Bjørn Lie
7d1d4dc93a
- polkit_rules_usability.patch: Improve usability by allowing members of the group 'wheel' to bypass polkit authentication checks when locally logged in (bnc#984817). This adds a few polkit actions to the rules that are not covered by upstream, because they are set to 'yes' for active users by default. On SUSE we require 'auth_admin' for regular users, however. OBS-URL: https://build.opensuse.org/request/show/624834 OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/flatpak?expand=0&rev=53
17 lines
1021 B
Diff
17 lines
1021 B
Diff
Index: flatpak-0.11.8.3/system-helper/org.freedesktop.Flatpak.rules.in
|
|
===================================================================
|
|
--- flatpak-0.11.8.3.orig/system-helper/org.freedesktop.Flatpak.rules.in
|
|
+++ flatpak-0.11.8.3/system-helper/org.freedesktop.Flatpak.rules.in
|
|
@@ -3,7 +3,10 @@ polkit.addRule(function(action, subject)
|
|
action.id == "org.freedesktop.Flatpak.runtime-install"||
|
|
action.id == "org.freedesktop.Flatpak.app-uninstall" ||
|
|
action.id == "org.freedesktop.Flatpak.runtime-uninstall" ||
|
|
- action.id == "org.freedesktop.Flatpak.modify-repo") &&
|
|
+ action.id == "org.freedesktop.Flatpak.modify-repo" ||
|
|
+ action.id == "org.freedesktop.Flatpak.app-update" ||
|
|
+ action.id == "org.freedesktop.Flatpak.runtime-update" ||
|
|
+ action.id == "org.freedesktop.Flatpak.appstream-update") &&
|
|
subject.active == true && subject.local == true &&
|
|
subject.isInGroup("@privileged_group@")) {
|
|
return polkit.Result.YES;
|