2007-08-21 04:54:04 -07:00
|
|
|
<?xml version="1.0" encoding="UTF-8"?>
|
|
|
|
|
<!DOCTYPE policyconfig PUBLIC
|
|
|
|
|
"-//freedesktop//DTD PolicyKit Policy Configuration 1.0//EN"
|
|
|
|
|
"http://www.freedesktop.org/standards/PolicyKit/1.0/policyconfig.dtd">
|
|
|
|
|
<policyconfig>
|
|
|
|
|
|
2008-02-26 12:02:02 -08:00
|
|
|
<!--
|
|
|
|
|
Policy definitions for PackageKit system actions.
|
2009-06-16 09:36:23 -07:00
|
|
|
Copyright (c) 2007-2009 Richard Hughes <richard@hughsie.com>
|
2008-02-26 12:02:02 -08:00
|
|
|
-->
|
2007-08-21 04:54:04 -07:00
|
|
|
|
2008-02-26 11:18:03 -08:00
|
|
|
<vendor>The PackageKit Project</vendor>
|
|
|
|
|
<vendor_url>http://www.packagekit.org/</vendor_url>
|
|
|
|
|
<icon_name>package-x-generic</icon_name>
|
|
|
|
|
|
2008-11-24 09:47:35 -08:00
|
|
|
<action id="org.freedesktop.packagekit.cancel-foreign">
|
2009-07-15 02:22:02 -07:00
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users are allowed to cancel their own task without
|
|
|
|
|
authentication, but a different user id needs the admin password
|
|
|
|
|
to cancel another users task.
|
|
|
|
|
-->
|
2008-11-24 09:47:35 -08:00
|
|
|
<_description>Cancel foreign task</_description>
|
|
|
|
|
<_message>Authentication is required to cancel a task that was not started by yourself</_message>
|
2009-06-18 00:46:12 -07:00
|
|
|
<icon_name>package-x-generic</icon_name>
|
2008-11-24 09:47:35 -08:00
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2009-06-16 09:36:23 -07:00
|
|
|
<allow_active>auth_admin_keep</allow_active>
|
2008-11-24 09:47:35 -08:00
|
|
|
</defaults>
|
|
|
|
|
</action>
|
|
|
|
|
|
2008-07-19 01:00:24 -07:00
|
|
|
<action id="org.freedesktop.packagekit.package-install">
|
2009-07-15 02:22:02 -07:00
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users do not need authentication to install signed packages
|
|
|
|
|
from signed repositories, as this cannot exploit a system.
|
|
|
|
|
- Paranoid users (or parents!) can change this to 'auth_admin' or
|
|
|
|
|
'auth_admin_keep'.
|
|
|
|
|
-->
|
2008-11-24 09:47:35 -08:00
|
|
|
<_description>Install signed package</_description>
|
2014-03-19 05:01:24 -07:00
|
|
|
<_message>Authentication is required to install software</_message>
|
2009-06-18 00:46:12 -07:00
|
|
|
<icon_name>package-x-generic</icon_name>
|
2007-08-21 04:54:04 -07:00
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2013-05-28 06:34:59 -07:00
|
|
|
<allow_active>auth_admin_keep</allow_active>
|
2007-08-21 04:54:04 -07:00
|
|
|
</defaults>
|
|
|
|
|
</action>
|
|
|
|
|
|
2008-07-19 01:00:24 -07:00
|
|
|
<action id="org.freedesktop.packagekit.package-install-untrusted">
|
2009-07-15 02:22:02 -07:00
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users require admin authentication to install untrusted or
|
|
|
|
|
unrecognised packages, as allowing users to do this without a
|
|
|
|
|
password would be a massive security hole.
|
|
|
|
|
- This is not retained as each package should be authenticated.
|
|
|
|
|
-->
|
2008-04-22 11:08:09 -07:00
|
|
|
<_description>Install untrusted local file</_description>
|
2014-03-19 05:01:24 -07:00
|
|
|
<_message>Authentication is required to install untrusted software</_message>
|
2009-06-18 00:46:12 -07:00
|
|
|
<icon_name>package-x-generic</icon_name>
|
2008-04-07 01:40:39 -07:00
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2008-04-14 16:02:05 -07:00
|
|
|
<allow_active>auth_admin</allow_active>
|
2008-04-07 01:40:39 -07:00
|
|
|
</defaults>
|
2012-02-20 11:46:54 -08:00
|
|
|
<annotate key="org.freedesktop.policykit.imply">org.freedesktop.packagekit.package-install</annotate>
|
2008-04-07 01:40:39 -07:00
|
|
|
</action>
|
|
|
|
|
|
2014-10-02 01:46:30 -07:00
|
|
|
<action id="org.freedesktop.packagekit.package-reinstall">
|
|
|
|
|
<!-- SECURITY
|
|
|
|
|
- Normal users require admin authentication to reinstall packages.
|
|
|
|
|
- Authorization to install packages does not imply permissions to
|
|
|
|
|
reinstall them and vice versa.
|
|
|
|
|
- If a package in question is not trusted, user's permission to install
|
|
|
|
|
untrusted package will be checked as well.
|
|
|
|
|
-->
|
|
|
|
|
<_description>Install already installed package again</_description>
|
|
|
|
|
<_message>Authentication is required to reinstall software</_message>
|
|
|
|
|
<icon_name>package-x-generic</icon_name>
|
|
|
|
|
<defaults>
|
|
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
|
|
|
|
<allow_active>auth_admin_keep</allow_active>
|
|
|
|
|
</defaults>
|
|
|
|
|
</action>
|
|
|
|
|
|
|
|
|
|
<action id="org.freedesktop.packagekit.package-downgrade">
|
|
|
|
|
<!-- SECURITY
|
|
|
|
|
- Normal users require admin authentication to downgrade packages.
|
|
|
|
|
- User authorized to dowgrade signed packages is authorized to install
|
|
|
|
|
them as well.
|
|
|
|
|
- If a package in question is not trusted, user's permission to install
|
|
|
|
|
untrusted package will be checked as well.
|
|
|
|
|
-->
|
|
|
|
|
<_description>Install older version of installed package</_description>
|
|
|
|
|
<_message>Authentication is required to downgrade software</_message>
|
|
|
|
|
<icon_name>package-x-generic</icon_name>
|
|
|
|
|
<defaults>
|
|
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
|
|
|
|
<allow_active>auth_admin_keep</allow_active>
|
|
|
|
|
</defaults>
|
|
|
|
|
<annotate key="org.freedesktop.policykit.imply">org.freedesktop.packagekit.package-install</annotate>
|
|
|
|
|
</action>
|
|
|
|
|
|
2008-07-19 01:00:24 -07:00
|
|
|
<action id="org.freedesktop.packagekit.system-trust-signing-key">
|
2009-07-15 02:22:02 -07:00
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users require admin authentication to add signing keys.
|
|
|
|
|
- This implies adding an explicit trust, and should not be granted
|
|
|
|
|
without a secure authentication.
|
|
|
|
|
- This is not kept as each package should be authenticated.
|
|
|
|
|
-->
|
2014-03-19 05:01:24 -07:00
|
|
|
<_description>Trust a key used for signing software</_description>
|
|
|
|
|
<_message>Authentication is required to consider a key used for signing software as trusted</_message>
|
2009-06-18 00:46:12 -07:00
|
|
|
<icon_name>package-x-generic</icon_name>
|
2008-02-18 16:14:01 -08:00
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2008-04-14 12:54:21 -07:00
|
|
|
<allow_active>auth_admin</allow_active>
|
2007-09-21 08:45:54 -07:00
|
|
|
</defaults>
|
|
|
|
|
</action>
|
|
|
|
|
|
2008-07-19 01:00:24 -07:00
|
|
|
<action id="org.freedesktop.packagekit.package-eula-accept">
|
2009-07-15 02:22:02 -07:00
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users do not require admin authentication to accept new
|
|
|
|
|
licence agreements.
|
|
|
|
|
- Change this to 'auth_admin' for environments where users should not
|
|
|
|
|
be given the option to make legal decisions.
|
|
|
|
|
-->
|
2008-04-17 04:05:51 -07:00
|
|
|
<_description>Accept EULA</_description>
|
2008-04-18 04:36:20 -07:00
|
|
|
<_message>Authentication is required to accept a EULA</_message>
|
2009-06-18 00:46:12 -07:00
|
|
|
<icon_name>package-x-generic</icon_name>
|
2008-04-17 04:05:51 -07:00
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2008-07-19 01:00:24 -07:00
|
|
|
<allow_active>yes</allow_active>
|
2007-08-25 09:52:23 -07:00
|
|
|
</defaults>
|
|
|
|
|
</action>
|
|
|
|
|
|
2008-07-19 01:00:24 -07:00
|
|
|
<action id="org.freedesktop.packagekit.package-remove">
|
2009-07-15 02:22:02 -07:00
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users require admin authentication to remove packages as
|
|
|
|
|
this can make the system unbootable or stop other applications from
|
|
|
|
|
working.
|
|
|
|
|
- Be sure to close the tool used to remove the packages after the
|
|
|
|
|
admin authentication has been obtained, otherwise packages can still
|
|
|
|
|
be removed. If this is not possible, change this authentication to
|
|
|
|
|
'auth_admin'.
|
|
|
|
|
-->
|
2008-02-26 15:36:56 -08:00
|
|
|
<_description>Remove package</_description>
|
2014-03-19 05:01:24 -07:00
|
|
|
<_message>Authentication is required to remove software</_message>
|
2009-06-18 00:46:12 -07:00
|
|
|
<icon_name>package-x-generic</icon_name>
|
2007-08-21 04:54:04 -07:00
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2009-06-16 09:36:23 -07:00
|
|
|
<allow_active>auth_admin_keep</allow_active>
|
2007-08-21 04:54:04 -07:00
|
|
|
</defaults>
|
2012-02-20 11:48:49 -08:00
|
|
|
<annotate key="org.freedesktop.policykit.imply">org.freedesktop.packagekit.package-install</annotate>
|
2007-08-21 04:54:04 -07:00
|
|
|
</action>
|
|
|
|
|
|
2008-07-19 01:00:24 -07:00
|
|
|
<action id="org.freedesktop.packagekit.system-update">
|
2009-07-15 02:22:02 -07:00
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users do not require admin authentication to update the
|
|
|
|
|
system as the packages will be signed, and the action is required
|
|
|
|
|
to update the system when unattended.
|
|
|
|
|
- Changing this to anything other than 'yes' will break unattended
|
|
|
|
|
updates.
|
|
|
|
|
-->
|
2014-03-19 05:01:24 -07:00
|
|
|
<_description>Update software</_description>
|
|
|
|
|
<_message>Authentication is required to update software</_message>
|
2009-06-18 00:46:12 -07:00
|
|
|
<icon_name>package-x-generic</icon_name>
|
2007-08-21 04:54:04 -07:00
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2009-06-16 09:36:23 -07:00
|
|
|
<allow_active>yes</allow_active>
|
2007-08-21 04:54:04 -07:00
|
|
|
</defaults>
|
|
|
|
|
</action>
|
|
|
|
|
|
2008-08-04 16:10:19 -07:00
|
|
|
<action id="org.freedesktop.packagekit.system-sources-configure">
|
2009-07-15 02:22:02 -07:00
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users require admin authentication to enable or disable
|
|
|
|
|
software sources as this can be used to enable new updates or
|
|
|
|
|
install different versions of software.
|
|
|
|
|
-->
|
2008-04-18 04:36:20 -07:00
|
|
|
<_description>Change software source parameters</_description>
|
|
|
|
|
<_message>Authentication is required to change software source parameters</_message>
|
2009-06-18 00:46:12 -07:00
|
|
|
<icon_name>package-x-generic</icon_name>
|
2007-10-13 16:04:24 -07:00
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2009-06-16 09:36:23 -07:00
|
|
|
<allow_active>auth_admin_keep</allow_active>
|
2007-10-13 16:04:24 -07:00
|
|
|
</defaults>
|
|
|
|
|
</action>
|
|
|
|
|
|
2008-07-19 01:00:24 -07:00
|
|
|
<action id="org.freedesktop.packagekit.system-sources-refresh">
|
2009-07-15 02:22:02 -07:00
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users do not require admin authentication to refresh the
|
|
|
|
|
cache, as this doesn't actually install or remove software.
|
|
|
|
|
-->
|
2008-07-19 01:00:24 -07:00
|
|
|
<_description>Refresh system sources</_description>
|
|
|
|
|
<_message>Authentication is required to refresh the system sources</_message>
|
2009-06-18 00:46:12 -07:00
|
|
|
<icon_name>package-x-generic</icon_name>
|
2007-10-26 06:22:31 -07:00
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2007-10-26 06:22:31 -07:00
|
|
|
<allow_active>yes</allow_active>
|
|
|
|
|
</defaults>
|
|
|
|
|
</action>
|
2008-05-16 06:33:53 -07:00
|
|
|
|
2008-07-19 01:00:24 -07:00
|
|
|
<action id="org.freedesktop.packagekit.system-network-proxy-configure">
|
2009-07-15 02:22:02 -07:00
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users do not require admin authentication to set the proxy
|
|
|
|
|
used for downloading packages.
|
|
|
|
|
-->
|
2008-05-16 06:33:53 -07:00
|
|
|
<_description>Set network proxy</_description>
|
2014-03-19 05:01:24 -07:00
|
|
|
<_message>Authentication is required to set the network proxy used for downloading software</_message>
|
2009-06-18 00:46:12 -07:00
|
|
|
<icon_name>preferences-system-network-proxy</icon_name>
|
2008-05-16 06:33:53 -07:00
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2008-05-16 06:33:53 -07:00
|
|
|
<allow_active>yes</allow_active>
|
|
|
|
|
</defaults>
|
|
|
|
|
</action>
|
|
|
|
|
|
2009-08-20 00:33:14 -07:00
|
|
|
<action id="org.freedesktop.packagekit.device-rebind">
|
|
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users require admin authentication to rebind a driver
|
|
|
|
|
so that it works after we install firmware.
|
|
|
|
|
- This should not be set to 'yes' as unprivileged users could then
|
|
|
|
|
try to rebind drivers in use, for instance security authentication
|
|
|
|
|
devices.
|
|
|
|
|
-->
|
|
|
|
|
<_description>Reload a device</_description>
|
|
|
|
|
<_message>Authentication is required to reload the device with a new driver</_message>
|
|
|
|
|
<icon_name>package-x-generic</icon_name>
|
|
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2013-04-25 08:59:42 -07:00
|
|
|
<allow_active>yes</allow_active>
|
2009-08-20 00:33:14 -07:00
|
|
|
</defaults>
|
|
|
|
|
<annotate key="org.freedesktop.policykit.exec.path">/usr/sbin/pk-device-rebind</annotate>
|
|
|
|
|
</action>
|
|
|
|
|
|
2011-12-23 03:18:19 -08:00
|
|
|
<action id="org.freedesktop.packagekit.repair-system">
|
2011-12-15 00:21:20 -08:00
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users require admin authentication to repair the system
|
|
|
|
|
since this can make the system unbootable or stop other
|
|
|
|
|
applications from working.
|
|
|
|
|
-->
|
|
|
|
|
<_description>Repair System</_description>
|
|
|
|
|
<_message>Authentication is required to repair the installed software</_message>
|
|
|
|
|
<icon_name>package-x-generic</icon_name>
|
|
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2011-12-15 00:21:20 -08:00
|
|
|
<allow_active>auth_admin</allow_active>
|
|
|
|
|
</defaults>
|
|
|
|
|
</action>
|
|
|
|
|
|
2012-06-01 15:01:49 -07:00
|
|
|
<action id="org.freedesktop.packagekit.trigger-offline-update">
|
|
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users are able to ask updates to be installed at
|
|
|
|
|
early boot time without a password.
|
|
|
|
|
-->
|
|
|
|
|
<_description>Trigger offline updates</_description>
|
|
|
|
|
<_message>Authentication is required to trigger offline updates</_message>
|
|
|
|
|
<icon_name>package-x-generic</icon_name>
|
|
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2012-06-01 15:01:49 -07:00
|
|
|
<allow_active>yes</allow_active>
|
|
|
|
|
</defaults>
|
|
|
|
|
</action>
|
|
|
|
|
|
2012-06-04 07:47:30 -07:00
|
|
|
<action id="org.freedesktop.packagekit.clear-offline-update">
|
|
|
|
|
<!-- SECURITY:
|
|
|
|
|
- Normal users are able to clear the updates message that is
|
|
|
|
|
shown after an updates are applied at boot time.
|
|
|
|
|
-->
|
|
|
|
|
<_description>Clear offline update message</_description>
|
|
|
|
|
<_message>Authentication is required to clear the offline updates message</_message>
|
|
|
|
|
<icon_name>package-x-generic</icon_name>
|
|
|
|
|
<defaults>
|
2014-05-04 23:17:01 -07:00
|
|
|
<allow_any>auth_admin</allow_any>
|
|
|
|
|
<allow_inactive>auth_admin</allow_inactive>
|
2012-06-04 07:47:30 -07:00
|
|
|
<allow_active>yes</allow_active>
|
|
|
|
|
</defaults>
|
|
|
|
|
</action>
|
|
|
|
|
|
2007-08-21 04:54:04 -07:00
|
|
|
</policyconfig>
|
2008-02-26 12:02:02 -08:00
|
|
|
|
