/**********************************************************************
 * luc_hire.c -- add/delete someone from queue and archive privileges
 *
 * $Author: brlewis $
 * $Source: /afs/athena.mit.edu/astaff/project/lucydev/src/lib/RCS/luc_hire.c,v $
 * $Header: /afs/athena.mit.edu/astaff/project/lucydev/src/lib/RCS/luc_hire.c,v 1.1 91/09/24 14:34:44 brlewis Exp Locker: brlewis $
 *
 * Copyright 1991 by the Massachusetts Institute of Technology.
 *
 * For copying and distribution information, please see the file
 * <mit-copyright.h>.
 **********************************************************************/
#include <mit-copyright.h>

#ifndef lint
static char rcsid_luc_hire_c[] = "$Header: /afs/athena.mit.edu/astaff/project/lucydev/src/lib/RCS/luc_hire.c,v 1.1 91/09/24 14:34:44 brlewis Exp Locker: brlewis $";
#endif /* lint */

#include <stdio.h>
#include <strings.h>
#include <sys/errno.h>
#include <krb.h>
#include "lucy/lucy.h"

/**********************************************************************
 * luc_hire(char *user, int level)
 *	caller sets user to person to hire
 *	caller sets level
 *		0 deny access to archive, queue
 *		1 read-only on archive, queue
 *		2 read archive, write queue, unpost
 *		3 write archive and queue, unpost
 *		4 able to hire others
 *
 * - adds user to appropriate acls
 * - returns error code
 **********************************************************************/

long
luc_hire(user, level)
     char *user;
     int level;
{
  long code;
  char principal[MAX_K_NAME_SZ];
  char realm[REALM_SZ];
  char *modes[3];
  LMEETING *mtgs[3];
  int i;

  mtgs[0] = &luv_qmtg;		/* queue */
  mtgs[1] = &luv_bmtg;		/* browser */
  mtgs[2] = &luv_amtg;		/* archive */

  /* adjust principal */
  strcpy(principal, user);
  if (strcmp(user, "*") && !index(user, '@')) {
    krb_get_lrealm(realm, 1);
    strcat(strcat(principal, "@"), realm);
  }

  /* give privileges appropriate to level (see comments above) */
  switch(level) {
  case 0:
    modes[0] = modes[1] = modes[2] = NULL;
    break;
  case 1:
    modes[0] = modes[2] = "r";
    modes[1] = NULL;
    break;
  case 2:
    modes[0] = "adorsw";
    modes[1] = "drs";
    modes[2] = "rs";
    break;
  case 3:
    modes[0] = modes[2] = "adorsw";
    modes[1] = "drs";
    break;
  case 4:
    modes[0] = modes[2] = "acdorsw";
    modes[1] = "cdrs";
    break;
  default:
    return((long) EINVAL);
  }

  /* set access control lists */
  for (i=0; i<3; i++) {
    if (modes[i] == NULL) {
      dsc_delete_access(&(mtgs[i]->nb), principal, &code);
      if (code != 0L && code != NO_PRINC) {
	strcpy(luv_context, principal);
	return(code);
      }
    } else {
      dsc_set_access(&(mtgs[i]->nb), principal, modes[i], &code);
      if (code) {
	strcpy(luv_context, principal);
	return(code);
      }
    }
  }
  return(0L);
}