1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
|
<page xmlns="http://projectmallard.org/1.0/"
xmlns:its="http://www.w3.org/2005/11/its"
type="topic" style="task"
id="lockdown-single-app-mode">
<info>
<link type="guide" xref="user-settings#lockdown"/>
<link type="guide" xref="sundry#session"/>
<link type="seealso" xref="lockdown-printing" />
<link type="seealso" xref="lockdown-file-saving" />
<link type="seealso" xref="lockdown-repartitioning" />
<link type="seealso" xref="lockdown-command-line" />
<link type="seealso" xref="login-automatic" />
<link type="seealso" xref="session-custom" />
<link type="seealso" xref="session-user" />
<revision pkgversion="3.30" date="2019-02-08" status="review"/>
<credit type="author copyright">
<name>Matthias Clasen</name>
<email>mclasen@redhat.com</email>
<years>2014</years>
</credit>
<credit type="editor">
<name>Jana Svarova</name>
<email>jana.svarova@gmail.com</email>
<years>2014</years>
</credit>
<credit type="editor">
<name>Petr Kovar</name>
<email>pknbe@volny.cz</email>
<years>2019</years>
</credit>
<credit type="author">
<name>Marek Suchánek</name>
<email>msuchane@redhat.com</email>
<years>2023</years>
</credit>
<include href="legal.xml" xmlns="http://www.w3.org/2001/XInclude"/>
<desc>Set up a kiosk-like, single-application system.</desc>
</info>
<title>Configure single-application mode</title>
<p>Single-application mode is a modified GNOME Shell which configures the
Shell as an interactive kiosk. The administrator locks down some behavior to
make the standard desktop more restrictive for users, letting them focus on
selected features.</p>
<p>Set up single-application mode for a wide range of functions in a number
of fields (from communication to entertainment or education), and use it as a
self-serve machine, event manager, registration point, and so on.</p>
<steps>
<title>Set up single-application mode</title>
<item>
<p>Lock down settings to prevent printing, terminal access, and so on.</p>
<list type="disc">
<item><p><link xref="lockdown-command-line" /></p></item>
<item><p><link xref="lockdown-printing" /></p></item>
<item><p><link xref="lockdown-file-saving" /></p></item>
<item><p><link xref="lockdown-repartitioning" /></p></item>
</list>
</item>
<item>
<p>Configure automatic login in the <file>/etc/gdm/custom.conf</file>
file for the user.</p>
<p>See <link xref="login-automatic" /> for more information.</p>
</item>
<item>
<p>Create the following files with the listed content:</p>
<terms>
<item>
<title>
<file>/usr/share/applications/org.gnome.Kiosk.Script.desktop</file>
</title>
<code>
[Desktop Entry]
Name=Kiosk
Type=Application
Exec=gnome-kiosk
</code>
</item>
<item>
<title>
<file>/usr/share/applications/org.gnome.Kiosk.WindowManager.desktop</file>
</title>
<code>
[Desktop Entry]
Type=Application
Name=Mutter
Comment=Window manager
Exec=/usr/bin/mutter
Categories=GNOME;GTK;Core;
OnlyShowIn=GNOME;
NoDisplay=true
X-GNOME-Autostart-Phase=DisplayServer
X-GNOME-Provides=windowmanager;
X-GNOME-Autostart-Notify=true
X-GNOME-AutoRestart=false
X-GNOME-HiddenUnderSystemd=true
</code>
</item>
<item>
<title>
<file>/usr/share/gnome-session/sessions/gnome-kiosk.session</file>
</title>
<code>
[GNOME Session]
Name=Kiosk
RequiredComponents=org.gnome.Kiosk.WindowManager;org.gnome.Kiosk.Script;
</code>
</item>
<item>
<title>
<file>/usr/share/X11/xorg.conf.d/20-gnome-kiosk.conf</file>
</title>
<code>
Section "ServerFlags"
Option "DontVTSwitch" "on"
EndSection
</code>
</item>
<item>
<title>
<file>/usr/share/xsessions/org.gnome.Kiosk.desktop</file>
</title>
<code>
[Desktop Entry]
Name=Kiosk
Comment=Kiosk mode
Exec=/usr/bin/gnome-session --session=gnome-kiosk
DesktopNames=GNOME-Kiosk;GNOME;
</code>
</item>
</terms>
</item>
<item>
<p>As the user that will open the single-application session,
create the <file>/home/<var>user</var>/.local/bin/gnome-kiosk</file> file:</p>
<code>
[<var>user</var>]$ mkdir -p ~/.local/bin
[<var>user</var>]$ touch ~/.local/bin/gnome-kiosk
</code>
</item>
<item>
<p>Edit the <file>/home/<var>user</var>/.local/bin/gnome-kiosk</file> file and enter
the executable name of the application that you want to launch in single-application mode.</p>
<p>For example, to launch the Firefox browser in single-application mode,
enter the following content:</p>
<code>
#!/bin/sh
while true; do
firefox --kiosk https://example.org
done
</code>
<p>The <code>while true</code> loop ensures that the application restarts
if it terminates for any reason.</p>
</item>
<item>
<p>Make the file executable:</p>
<code>
[<var>user</var>]$ chmod +x ~/.local/bin/gnome-kiosk
</code>
</item>
<item>
<p>If you created the file or its containing directories as a different
user than the single-application user, such as root, ensure that the file
has the correct permissions:</p>
<code>
# chown -R <var>user</var>:<var>group</var> ~<var>user</var>/.local
</code>
</item>
<item>
<p>At the GNOME login screen, select the Kiosk session from the cogwheel
button menu and log in as the single-application user.</p>
</item>
</steps>
</page>
|
