added fcusack's work

1 files changed, 64 insertions, 0 deletions

diff --git a/sudoers/sudoers.rng b/sudoers/sudoers.rng
new file mode 100644
index 0000000..6787df7
--- /dev/null
+++ b/sudoers/sudoers.rng
@@ -0,0 +1,64 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<grammar xmlns="http://relaxng.org/ns/structure/1.0"
+         datatypeLibrary="http://www.w3.org/2001/XMLSchema-datatypes"
+         xmlns:a="http://freeipa.org/xml/rng/ns/annotations/1.0">
+
+  <a:doc> Sudo configuration (/etc/sudoers) </a:doc>
+
+  <include href="username.rng"/>
+
+  <start ns="http://freeipa.org/xml/rng/sudo/sudoers/1.0">
+    <element name="sudoers">
+
+      <oneOrMore>
+        <element name="command">
+          <optional>
+            <element name="options">
+              <ref name="options"/>
+            </element>
+          </optional>
+
+          <element name="path">
+            <text/>
+          </element>
+
+          <zeroOrMore>
+            <element name="args">
+              <text/>
+            </element>
+          </zeroOrMore>
+
+          <zeroOrMore>
+            <element name="tag">
+              <choice>
+                <value>NOPASSWD</value>
+                <value>PASSWD</value>
+                <value>NOEXEC</value>
+                <value>EXEC</value>
+                <value>SETENV</value>
+                <value>NOSETENV</value>
+              </choice>
+            </element>
+          </zeroOrMore>
+
+<!-- XXX actually needs to be user,group,netgroup -->
+          <zeroOrMore>
+            <element name="runas">
+              <ref name="username_pattern"/>
+            </element>
+          </zeroOrMore>
+
+        </element> <!-- command -->
+      </oneOrMore>
+
+    </element> <!-- sudoers -->
+  </start>
+  <define name="options">
+    <zeroOrMore>
+       <choice>
+         <attribute name="dummy_attribute"/>
+       </choice>
+    </zeroOrMore>
+  </define>
+</grammar>
+