{
    "content": [
        {
            "type": "text",
            "text": "# GETFACL (info)\n\n## NAME\n\ngetfacl - get file access control lists\n\n## SYNOPSIS\n\ngetfacl [-aceEsRLPtpndvh] file ...\ngetfacl [-aceEsRLPtpndvh] -\n\n## DESCRIPTION\n\nFor  each  file,  getfacl displays the file name, owner, the group, and\nthe Access Control List (ACL). If a directory has a default  ACL,  get-\nfacl also displays the default ACL. Non-directories cannot have default\nACLs.\n\n## Sections\n\n- **NAME**\n- **SYNOPSIS**\n- **DESCRIPTION**\n- **OPTIONS** (14 subsections)\n- **AUTHOR**\n- **SEE ALSO**\n\nUse structuredContent.sections for detailed options, examples, and full documentation.\n"
        }
    ],
    "structuredContent": {
        "command": "GETFACL",
        "section": "",
        "mode": "info",
        "summary": "getfacl - get file access control lists",
        "synopsis": "getfacl [-aceEsRLPtpndvh] file ...\ngetfacl [-aceEsRLPtpndvh] -",
        "tldr_summary": null,
        "tldr_examples": [],
        "tldr_source": null,
        "flags": [
            {
                "flag": "-a",
                "long": "--access",
                "arg": null,
                "description": "Display the file access control list."
            },
            {
                "flag": "-d",
                "long": "--default",
                "arg": null,
                "description": "Display the default access control list."
            },
            {
                "flag": "-c",
                "long": "--omit-header",
                "arg": null,
                "description": "Do not display the comment header (the first three lines of each file's output)."
            },
            {
                "flag": "-e",
                "long": "--all-effective",
                "arg": null,
                "description": "Print all effective rights comments, even if identical to the rights defined by the ACL entry."
            },
            {
                "flag": "-E",
                "long": "--no-effective",
                "arg": null,
                "description": "Do not print effective rights comments."
            },
            {
                "flag": "-s",
                "long": "--skip-base",
                "arg": null,
                "description": "Skip files that only have the base ACL entries (owner, group, oth- ers)."
            },
            {
                "flag": "-R",
                "long": "--recursive",
                "arg": null,
                "description": "List the ACLs of all files and directories recursively."
            },
            {
                "flag": "-L",
                "long": "--logical",
                "arg": null,
                "description": "Logical walk, follow symbolic links to directories. The default be- havior is to follow symbolic link arguments, and skip symbolic links encountered in subdirectories. Only effective in combination with -R."
            },
            {
                "flag": "-P",
                "long": "--physical",
                "arg": null,
                "description": "Physical walk, do not follow symbolic links to directories. This also skips symbolic link arguments. Only effective in combination with -R."
            },
            {
                "flag": "-t",
                "long": "--tabular",
                "arg": null,
                "description": "Use an alternative tabular output format. The ACL and the default ACL are displayed side by side. Permissions that are ineffective due to the ACL mask entry are displayed capitalized. The entry tag names for the ACLUSEROBJ and ACLGROUPOBJ entries are also dis- played in capital letters, which helps in spotting those entries."
            },
            {
                "flag": "-p",
                "long": "--absolute-names",
                "arg": null,
                "description": "Do not strip leading slash characters (`/'). The default behavior is to strip leading slash characters."
            },
            {
                "flag": "-n",
                "long": "--numeric",
                "arg": null,
                "description": "List numeric user and group IDs"
            },
            {
                "flag": "-v",
                "long": "--version",
                "arg": null,
                "description": "Print the version of getfacl and exit."
            },
            {
                "flag": "-h",
                "long": "--help",
                "arg": null,
                "description": "Print help explaining the command line options. -- End of command line options. All remaining parameters are inter- preted as file names, even if they start with a dash character. - If the file name parameter is a single dash character, getfacl reads a list of files from standard input. CONFORMANCE TO POSIX 1003.1e DRAFT STANDARD 17 If the environment variable POSIXLYCORRECT is defined, the default be- havior of getfacl changes in the following ways: Unless otherwise spec- ified, only the ACL is printed. The default ACL is only printed if the -d option is given. If no command line parameter is given, getfacl be- haves as if it was invoked as ``getfacl -''. No flags comments indi- cating the setuid, setgid, and sticky bits are generated."
            }
        ],
        "examples": [],
        "see_also": [
            {
                "name": "setfacl",
                "section": "1",
                "url": "https://www.chedong.com/phpMan.php/man/setfacl/1/json"
            },
            {
                "name": "acl",
                "section": "5",
                "url": "https://www.chedong.com/phpMan.php/man/acl/5/json"
            }
        ],
        "section_outline": [
            {
                "name": "NAME",
                "lines": 2,
                "subsections": []
            },
            {
                "name": "SYNOPSIS",
                "lines": 4,
                "subsections": []
            },
            {
                "name": "DESCRIPTION",
                "lines": 61,
                "subsections": []
            },
            {
                "name": "OPTIONS",
                "lines": 1,
                "subsections": [
                    {
                        "name": "-a, --access",
                        "lines": 2,
                        "flag": "-a",
                        "long": "--access"
                    },
                    {
                        "name": "-d, --default",
                        "lines": 2,
                        "flag": "-d",
                        "long": "--default"
                    },
                    {
                        "name": "-c, --omit-header",
                        "lines": 3,
                        "flag": "-c",
                        "long": "--omit-header"
                    },
                    {
                        "name": "-e, --all-effective",
                        "lines": 3,
                        "flag": "-e",
                        "long": "--all-effective"
                    },
                    {
                        "name": "-E, --no-effective",
                        "lines": 2,
                        "flag": "-E",
                        "long": "--no-effective"
                    },
                    {
                        "name": "-s, --skip-base",
                        "lines": 3,
                        "flag": "-s",
                        "long": "--skip-base"
                    },
                    {
                        "name": "-R, --recursive",
                        "lines": 2,
                        "flag": "-R",
                        "long": "--recursive"
                    },
                    {
                        "name": "-L, --logical",
                        "lines": 5,
                        "flag": "-L",
                        "long": "--logical"
                    },
                    {
                        "name": "-P, --physical",
                        "lines": 4,
                        "flag": "-P",
                        "long": "--physical"
                    },
                    {
                        "name": "-t, --tabular",
                        "lines": 6,
                        "flag": "-t",
                        "long": "--tabular"
                    },
                    {
                        "name": "-p, --absolute-names",
                        "lines": 3,
                        "flag": "-p",
                        "long": "--absolute-names"
                    },
                    {
                        "name": "-n, --numeric",
                        "lines": 2,
                        "flag": "-n",
                        "long": "--numeric"
                    },
                    {
                        "name": "-v, --version",
                        "lines": 2,
                        "flag": "-v",
                        "long": "--version"
                    },
                    {
                        "name": "-h, --help",
                        "lines": 16,
                        "flag": "-h",
                        "long": "--help"
                    }
                ]
            },
            {
                "name": "AUTHOR",
                "lines": 4,
                "subsections": []
            },
            {
                "name": "SEE ALSO",
                "lines": 3,
                "subsections": []
            }
        ],
        "sections": {
            "NAME": {
                "content": "getfacl - get file access control lists\n",
                "subsections": []
            },
            "SYNOPSIS": {
                "content": "getfacl [-aceEsRLPtpndvh] file ...\n\ngetfacl [-aceEsRLPtpndvh] -\n",
                "subsections": []
            },
            "DESCRIPTION": {
                "content": "For  each  file,  getfacl displays the file name, owner, the group, and\nthe Access Control List (ACL). If a directory has a default  ACL,  get-\nfacl also displays the default ACL. Non-directories cannot have default\nACLs.\n\nIf getfacl is used on a file system that does not support ACLs, getfacl\ndisplays  the  access  permissions defined by the traditional file mode\npermission bits.\n\nThe output format of getfacl is as follows:\n1:  # file: somedir/\n2:  # owner: lisa\n3:  # group: staff\n4:  # flags: -s-\n5:  user::rwx\n6:  user:joe:rwx               #effective:r-x\n7:  group::rwx                 #effective:r-x\n8:  group:cool:r-x\n9:  mask::r-x\n10:  other::r-x\n11:  default:user::rwx\n12:  default:user:joe:rwx       #effective:r-x\n13:  default:group::r-x\n14:  default:mask::r-x\n15:  default:other::---\n\nLines 1--3 indicate the file name, owner, and owning group.\n\nLine 4 indicates the setuid (s), setgid (s), and sticky (t)  bits:  ei-\nther  the letter representing the bit, or else a dash (-). This line is\nincluded if any of those bits is set and left out otherwise, so it will\nnot  be  shown  for most files. (See CONFORMANCE TO POSIX 1003.1e DRAFT\nSTANDARD 17 below.)\n\nLines 5, 7 and 10 correspond to the user, group and other fields of the\nfile mode permission bits. These three are called the base ACL entries.\nLines 6 and 8 are named user and named group entries. Line 9 is the ef-\nfective  rights mask. This entry limits the effective rights granted to\nall groups and to named users. (The file owner and  others  permissions\nare  not affected by the effective rights mask; all other entries are.)\nLines 11--15 display the default ACL associated  with  this  directory.\nDirectories  may have a default ACL. Regular files never have a default\nACL.\n\nThe default behavior for getfacl is to display both the ACL and the de-\nfault  ACL,  and to include an effective rights comment for lines where\nthe rights of the entry differ from the effective rights.\n\nIf output is to a terminal, the effective rights comment is aligned  to\ncolumn  40.  Otherwise,  a single tab character separates the ACL entry\nand the effective rights comment.\n\nThe ACL listings of multiple files are separated by blank  lines.   The\noutput of getfacl can also be used as input to setfacl.\n\nPERMISSIONS\nProcess  with search access to a file (i.e., processes with read access\nto the containing directory of a file) are also granted read access  to\nthe file's ACLs.  This is analogous to the permissions required for ac-\ncessing the file mode.\n",
                "subsections": []
            },
            "OPTIONS": {
                "content": "",
                "subsections": [
                    {
                        "name": "-a, --access",
                        "content": "Display the file access control list.\n",
                        "flag": "-a",
                        "long": "--access"
                    },
                    {
                        "name": "-d, --default",
                        "content": "Display the default access control list.\n",
                        "flag": "-d",
                        "long": "--default"
                    },
                    {
                        "name": "-c, --omit-header",
                        "content": "Do not display the comment header (the first three  lines  of  each\nfile's output).\n",
                        "flag": "-c",
                        "long": "--omit-header"
                    },
                    {
                        "name": "-e, --all-effective",
                        "content": "Print  all  effective  rights  comments,  even  if identical to the\nrights defined by the ACL entry.\n",
                        "flag": "-e",
                        "long": "--all-effective"
                    },
                    {
                        "name": "-E, --no-effective",
                        "content": "Do not print effective rights comments.\n",
                        "flag": "-E",
                        "long": "--no-effective"
                    },
                    {
                        "name": "-s, --skip-base",
                        "content": "Skip files that only have the base ACL entries (owner, group,  oth-\ners).\n",
                        "flag": "-s",
                        "long": "--skip-base"
                    },
                    {
                        "name": "-R, --recursive",
                        "content": "List the ACLs of all files and directories recursively.\n",
                        "flag": "-R",
                        "long": "--recursive"
                    },
                    {
                        "name": "-L, --logical",
                        "content": "Logical walk, follow symbolic links to directories. The default be-\nhavior is to follow symbolic  link  arguments,  and  skip  symbolic\nlinks encountered in subdirectories.  Only effective in combination\nwith -R.\n",
                        "flag": "-L",
                        "long": "--logical"
                    },
                    {
                        "name": "-P, --physical",
                        "content": "Physical walk, do not follow symbolic links  to  directories.  This\nalso  skips symbolic link arguments.  Only effective in combination\nwith -R.\n",
                        "flag": "-P",
                        "long": "--physical"
                    },
                    {
                        "name": "-t, --tabular",
                        "content": "Use an alternative tabular output format. The ACL and  the  default\nACL  are  displayed  side by side. Permissions that are ineffective\ndue to the ACL mask entry are displayed capitalized. The entry  tag\nnames  for the ACLUSEROBJ and ACLGROUPOBJ entries are also dis-\nplayed in capital letters, which helps in spotting those entries.\n",
                        "flag": "-t",
                        "long": "--tabular"
                    },
                    {
                        "name": "-p, --absolute-names",
                        "content": "Do not strip leading slash characters (`/'). The  default  behavior\nis to strip leading slash characters.\n",
                        "flag": "-p",
                        "long": "--absolute-names"
                    },
                    {
                        "name": "-n, --numeric",
                        "content": "List numeric user and group IDs\n",
                        "flag": "-n",
                        "long": "--numeric"
                    },
                    {
                        "name": "-v, --version",
                        "content": "Print the version of getfacl and exit.\n",
                        "flag": "-v",
                        "long": "--version"
                    },
                    {
                        "name": "-h, --help",
                        "content": "Print help explaining the command line options.\n\n--  End  of  command  line options. All remaining parameters are inter-\npreted as file names, even if they start with a dash character.\n\n-   If the file name parameter is  a  single  dash  character,  getfacl\nreads a list of files from standard input.\n\nCONFORMANCE TO POSIX 1003.1e DRAFT STANDARD 17\nIf the environment variable POSIXLYCORRECT is defined, the default be-\nhavior of getfacl changes in the following ways: Unless otherwise spec-\nified,  only the ACL is printed. The default ACL is only printed if the\n-d option is given. If no command line parameter is given, getfacl  be-\nhaves  as  if it was invoked as ``getfacl -''.  No flags comments indi-\ncating the setuid, setgid, and sticky bits are generated.\n",
                        "flag": "-h",
                        "long": "--help"
                    }
                ]
            },
            "AUTHOR": {
                "content": "Andreas Gruenbacher, <andreas.gruenbacher@gmail.com>.\n\nPlease send your bug reports and comments to the above address.\n",
                "subsections": []
            },
            "SEE ALSO": {
                "content": "setfacl(1), acl(5)\n\nMay 2000                      ACL File Utilities                    GETFACL(1)",
                "subsections": []
            }
        }
    }
}