Heads up for login managers
David Zeuthen
davidz at redhat.com
Mon Feb 12 20:42:35 UTC 2007
On Mon, 2007-02-12 at 21:31 +0100, Miloslav Trmac wrote:
> David Zeuthen napsal(a):
> > We can't use uid for this because you might be
> > logged in multiple times and at different seats. For example; if you're
> > inactive at seat A you should not be able to invoke Mount() on HAL on a
> > storage device that is exclusive to seat A just because you're active on
> > seat B.
> That can be prevented by allowing the access to Mount(seat_A, *) only to
> the UID active at seat A.
But with D-Bus we only get the uid and pid of the caller; how do we
figure out if the caller is from a session on Seat A or Seat B? That's
perfectly possible since the same user is logged in at A and B.
(answer: we use the pid to look up XDG_SESSION_COOKIE)
David
More information about the Fedora-maintainers
mailing list