<!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN"
"http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
<!--
Copyright 2018 The Chromium Authors
Use of this source code is governed by a BSD-style license that can be
found in the LICENSE file.
-->
<busconfig>
<!-- vmc runs as chronos -->
<policy user="chronos">
<allow own="org.chromium.ChromeFeaturesService"/>
</policy>
<!-- upstart and tast run as root -->
<policy user="root">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"/>
</policy>
<!-- limit session_manager daemon visibility to only IsFeatureEnabled. -->
<policy user="session_manager">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
</policy>
<!-- limit typecd daemon visibility to only IsPeripheralDataAccessEnabled -->
<policy user="typecd">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsPeripheralDataAccessEnabled"/>
</policy>
<!-- limit dns-proxy daemon visibility to only IsDNSProxyEnabled -->
<policy user="dns-proxy">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsDNSProxyEnabled"/>
</policy>
<!-- limit vm_concierge visibility to only IsFeatureEnabled and
GetFeatureParams -->
<policy user="crosvm">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="GetFeatureParams"/>
</policy>
<policy user="resourced">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="GetFeatureParams"/>
</policy>
<!-- limit cras visibility to only IsFeatureEnabled and
GetFeatureParams -->
<policy user="cras">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="GetFeatureParams"/>
</policy>
<!-- limit dlp visibility to only IsFeatureEnabled -->
<policy user="dlp">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
</policy>
<!-- limit secagentd visibility to only IsFeatureEnabled and
GetFeatureParams -->
<policy user="secagentd">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="GetFeatureParams"/>
</policy>
<!-- limit missived visibility to only IsFeatureEnabled and
GetFeatureParams -->
<policy user="missived">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="GetFeatureParams"/>
</policy>
<!-- limit power visibility to only IsFeatureEnabled -->
<policy user="power">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
</policy>
<!-- limit devbroker visibility to only IsFeatureEnabled -->
<policy user="devbroker">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
</policy>
<!-- limit fbpreprocessor visibility to only IsFeatureEnabled -->
<policy user="fbpreprocessor">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
</policy>
<!-- limit oobe_config_save visibility to only IsFeatureEnabled. -->
<policy user="oobe_config_save">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
</policy>
<!-- limit arc-camera visibility to only IsFeatureEnabled. -->
<policy user="arc-camera">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
</policy>
<!-- limit regmond visibility to only IsFeatureEnabled. -->
<policy user="regmond">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
</policy>
<!-- limit biod visibility to only IsFeatureEnabled. -->
<policy user="biod">
<allow send_destination="org.chromium.ChromeFeaturesService"
send_interface="org.chromium.ChromeFeaturesServiceInterface"
send_member="IsFeatureEnabled"/>
</policy>
</busconfig>
Codebase Browser
chromium