Data Lake Store file system access and permissions - az dls fs access

Commands to manage a Data Lake Store filesystem access and permissions.

Commands

az dls fs access remove-all Completely removes the existing ACL or default ACL on the file or folder.
az dls fs access remove-entry Updates the existing ACL on the file or folder to remove the entries specified if they exist.
az dls fs access set Replaces the existing ACL on the file or folder with the specified ACL, which must contain all unnamed entries.
az dls fs access set-entry Updates the existing ACL on the file or folder to include or update the entries specified.
az dls fs access set-owner Sets the owner and or owning group for the file or folder in the Data Lake Store account.
az dls fs access set-permission Sets the permission octal for the file or folder in the Data Lake Store account.
az dls fs access show Displays the ACL for a given file or folder.

az dls fs access remove-all

Completely removes the existing ACL or default ACL on the file or folder.

az dls fs access remove-all --account
--path
[--default-acl]

Required Parameters

--account -n

Name of the Data Lake Store account.

--path

The path in the specified Data Lake Store account where the action should take place. In the format '/folder/file.txt', where the first '/' after the DNS indicates the root of the file system.

Optional Parameters

--default-acl

A switch that, if specified, indicates that the remove ACL operation should remove the default ACL of the folder. Otherwise the regular ACL is removed.

az dls fs access remove-entry

Updates the existing ACL on the file or folder to remove the entries specified if they exist.

az dls fs access remove-entry --account
--acl-spec
--path

Required Parameters

--account -n

Name of the Data Lake Store account.

--acl-spec

The ACL specification to set on the path in the format '[default:]user|group|other:[entity id or UPN]:r|-w|-x|-,[default:]user|group|other:[entity id or UPN]:r|-w|-x|-,...'.

--path

The path in the specified Data Lake Store account where the action should take place. In the format '/folder/file.txt', where the first '/' after the DNS indicates the root of the file system.

az dls fs access set

Replaces the existing ACL on the file or folder with the specified ACL, which must contain all unnamed entries.

az dls fs access set --account
--acl-spec
--path

Required Parameters

--account -n

Name of the Data Lake Store account.

--acl-spec

The ACL specification to set on the path in the format '[default:]user|group|other:[entity id or UPN]:r|-w|-x|-,[default:]user|group|other:[entity id or UPN]:r|-w|-x|-,...'.

--path

The path in the specified Data Lake Store account where the action should take place. In the format '/folder/file.txt', where the first '/' after the DNS indicates the root of the file system.

az dls fs access set-entry

Updates the existing ACL on the file or folder to include or update the entries specified.

az dls fs access set-entry --account
--acl-spec
--path

Required Parameters

--account -n

Name of the Data Lake Store account.

--acl-spec

The ACL specification to set on the path in the format '[default:]user|group|other:[entity id or UPN]:r|-w|-x|-,[default:]user|group|other:[entity id or UPN]:r|-w|-x|-,...'.

--path

The path in the specified Data Lake Store account where the action should take place. In the format '/folder/file.txt', where the first '/' after the DNS indicates the root of the file system.

az dls fs access set-owner

Sets the owner and or owning group for the file or folder in the Data Lake Store account.

az dls fs access set-owner --account
--path
[--group]
[--owner]

Required Parameters

--account -n

Name of the Data Lake Store account.

--path

The path in the specified Data Lake Store account where the action should take place. In the format '/folder/file.txt', where the first '/' after the DNS indicates the root of the file system.

Optional Parameters

--group

The group AAD object ID or UPN to set as the owning group. If not specified the owning group remains unchanged.

--owner

The user AAD object ID or UPN to set as the owner. If not specified the owner remains unchanged.

az dls fs access set-permission

Sets the permission octal for the file or folder in the Data Lake Store account.

az dls fs access set-permission --account
--path
--permission

Required Parameters

--account -n

Name of the Data Lake Store account.

--path

The path in the specified Data Lake Store account where the action should take place. In the format '/folder/file.txt', where the first '/' after the DNS indicates the root of the file system.

--permission

The octal representation of the permissions for user, group and mask (for example: 777 is full rwx for all entities).

az dls fs access show

Displays the ACL for a given file or folder.

az dls fs access show --account
--path

Required Parameters

--account -n

Name of the Data Lake Store account.

--path

The path in the specified Data Lake Store account where the action should take place. In the format '/folder/file.txt', where the first '/' after the DNS indicates the root of the file system.