diff options
| author | David Zeuthen <davidz@redhat.com> | 2011-10-18 15:45:40 -0400 |
|---|---|---|
| committer | David Zeuthen <davidz@redhat.com> | 2011-10-18 15:45:40 -0400 |
| commit | 5cd68a3aa8d5d0fdbbd3baef0601350bd43a0e4d (patch) | |
| tree | 181997e6f57516ecee40afcc412d651667f54a7f /docs/man/polkit.xml | |
| parent | 3811e51b81320a574bb31aa64b6af56340012527 (diff) | |
| download | polkit-5cd68a3aa8d5d0fdbbd3baef0601350bd43a0e4d.tar.gz | |
Bug 41025 – Add org.freedesktop.policykit.owner annotation
This allows daemons running as a designated uid to check
authorizations. Based on a patch from Christopher James Halse Rogers
<chalserogers@gmail.com>.
https://bugs.freedesktop.org/show_bug.cgi?id=41025
Signed-off-by: David Zeuthen <davidz@redhat.com>
Diffstat (limited to 'docs/man/polkit.xml')
| -rw-r--r-- | docs/man/polkit.xml | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/docs/man/polkit.xml b/docs/man/polkit.xml index bfa5ccd..ae67f7c 100644 --- a/docs/man/polkit.xml +++ b/docs/man/polkit.xml @@ -417,6 +417,19 @@ System Context | | single lock button that should unlock multiple actions from distinct mechanisms. </para> + <para> + The <literal>org.freedesktop.policykit.owner</literal> + annotation can be used to define a set of users who can query + whether a client is authorized to perform this action. If this + annotation is not specified then only root can query whether a + client running as a different user is authorized for an action. + The value of this annotation is a string containing a space + separated list of <link + linkend="PolkitIdentity-struct">PolkitIdentity</link> entries, + for example <literal>"unix-user:42 unix-user:colord"</literal>. + A typical use of this annotation is for a daemon process that + runs as a system user rather than root. + </para> </refsect2> </refsect1> |