login_manager/SessionManager.conf - mirrors/cros/chromiumos/platform2 - Git at Google

 <!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN"
   "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
 <!--
   Copyright (c) 2012 The Chromium OS Authors. All rights reserved.
   Use of this source code is governed by a BSD-style license that can be
   found in the LICENSE file.
 -->
 <busconfig>
   <policy user="root">
     <allow own="org.chromium.SessionManager" />
     <allow send_destination="org.chromium.SessionManager" />

     <!-- Only root should be allowed to call InitMachineInfo. -->
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="InitMachineInfo"/>
   </policy>

   <!--
     To prevent the use of unsigned policy for persisting a browser exploit,
     writing unsigned policy is restricted to the authpolicy daemon.
   -->
   <policy user="authpolicyd">
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StoreUnsignedPolicy"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StoreUnsignedPolicyForUser"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StoreUnsignedPolicyEx"/>
   </policy>

   <policy user="chronos">
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="EmitLoginPromptVisible"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StartSession"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StopSession"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="LockScreen"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="HandleLockScreenShown"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="HandleLockScreenDismissed"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="RestartJob"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StorePolicy"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="RetrievePolicy"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StorePolicyEx"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="RetrievePolicyEx"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StorePolicyForUser"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="RetrievePolicyForUser"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="RetrievePolicyForUserWithoutSession"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StoreDeviceLocalAccountPolicy"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="RetrieveDeviceLocalAccountPolicy"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="RetrieveSessionState"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="RetrieveActiveSessions"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="IsGuestSessionActive"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StartDeviceWipe"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StartTPMFirmwareUpdate"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="SetFlagsForUser"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="GetServerBackedStateKeys"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="HandleSupervisedUserCreationStarting"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="HandleSupervisedUserCreationFinished"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StartArcInstance"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StopArcInstance"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="SetArcCpuRestriction"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="EmitArcBooted"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="GetArcStartTimeTicks"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StartContainer"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StopContainer"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="RemoveArcData"/>
   </policy>

   <policy user="power">
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="LockScreen"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="RetrieveSessionState"/>
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="StopSession"/>
   </policy>

   <policy user="biod">
     <allow send_destination="org.chromium.SessionManager"
            send_interface="org.chromium.SessionManagerInterface"
            send_member="RetrieveActiveSessions"/>
   </policy>
 </busconfig>
	<!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN"
	"http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
	<!--
	Copyright (c) 2012 The Chromium OS Authors. All rights reserved.
	Use of this source code is governed by a BSD-style license that can be
	found in the LICENSE file.
	-->
	<busconfig>
	<policy user="root">
	<allow own="org.chromium.SessionManager" />
	<allow send_destination="org.chromium.SessionManager" />

	<!-- Only root should be allowed to call InitMachineInfo. -->
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="InitMachineInfo"/>
	</policy>

	<!--
	To prevent the use of unsigned policy for persisting a browser exploit,
	writing unsigned policy is restricted to the authpolicy daemon.
	-->
	<policy user="authpolicyd">
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StoreUnsignedPolicy"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StoreUnsignedPolicyForUser"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StoreUnsignedPolicyEx"/>
	</policy>

	<policy user="chronos">
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="EmitLoginPromptVisible"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StartSession"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StopSession"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="LockScreen"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="HandleLockScreenShown"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="HandleLockScreenDismissed"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="RestartJob"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StorePolicy"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="RetrievePolicy"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StorePolicyEx"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="RetrievePolicyEx"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StorePolicyForUser"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="RetrievePolicyForUser"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="RetrievePolicyForUserWithoutSession"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StoreDeviceLocalAccountPolicy"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="RetrieveDeviceLocalAccountPolicy"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="RetrieveSessionState"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="RetrieveActiveSessions"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="IsGuestSessionActive"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StartDeviceWipe"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StartTPMFirmwareUpdate"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="SetFlagsForUser"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="GetServerBackedStateKeys"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="HandleSupervisedUserCreationStarting"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="HandleSupervisedUserCreationFinished"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StartArcInstance"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StopArcInstance"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="SetArcCpuRestriction"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="EmitArcBooted"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="GetArcStartTimeTicks"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StartContainer"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StopContainer"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="RemoveArcData"/>
	</policy>

	<policy user="power">
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="LockScreen"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="RetrieveSessionState"/>
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="StopSession"/>
	</policy>

	<policy user="biod">
	<allow send_destination="org.chromium.SessionManager"
	send_interface="org.chromium.SessionManagerInterface"
	send_member="RetrieveActiveSessions"/>
	</policy>
	</busconfig>