UGO (User/Group/Others)
is currently used in Linux/Unix file systems and is also the most widely used permission control method.
It is a coarse-grained file system permission control mode.
ACL (Access Control List) access control list
Including three aspects:
permission mode (Scheme)
(1) IP: permission control from the granularity of the IP address
(2) Digest: The most commonly used, use the authorization identifier similar to username:password for authorization configuration, which is
convenient for distinguishing different applications for authorization control
(3) World: The most open permission control method is a special digest mode, with only one permission identification "world:anyone"
(4) Super: Super user
Authorized object
Authorized object refers to the user or a specified authority granted Entities, such as IP addresses or machine lights.
Permission
(1) CREATE: Data node creation permission, allowing authorized objects to create child nodes under this Znode
(2) DELETE: The child node delete permission, allowing the authorized object to delete the child node of the data node
(3) READ: The read permission of
the data node , allowing authorized objects to access the data node and read its data content or child node list, etc.
(4) WRITE: Data node update authority, allowing authorized objects to update the data node
(5) ADMIN: Data node management authority, allowing authorized objects to perform ACL related setting operations on the data node