diff options
| author | Pavel Šimerda <psimerda@redhat.com> | 2015-01-02 18:19:07 +0100 |
|---|---|---|
| committer | Pavel Šimerda <psimerda@redhat.com> | 2015-02-07 20:37:38 +0100 |
| commit | e4dad300675c92379396825a60a3dd3c91c59d30 (patch) | |
| tree | 0d700df78b32dd92b92a6006f1eeb5ac0b45280d | |
| parent | d48417187d6414e004ea899edd7f167eaf01b53f (diff) | |
| download | NetworkManager-e4dad300675c92379396825a60a3dd3c91c59d30.tar.gz | |
auth: don't enforce user session
Access to connection configuration should not be blocked by absence of a
user session tracked using logind or consolekit. Access control based on
UID is sufficient.
This patch ensures that the user can always access connections even if
he doesn't have a session tracked by logind or consolekit and even when
NetworkManager is not built with logind or consolekit support.
Please note that presence or absence of a session tracked by logind or
consolekit doesn't carry any security information.
Acked-By: Thomas Haller <thaller@redhat.com>
| -rw-r--r-- | src/nm-auth-utils.c | 7 |
1 files changed, 0 insertions, 7 deletions
diff --git a/src/nm-auth-utils.c b/src/nm-auth-utils.c index fa50a7bd79..12924e7894 100644 --- a/src/nm-auth-utils.c +++ b/src/nm-auth-utils.c @@ -439,13 +439,6 @@ nm_auth_is_subject_in_acl (NMConnection *connection, if (0 == uid) return TRUE; - /* Reject the request if the request comes from no session at all */ - if (!nm_session_monitor_session_exists (uid, FALSE)) { - if (out_error_desc) - *out_error_desc = g_strdup_printf ("No session found for uid %lu", uid); - return FALSE; - } - if (!nm_session_monitor_uid_to_user (uid, &user)) { if (out_error_desc) *out_error_desc = g_strdup_printf ("Could not determine username for uid %lu", uid); |