78. 

  78. ;[mark]
    79. 

  79. ;deny=all
    80. 

  80. ;permit=all
    81. 

  81. ;
    82. 

  82. ;
    83.