]> git.ipfire.org Git - thirdparty/systemd.git/blame - src/login/org.freedesktop.login1.policy
projects / thirdparty / systemd.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
polkit: turn "interactive" flag to polkit APIs into a proper flags field (#31715)
[thirdparty/systemd.git] / src / login / org.freedesktop.login1.policy
CommitLineData
91f9dcaf
LP		 1<?xml version="1.0" encoding="UTF-8"?> <!--*-nxml-*-->
2<!DOCTYPE policyconfig PUBLIC "-//freedesktop//DTD PolicyKit Policy Configuration 1.0//EN"
41d6f3bf 3 "https://www.freedesktop.org/standards/PolicyKit/1/policyconfig.dtd">
91f9dcaf
LP		 4
5<!--
db9ecf05 6 SPDX-License-Identifier: LGPL-2.1-or-later
d9215cd8 7
91f9dcaf
LP		 8 This file is part of systemd.
9
10 systemd is free software; you can redistribute it and/or modify it
5430f7f2
LP		 11 under the terms of the GNU Lesser General Public License as published by
12 the Free Software Foundation; either version 2.1 of the License, or
91f9dcaf
LP		 13 (at your option) any later version.
14-->
15
16<policyconfig>
17
18 <vendor>The systemd Project</vendor>
d6e2c1ab 19 <vendor_url>https://systemd.io</vendor_url>
91f9dcaf 20
b14eda96 21 <action id="org.freedesktop.login1.inhibit-block-shutdown">
264d8dcc
GH		 22 <description gettext-domain="systemd">Allow applications to inhibit system shutdown</description>
23 <message gettext-domain="systemd">Authentication is required for an application to inhibit system shutdown.</message>
f8e2fb7b 24 <defaults>
beaafb2e
LP		 25 <allow_any>no</allow_any>
26 <allow_inactive>yes</allow_inactive>
27 <allow_active>yes</allow_active>
28 </defaults>
39600155 29 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.inhibit-delay-shutdown org.freedesktop.login1.inhibit-block-sleep org.freedesktop.login1.inhibit-delay-sleep org.freedesktop.login1.inhibit-block-idle</annotate>
beaafb2e
LP		 30 </action>
31
32 <action id="org.freedesktop.login1.inhibit-delay-shutdown">
264d8dcc
GH		 33 <description gettext-domain="systemd">Allow applications to delay system shutdown</description>
34 <message gettext-domain="systemd">Authentication is required for an application to delay system shutdown.</message>
beaafb2e
LP		 35 <defaults>
36 <allow_any>yes</allow_any>
f8e2fb7b
LP		 37 <allow_inactive>yes</allow_inactive>
38 <allow_active>yes</allow_active>
39 </defaults>
39600155 40 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.inhibit-delay-sleep</annotate>
f8e2fb7b
LP		 41 </action>
42
b14eda96 43 <action id="org.freedesktop.login1.inhibit-block-sleep">
264d8dcc
GH		 44 <description gettext-domain="systemd">Allow applications to inhibit system sleep</description>
45 <message gettext-domain="systemd">Authentication is required for an application to inhibit system sleep.</message>
b14eda96 46 <defaults>
beaafb2e
LP		 47 <allow_any>no</allow_any>
48 <allow_inactive>yes</allow_inactive>
49 <allow_active>yes</allow_active>
50 </defaults>
39600155 51 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.inhibit-delay-sleep org.freedesktop.login1.inhibit-block-idle</annotate>
beaafb2e
LP		 52 </action>
53
54 <action id="org.freedesktop.login1.inhibit-delay-sleep">
264d8dcc
GH		 55 <description gettext-domain="systemd">Allow applications to delay system sleep</description>
56 <message gettext-domain="systemd">Authentication is required for an application to delay system sleep.</message>
beaafb2e
LP		 57 <defaults>
58 <allow_any>yes</allow_any>
b14eda96
LP		 59 <allow_inactive>yes</allow_inactive>
60 <allow_active>yes</allow_active>
61 </defaults>
62 </action>
63
64 <action id="org.freedesktop.login1.inhibit-block-idle">
264d8dcc
GH		 65 <description gettext-domain="systemd">Allow applications to inhibit automatic system suspend</description>
66 <message gettext-domain="systemd">Authentication is required for an application to inhibit automatic system suspend.</message>
b14eda96
LP		 67 <defaults>
68 <allow_any>yes</allow_any>
69 <allow_inactive>yes</allow_inactive>
70 <allow_active>yes</allow_active>
71 </defaults>
72 </action>
73
beaafb2e 74 <action id="org.freedesktop.login1.inhibit-handle-power-key">
264d8dcc
GH		 75 <description gettext-domain="systemd">Allow applications to inhibit system handling of the power key</description>
76 <message gettext-domain="systemd">Authentication is required for an application to inhibit system handling of the power key.</message>
b14eda96 77 <defaults>
beaafb2e 78 <allow_any>no</allow_any>
b14eda96
LP		 79 <allow_inactive>yes</allow_inactive>
80 <allow_active>yes</allow_active>
81 </defaults>
39600155 82 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.inhibit-handle-suspend-key org.freedesktop.login1.inhibit-handle-hibernate-key org.freedesktop.login1.inhibit-handle-lid-switch</annotate>
b14eda96
LP		 83 </action>
84
8e7fd6ad 85 <action id="org.freedesktop.login1.inhibit-handle-suspend-key">
264d8dcc
GH		 86 <description gettext-domain="systemd">Allow applications to inhibit system handling of the suspend key</description>
87 <message gettext-domain="systemd">Authentication is required for an application to inhibit system handling of the suspend key.</message>
8e7fd6ad
LP		 88 <defaults>
89 <allow_any>no</allow_any>
90 <allow_inactive>yes</allow_inactive>
91 <allow_active>yes</allow_active>
92 </defaults>
39600155 93 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.inhibit-handle-hibernate-key org.freedesktop.login1.inhibit-handle-lid-switch</annotate>
8e7fd6ad
LP		 94 </action>
95
96 <action id="org.freedesktop.login1.inhibit-handle-hibernate-key">
264d8dcc
GH		 97 <description gettext-domain="systemd">Allow applications to inhibit system handling of the hibernate key</description>
98 <message gettext-domain="systemd">Authentication is required for an application to inhibit system handling of the hibernate key.</message>
b14eda96 99 <defaults>
beaafb2e 100 <allow_any>no</allow_any>
b14eda96
LP		 101 <allow_inactive>yes</allow_inactive>
102 <allow_active>yes</allow_active>
103 </defaults>
104 </action>
105
beaafb2e 106 <action id="org.freedesktop.login1.inhibit-handle-lid-switch">
264d8dcc
GH		 107 <description gettext-domain="systemd">Allow applications to inhibit system handling of the lid switch</description>
108 <message gettext-domain="systemd">Authentication is required for an application to inhibit system handling of the lid switch.</message>
eecd1362 109 <defaults>
beaafb2e 110 <allow_any>no</allow_any>
eecd1362
LP		 111 <allow_inactive>yes</allow_inactive>
112 <allow_active>yes</allow_active>
113 </defaults>
114 </action>
115
adbb2b6a
RM		 116 <action id="org.freedesktop.login1.inhibit-handle-reboot-key">
117 <description gettext-domain="systemd">Allow applications to inhibit system handling of the reboot key</description>
118 <message gettext-domain="systemd">Authentication is required for an application to inhibit system handling of the reboot key.</message>
119 <defaults>
120 <allow_any>no</allow_any>
121 <allow_inactive>yes</allow_inactive>
122 <allow_active>yes</allow_active>
123 </defaults>
124 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.inhibit-handle-suspend-key org.freedesktop.login1.inhibit-handle-hibernate-key org.freedesktop.login1.inhibit-handle-lid-switch</annotate>
125 </action>
126
152199f2 127 <action id="org.freedesktop.login1.set-self-linger">
264d8dcc
GH		 128 <description gettext-domain="systemd">Allow non-logged-in user to run programs</description>
129 <message gettext-domain="systemd">Explicit request is required to run programs as a non-logged-in user.</message>
152199f2
ZJS		 130 <defaults>
131 <allow_any>yes</allow_any>
ac3608cd
MB		 132 <allow_inactive>yes</allow_inactive>
133 <allow_active>yes</allow_active>
152199f2
ZJS		 134 </defaults>
135 </action>
136
7f7bb946 137 <action id="org.freedesktop.login1.set-user-linger">
264d8dcc
GH		 138 <description gettext-domain="systemd">Allow non-logged-in users to run programs</description>
139 <message gettext-domain="systemd">Authentication is required to run programs as a non-logged-in user.</message>
91f9dcaf
LP		 140 <defaults>
141 <allow_any>auth_admin_keep</allow_any>
142 <allow_inactive>auth_admin_keep</allow_inactive>
143 <allow_active>auth_admin_keep</allow_active>
144 </defaults>
145 </action>
146
47a26690 147 <action id="org.freedesktop.login1.attach-device">
264d8dcc 148 <description gettext-domain="systemd">Allow attaching devices to seats</description>
15f73764 149 <message gettext-domain="systemd">Authentication is required to attach a device to a seat.</message>
47a26690
LP		 150 <defaults>
151 <allow_any>auth_admin_keep</allow_any>
152 <allow_inactive>auth_admin_keep</allow_inactive>
153 <allow_active>auth_admin_keep</allow_active>
154 </defaults>
39600155 155 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.flush-devices</annotate>
47a26690
LP		 156 </action>
157
b668e064 158 <action id="org.freedesktop.login1.flush-devices">
264d8dcc 159 <description gettext-domain="systemd">Flush device to seat attachments</description>
15f73764 160 <message gettext-domain="systemd">Authentication is required to reset how devices are attached to seats.</message>
55af3897
LP		 161 <defaults>
162 <allow_any>auth_admin_keep</allow_any>
163 <allow_inactive>auth_admin_keep</allow_inactive>
164 <allow_active>auth_admin_keep</allow_active>
165 </defaults>
166 </action>
167
168 <action id="org.freedesktop.login1.power-off">
264d8dcc 169 <description gettext-domain="systemd">Power off the system</description>
15f73764 170 <message gettext-domain="systemd">Authentication is required to power off the system.</message>
55af3897
LP		 171 <defaults>
172 <allow_any>auth_admin_keep</allow_any>
173 <allow_inactive>auth_admin_keep</allow_inactive>
174 <allow_active>yes</allow_active>
175 </defaults>
9ef15026 176 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.set-wall-message</annotate>
55af3897
LP		 177 </action>
178
179 <action id="org.freedesktop.login1.power-off-multiple-sessions">
264d8dcc 180 <description gettext-domain="systemd">Power off the system while other users are logged in</description>
15f73764 181 <message gettext-domain="systemd">Authentication is required to power off the system while other users are logged in.</message>
55af3897
LP		 182 <defaults>
183 <allow_any>auth_admin_keep</allow_any>
184 <allow_inactive>auth_admin_keep</allow_inactive>
eb6d2338 185 <allow_active>yes</allow_active>
55af3897 186 </defaults>
39600155 187 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.power-off</annotate>
55af3897
LP		 188 </action>
189
f8e2fb7b 190 <action id="org.freedesktop.login1.power-off-ignore-inhibit">
09460a23
ZJS		 191 <description gettext-domain="systemd">Power off the system while an application is inhibiting this</description>
192 <message gettext-domain="systemd">Authentication is required to power off the system while an application is inhibiting this.</message>
f8e2fb7b
LP		 193 <defaults>
194 <allow_any>auth_admin_keep</allow_any>
195 <allow_inactive>auth_admin_keep</allow_inactive>
196 <allow_active>auth_admin_keep</allow_active>
197 </defaults>
39600155 198 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.power-off</annotate>
f8e2fb7b
LP		 199 </action>
200
55af3897 201 <action id="org.freedesktop.login1.reboot">
264d8dcc 202 <description gettext-domain="systemd">Reboot the system</description>
15f73764 203 <message gettext-domain="systemd">Authentication is required to reboot the system.</message>
55af3897
LP		 204 <defaults>
205 <allow_any>auth_admin_keep</allow_any>
206 <allow_inactive>auth_admin_keep</allow_inactive>
207 <allow_active>yes</allow_active>
208 </defaults>
9ef15026 209 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.set-wall-message</annotate>
55af3897
LP		 210 </action>
211
212 <action id="org.freedesktop.login1.reboot-multiple-sessions">
264d8dcc 213 <description gettext-domain="systemd">Reboot the system while other users are logged in</description>
15f73764 214 <message gettext-domain="systemd">Authentication is required to reboot the system while other users are logged in.</message>
b668e064
LP		 215 <defaults>
216 <allow_any>auth_admin_keep</allow_any>
217 <allow_inactive>auth_admin_keep</allow_inactive>
299404a1 218 <allow_active>yes</allow_active>
b668e064 219 </defaults>
39600155 220 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.reboot</annotate>
b668e064
LP		 221 </action>
222
f8e2fb7b 223 <action id="org.freedesktop.login1.reboot-ignore-inhibit">
09460a23
ZJS		 224 <description gettext-domain="systemd">Reboot the system while an application is inhibiting this</description>
225 <message gettext-domain="systemd">Authentication is required to reboot the system while an application is inhibiting this.</message>
d889a206
LP		 226 <defaults>
227 <allow_any>auth_admin_keep</allow_any>
228 <allow_inactive>auth_admin_keep</allow_inactive>
229 <allow_active>auth_admin_keep</allow_active>
230 </defaults>
39600155 231 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.reboot</annotate>
d889a206
LP		 232 </action>
233
36b69c31 234 <action id="org.freedesktop.login1.halt">
264d8dcc 235 <description gettext-domain="systemd">Halt the system</description>
15f73764 236 <message gettext-domain="systemd">Authentication is required to halt the system.</message>
36b69c31
LP		 237 <defaults>
238 <allow_any>auth_admin_keep</allow_any>
239 <allow_inactive>auth_admin_keep</allow_inactive>
240 <allow_active>auth_admin_keep</allow_active>
241 </defaults>
242 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.set-wall-message</annotate>
243 </action>
244
245 <action id="org.freedesktop.login1.halt-multiple-sessions">
264d8dcc 246 <description gettext-domain="systemd">Halt the system while other users are logged in</description>
15f73764 247 <message gettext-domain="systemd">Authentication is required to halt the system while other users are logged in.</message>
36b69c31
LP		 248 <defaults>
249 <allow_any>auth_admin_keep</allow_any>
250 <allow_inactive>auth_admin_keep</allow_inactive>
251 <allow_active>auth_admin_keep</allow_active>
252 </defaults>
253 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.halt</annotate>
254 </action>
255
256 <action id="org.freedesktop.login1.halt-ignore-inhibit">
09460a23
ZJS		 257 <description gettext-domain="systemd">Halt the system while an application is inhibiting this</description>
258 <message gettext-domain="systemd">Authentication is required to halt the system while an application is inhibiting this.</message>
36b69c31
LP		 259 <defaults>
260 <allow_any>auth_admin_keep</allow_any>
261 <allow_inactive>auth_admin_keep</allow_inactive>
262 <allow_active>auth_admin_keep</allow_active>
263 </defaults>
264 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.halt</annotate>
265 </action>
266
d889a206 267 <action id="org.freedesktop.login1.suspend">
264d8dcc 268 <description gettext-domain="systemd">Suspend the system</description>
15f73764 269 <message gettext-domain="systemd">Authentication is required to suspend the system.</message>
d889a206
LP		 270 <defaults>
271 <allow_any>auth_admin_keep</allow_any>
272 <allow_inactive>auth_admin_keep</allow_inactive>
273 <allow_active>yes</allow_active>
274 </defaults>
275 </action>
276
277 <action id="org.freedesktop.login1.suspend-multiple-sessions">
264d8dcc 278 <description gettext-domain="systemd">Suspend the system while other users are logged in</description>
15f73764 279 <message gettext-domain="systemd">Authentication is required to suspend the system while other users are logged in.</message>
d889a206
LP		 280 <defaults>
281 <allow_any>auth_admin_keep</allow_any>
282 <allow_inactive>auth_admin_keep</allow_inactive>
9d17cf3e 283 <allow_active>yes</allow_active>
d889a206 284 </defaults>
39600155 285 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.suspend</annotate>
d889a206
LP		 286 </action>
287
288 <action id="org.freedesktop.login1.suspend-ignore-inhibit">
09460a23
ZJS		 289 <description gettext-domain="systemd">Suspend the system while an application is inhibiting this</description>
290 <message gettext-domain="systemd">Authentication is required to suspend the system while an application is inhibiting this.</message>
d889a206
LP		 291 <defaults>
292 <allow_any>auth_admin_keep</allow_any>
293 <allow_inactive>auth_admin_keep</allow_inactive>
294 <allow_active>auth_admin_keep</allow_active>
295 </defaults>
39600155 296 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.suspend</annotate>
d889a206
LP		 297 </action>
298
299 <action id="org.freedesktop.login1.hibernate">
264d8dcc 300 <description gettext-domain="systemd">Hibernate the system</description>
15f73764 301 <message gettext-domain="systemd">Authentication is required to hibernate the system.</message>
d889a206
LP		 302 <defaults>
303 <allow_any>auth_admin_keep</allow_any>
304 <allow_inactive>auth_admin_keep</allow_inactive>
305 <allow_active>yes</allow_active>
306 </defaults>
307 </action>
308
309 <action id="org.freedesktop.login1.hibernate-multiple-sessions">
264d8dcc 310 <description gettext-domain="systemd">Hibernate the system while other users are logged in</description>
15f73764 311 <message gettext-domain="systemd">Authentication is required to hibernate the system while other users are logged in.</message>
d889a206
LP		 312 <defaults>
313 <allow_any>auth_admin_keep</allow_any>
314 <allow_inactive>auth_admin_keep</allow_inactive>
301f9684 315 <allow_active>yes</allow_active>
d889a206 316 </defaults>
39600155 317 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.hibernate</annotate>
d889a206
LP		 318 </action>
319
320 <action id="org.freedesktop.login1.hibernate-ignore-inhibit">
09460a23
ZJS		 321 <description gettext-domain="systemd">Hibernate the system while an application is inhibiting this</description>
322 <message gettext-domain="systemd">Authentication is required to hibernate the system while an application is inhibiting this.</message>
f8e2fb7b
LP		 323 <defaults>
324 <allow_any>auth_admin_keep</allow_any>
325 <allow_inactive>auth_admin_keep</allow_inactive>
326 <allow_active>auth_admin_keep</allow_active>
327 </defaults>
39600155 328 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.hibernate</annotate>
f8e2fb7b
LP		 329 </action>
330
c529695e 331 <action id="org.freedesktop.login1.manage">
264d8dcc 332 <description gettext-domain="systemd">Manage active sessions, users and seats</description>
15f73764 333 <message gettext-domain="systemd">Authentication is required to manage active sessions, users and seats.</message>
c529695e
LP		 334 <defaults>
335 <allow_any>auth_admin_keep</allow_any>
336 <allow_inactive>auth_admin_keep</allow_inactive>
337 <allow_active>auth_admin_keep</allow_active>
338 </defaults>
339 </action>
340
341 <action id="org.freedesktop.login1.lock-sessions">
264d8dcc
GH		 342 <description gettext-domain="systemd">Lock or unlock active sessions</description>
343 <message gettext-domain="systemd">Authentication is required to lock or unlock active sessions.</message>
c529695e
LP		 344 <defaults>
345 <allow_any>auth_admin_keep</allow_any>
346 <allow_inactive>auth_admin_keep</allow_inactive>
347 <allow_active>auth_admin_keep</allow_active>
348 </defaults>
349 </action>
350
428b296a 351 <action id="org.freedesktop.login1.set-reboot-parameter">
83eee14f
ZJS		 352 <description gettext-domain="systemd">Set the reboot "reason" in the kernel</description>
353 <message gettext-domain="systemd">Authentication is required to set the reboot "reason" in the kernel.</message>
428b296a
VJ		 354 <defaults>
355 <allow_any>auth_admin_keep</allow_any>
356 <allow_inactive>auth_admin_keep</allow_inactive>
357 <allow_active>yes</allow_active>
358 </defaults>
359 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.reboot</annotate>
360 </action>
361
5bdf2243 362 <action id="org.freedesktop.login1.set-reboot-to-firmware-setup">
31b221cf 363 <description gettext-domain="systemd">Indicate to the firmware to boot to setup interface</description>
264d8dcc 364 <message gettext-domain="systemd">Authentication is required to indicate to the firmware to boot to setup interface.</message>
5bdf2243
JJ		 365 <defaults>
366 <allow_any>auth_admin_keep</allow_any>
367 <allow_inactive>auth_admin_keep</allow_inactive>
ba9778d9 368 <allow_active>yes</allow_active>
5bdf2243 369 </defaults>
c78e6f9e 370 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.reboot</annotate>
5bdf2243
JJ		 371 </action>
372
31b221cf
LP		 373 <action id="org.freedesktop.login1.set-reboot-to-boot-loader-menu">
374 <description gettext-domain="systemd">Indicate to the boot loader to boot to the boot loader menu</description>
375 <message gettext-domain="systemd">Authentication is required to indicate to the boot loader to boot to the boot loader menu.</message>
376 <defaults>
377 <allow_any>auth_admin_keep</allow_any>
378 <allow_inactive>auth_admin_keep</allow_inactive>
379 <allow_active>yes</allow_active>
380 </defaults>
381 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.reboot</annotate>
382 </action>
383
384 <action id="org.freedesktop.login1.set-reboot-to-boot-loader-entry">
385 <description gettext-domain="systemd">Indicate to the boot loader to boot a specific entry</description>
386 <message gettext-domain="systemd">Authentication is required to indicate to the boot loader to boot into a specific boot loader entry.</message>
387 <defaults>
388 <allow_any>auth_admin_keep</allow_any>
389 <allow_inactive>auth_admin_keep</allow_inactive>
390 <allow_active>yes</allow_active>
391 </defaults>
392 <annotate key="org.freedesktop.policykit.imply">org.freedesktop.login1.reboot</annotate>
393 </action>
394
9ef15026 395 <action id="org.freedesktop.login1.set-wall-message">
264d8dcc
GH		 396 <description gettext-domain="systemd">Set a wall message</description>
397 <message gettext-domain="systemd">Authentication is required to set a wall message</message>
9ef15026
JS		 398 <defaults>
399 <allow_any>auth_admin_keep</allow_any>
400 <allow_inactive>auth_admin_keep</allow_inactive>
401 <allow_active>auth_admin_keep</allow_active>
402 </defaults>
403 </action>
404
4acf0cfd
LP		 405 <action id="org.freedesktop.login1.chvt">
406 <description gettext-domain="systemd">Change Session</description>
402058dc 407 <message gettext-domain="systemd">Authentication is required to change the virtual terminal.</message>
4acf0cfd
LP		 408 <defaults>
409 <allow_any>auth_admin_keep</allow_any>
19bb87fb 410 <allow_inactive>yes</allow_inactive>
4acf0cfd
LP		 411 <allow_active>yes</allow_active>
412 </defaults>
413 </action>
414
91f9dcaf 415</policyconfig>
Unnamed repository; edit this file 'description' to name the repository.