From 875fc6d6c243f51bb94daa7f562be74da59cf5a8 Mon Sep 17 00:00:00 2001 From: David Zeuthen Date: Tue, 22 May 2012 14:00:36 -0400 Subject: Clarify docs a bit Signed-off-by: David Zeuthen --- docs/man/polkit.xml | 14 ++++++-------- 1 file changed, 6 insertions(+), 8 deletions(-) diff --git a/docs/man/polkit.xml b/docs/man/polkit.xml index 0d560dc..e36f05a 100644 --- a/docs/man/polkit.xml +++ b/docs/man/polkit.xml @@ -25,14 +25,13 @@ polkit provides an authorization API intended to be used by privileged programs (MECHANISMS) offering service - to unprivileged programs (SUBJECTS) through some - form of IPC mechanism such as D-Bus or Unix pipes. In this + to unprivileged programs (SUBJECTS) often through + some form of inter-process communication mechanism. In this scenario, the mechanism typically treats the subject as untrusted. For every request from a subject, the mechanism needs to determine if the request is authorized or if it should refuse to service the subject. Using the polkit APIs, a mechanism can - offload this decision to a trusted party: The polkit - Authority. + offload this decision to a trusted party: The polkit Authority. @@ -52,11 +51,10 @@ Authority (implemented as a service on the system message bus) and an Authentication Agent per user session (provided and started by the - user's graphical environment, for example GNOME). Actions - are defined by applications and vendors, sites and system + user's graphical environment). Actions are + defined by applications. Vendors, sites and system administrators can control authorization policy through - Authorization Rules + Authorization Rules. -- cgit v1.2.1