blob: 1bd8083808898b1eb2d059635893f1bd847220d9 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
|
<!DOCTYPE policyconfig PUBLIC
"-//freedesktop//DTD PolicyKit Policy Configuration 1.0//EN"
"http://www.freedesktop.org/standards/PolicyKit/1.0/policyconfig.dtd">
<!--
Policy definitions for HAL's drives/media mechanims.
Copyright (c) 2007 David Zeuthen <david@fubar.dk>
HAL is licensed to you under your choice of the the Academic Free
License Version 2.1, or the GNU General Public License version 2. Some
individual source files may be under the GPL only. See COPYING for
details.
NOTE: If you make changes to this file, make sure to validate the file
using the polkit-policy-file-validate(1) tool. Changes made to this
file are instantly applied.
-->
<policyconfig>
<group id="hal-storage">
<description>Storage Drives and Media</description>
<description_short>Storage</description_short>
<policy id="hal-storage-mount-fixed">
<description>Mount file systems from internal drives.</description>
<missing>Mounting the volume '%s' is restricted by system policy.</missing>
<apply_to_all_mnemonic>Apply to all volumes from _fixed drives.</apply_to_all_mnemonic>
<defaults>
<allow_remote_inactive>no</allow_remote_inactive>
<allow_remote_active>no</allow_remote_active>
<allow_local_inactive>no</allow_local_inactive>
<allow_local_active>auth_root_keep_always</allow_local_active>
</defaults>
</policy>
<policy id="hal-storage-mount-removable">
<description>Mount file systems from removable drives.</description>
<missing>Mounting the volume '%s' is restricted by system policy.</missing>
<apply_to_all_mnemonic>Apply to all volumes from _removable drives.</apply_to_all_mnemonic>
<defaults>
<allow_remote_inactive>no</allow_remote_inactive>
<allow_remote_active>no</allow_remote_active>
<allow_local_inactive>no</allow_local_inactive>
<allow_local_active>yes</allow_local_active>
</defaults>
</policy>
<policy id="hal-storage-unmount-others">
<description>Unmount file systems mounted by other users.</description>
<missing>The volume '%s' is mounting by another user.</missing>
<apply_to_all_mnemonic>Apply to all volumes.</apply_to_all_mnemonic>
<defaults>
<allow_remote_inactive>no</allow_remote_inactive>
<allow_remote_active>no</allow_remote_active>
<allow_local_inactive>no</allow_local_inactive>
<allow_local_active>auth_root_keep_always</allow_local_active>
</defaults>
</policy>
<policy id="hal-storage-eject">
<description>Eject removable media.</description>
<missing>Ejecting the volume '%s' is restricted by system policy.</missing>
<apply_to_all_mnemonic>Apply to all volumes.</apply_to_all_mnemonic>
<defaults>
<allow_remote_inactive>no</allow_remote_inactive>
<allow_remote_active>no</allow_remote_active>
<allow_local_inactive>no</allow_local_inactive>
<allow_local_active>yes</allow_local_active>
</defaults>
</policy>
<policy id="hal-storage-crypto-setup">
<description>Set up decryption for encrypted storage devices.</description>
<missing>Decrypting the volume '%s' is restricted by system policy.</missing>
<apply_to_all_mnemonic>Apply to all volumes.</apply_to_all_mnemonic>
<defaults>
<allow_remote_inactive>no</allow_remote_inactive>
<allow_remote_active>no</allow_remote_active>
<allow_local_inactive>no</allow_local_inactive>
<allow_local_active>yes</allow_local_active>
</defaults>
</policy>
</group>
</policyconfig>
|
