1. 21 Feb, 2019 1 commit
    • Jonathan Kang's avatar
      Add polkit action for Wi-Fi scans · 243af16c
      Jonathan Kang authored
      Previously, Wi-Fi scans uses polkit action
      "org.freedesktop.NetworkManager.network-control". This is introduced
      in commit 5e3e19d0. But in a system with restrict polkit rules, for
      example "org.freedesktop.NetworkManager.network-control" was set as
      auth_admin. When you open the network panel of GNOME Control Center, a
      polkit dialog will keep showing up asking for admin password, as GNOME
      Control Center scans the Wi-Fi list every 15 seconds.
      
      Fix that by adding a new polkit action
      "org.freedesktop.NetworkManager.wifi.scan" so that distributions can
      add specific rule to allow Wi-Fi scans.
      
      [thaller@redhat.com: fix macro in "shared/nm-common-macros.h"]
      
      !68
      243af16c
  2. 29 Nov, 2018 1 commit
    • Lubomir Rintel's avatar
      all: say Wi-Fi instead of "wifi" or "WiFi" · b385ad01
      Lubomir Rintel authored
      Correct the spelling across the *entire* tree, including translations,
      comments, etc. It's easier that way.
      
      Even the places where it's not exposed to the user, such as tests, so
      that we learn how is it spelled correctly.
      b385ad01
  3. 17 Aug, 2017 1 commit
  4. 03 Nov, 2016 1 commit
  5. 26 Aug, 2016 1 commit
  6. 17 Aug, 2016 2 commits
  7. 01 Jun, 2016 1 commit
    • Thomas Haller's avatar
      manager: add Reload() D-Bus command · 1d0e0eef
      Thomas Haller authored
      Add new Reload D-Bus command to reload NetworkManager configuration.
      
      For now, this is like sending SIGHUP to the process. There are several
      advantages here:
      
        - it is guarded via PolicyKit authentication while signals
          can only be sent by root.
      
        - the user can wait for the reload to be complete instead of sending
          an asynchronous signal. For now, we operation completes after
          nm_config_reload() returns, but later we could delay the response
          further until specific parts are fully reloaded.
      
        - SIGHUP reloads everything including re-reading configuration from
          disk while SIGUSR1 reloads just certain parts such as writing out DNS
          configuration anew.
          Now, the Reload command has a flags argument which is more granular
          in selecting parts which are to be reloaded. For example, via
          signals the user can:
      
            1) send SIGUSR1: this writes out the DNS configuration to
               resolv.conf and possibly reloads other parts without
               re-reading configuration and without restarting the DNS plugin.
            2) send SIGHUP: this reloads configuration from disk,
               writes out resolv.conf and restarts the DNS plugin.
      
          There is no way, to only restart the DNS plugin without also reloading
          everything else.
      1d0e0eef
  8. 01 Oct, 2015 1 commit
  9. 13 Oct, 2014 1 commit
  10. 24 Jan, 2014 1 commit
    • Dan Williams's avatar
      policy: fix policy after dcbw/kill-at-console merge (bgo #707983) (rh #979416) · c9b6f13c
      Dan Williams authored
      Polkit documentation suggests that <allow_any> applies to all
      clients, but that's actually not the case.  allow_any,
      allow_inactive, and allow_active are evaluated individually based
      on whether the user is local and active (allow_active), local and
      inactive (allow_inactive), and not local (allow_any).  Thus all
      three allow options must be specified for any authorization other
      than 'no'.
      c9b6f13c
  11. 23 Jan, 2014 1 commit
  12. 28 Sep, 2012 1 commit
  13. 21 Mar, 2011 1 commit
    • Dan Williams's avatar
      policy: revert system modify permission to auth_admin_keep · a61deb48
      Dan Williams authored
      For now, until we figure out a better story here.  We don't necessarily
      want to require an admin password just to connect to a wifi network
      after installing, but for now lets be secure-by-default while we figure
      out the right solution.
      a61deb48
  14. 11 Feb, 2011 3 commits
  15. 02 Jan, 2011 1 commit
  16. 26 Aug, 2010 1 commit
    • Dan Williams's avatar
      core: consolidate all permissions checking into main D-Bus interface · 3945f75b
      Dan Williams authored
      Moves the system settings permissions checking into the core service's
      permissions checking, which at the same time enables 3-way permission
      reporting (yes, no, auth) instead of the old yes/no that we had for
      system settings permissions before.  This allows UI to show a lock
      icon or such when the user could authenticate to gain the permission.
      
      It also moves the wifi-create permissions' namespace to the main
      namespace (not .settings) since they really should be checked before
      starting a shared wifi connection, rather than having anything to do
      with the settings service.
      3945f75b
  17. 07 Aug, 2010 1 commit
    • Daniel Gnoutcheff's avatar
      NetworkMangerSettings -> NetworkManager.Settings · f98e2528
      Daniel Gnoutcheff authored
      Just for consistency, make settings related stuff live under the
      org.freedesktop.NetworkManager namespace, rather than its own
      org.freedesktop.NetworkManagerSettings namespace. Renames are done for
      DBus interface names, DBus object paths, and polkit actions.
      f98e2528
  18. 06 Aug, 2010 1 commit
  19. 14 Jul, 2010 1 commit
    • Dan Williams's avatar
      policy: don't tear down user connections on VT switch (rh #614556) · 37d61843
      Dan Williams authored
      PK's "allow_inactive" actually means "allow inactive *local* users", so
      we do want to allow inactive local users to provide user connections.
      We don't want to allow non-local inactive users to provide user connections.
      
      So make the use-user-connections privilege match for both active and
      inactive so we get the behavior we want.
      37d61843
  20. 02 Jun, 2010 1 commit
  21. 30 May, 2010 1 commit
    • Dan Williams's avatar
      core: PolicyKit-protect sleep/wake · 65818d51
      Dan Williams authored
      Default to 'not allowed', distros that need backwards compatibility
      can flip this to 'yes' if they need to. At this point, only power
      management scripts should call these functions.
      65818d51
  22. 29 May, 2010 1 commit