acl: document Admin and NoAccess a bit

Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>
2020-10-05 14:53:49 +02:00 · 2020-10-05 14:53:49 +02:00 · 05be0984b4
parent cdbc18fc4e
commit 05be0984b4
1 changed files with 4 additions and 0 deletions
--- a/src/config/acl.rs
+++ b/src/config/acl.rs
@ -47,7 +47,11 @@ constnamemap! {
 }


+/// Admin always has all privileges. It can do everything except a few actions
+/// which are limited to the 'root@pam` superuser
 pub const ROLE_ADMIN: u64 = std::u64::MAX;
+
+/// NoAccess can be used to remove privileges from specific paths
 pub const ROLE_NO_ACCESS: u64 = 0;

 pub const ROLE_AUDIT: u64 =