mirror of
https://gitlab.alpinelinux.org/alpine/aports.git
synced 2025-09-21 05:31:25 +02:00
39 lines
1.4 KiB
Diff
39 lines
1.4 KiB
Diff
From: Jakub Jirutka <jakub@jirutka.cz>
|
|
Date: Sun, 26 Dec 2021 01:19:49 +0100
|
|
Subject: [PATCH] Adjust DBus rules for Alpine
|
|
|
|
- Allow users in group netdev to control ConnMan using connmanctl.
|
|
- Allow running OpenVPN plugin under user 'openvpn' instead of root.
|
|
|
|
--- a/src/connman-dbus.conf
|
|
+++ b/src/connman-dbus.conf
|
|
@@ -8,6 +8,10 @@
|
|
<allow send_interface="net.connman.Counter"/>
|
|
<allow send_interface="net.connman.Notification"/>
|
|
</policy>
|
|
+ <!-- Allow users in group netdev to control ConnMan using connmanctl. -->
|
|
+ <policy group="netdev">
|
|
+ <allow send_destination="net.connman"/>
|
|
+ </policy>
|
|
<policy at_console="true">
|
|
<allow send_destination="net.connman"/>
|
|
</policy>
|
|
--- a/vpn/vpn-dbus.conf
|
|
+++ b/vpn/vpn-dbus.conf
|
|
@@ -6,6 +6,15 @@
|
|
<allow send_destination="net.connman.vpn"/>
|
|
<allow send_interface="net.connman.vpn.Agent"/>
|
|
</policy>
|
|
+ <!-- Allow OpenVPN plugin started under user 'openvpn' (by setting DACPrivileges)
|
|
+ to send notification to connman-vpnd. -->
|
|
+ <policy user="openvpn">
|
|
+ <allow send_destination="net.connman.vpn" send_interface="net.connman.Task"/>
|
|
+ </policy>
|
|
+ <!-- Allow users in group netdev to control ConnMan using connmanctl. -->
|
|
+ <policy group="netdev">
|
|
+ <allow send_destination="net.connman.vpn"/>
|
|
+ </policy>
|
|
<policy at_console="true">
|
|
<allow send_destination="net.connman.vpn"/>
|
|
</policy>
|