公开(公告)号：WO2014172579A2

公开(公告)日：2014-10-23

申请号：PCT/US2014034564

申请日：2014-04-17

Applicant: NETAPP INC

Inventor： MUHLESTEIN MARK ,  AMLEKAR SHEKHAR

IPC: G06F21/62

CPC classification number: G06F12/1458 ,  G06F17/30091 ,  G06F21/6218 ,  G06F21/6227

Abstract: Method and system for access based directory enumeration is provided. When a directory is enumerated for a first time, user credentials are verified against an access control list (ACL) entry that is referenced by an ACL inode (referred to as Xnode). The Xnode number is obtained from a file handle for a directory entry. The verification is recorded in a data structure that stores the Xnode identifier and user identifier. When the directory is enumerated again, the data structure is used to verify that the user has been validated before, instead of loading and checking against an ACL entry.

Abstract translation: 提供了基于访问的目录枚举的方法和系统。 首次枚举目录时，将根据ACL inode（称为Xnode）引用的访问控制列表（ACL）条目验证用户凭据。 Xnode号是从目录条目的文件句柄中获得的。 验证记录在存储Xnode标识符和用户标识符的数据结构中。 当再次枚举目录时，数据结构用于验证用户是否已经被验证过，而不是对ACL条目进行加载和检查。