On Sat, 2014-09-06 at 12:47 -0400, Simo Sorce wrote: > > I can believe it'd be hard work, but I think you overstate the case by a > > long way when you say it'd be impossible. It may be finicky work, but it > > seems unlikely that it'd be easier to write an entirely new partitioning > > app with all of blivet's capabilities from the ground up (with a good > > privilege model) than it would be to take advantage of all that existing > > code for doing the very difficult and complex work of partitioning, and > > retrofit a decent privilege model onto it. > > well given blivet is a library, shouldn't it be simple enough to put it > behind a dbus interface and have the GUI and actual operation be > separated by dbus and authorized via mechanisms like polkit or similar ? > > That should pretty much solve the privilege separation between gui and > core code. yeah, that'd be a first step, but presumably the 'ideal' model would distinguish between privileged and non-privileged library operations - mostly, I'd assume, examining current status won't need privs, but making changes will. -- Adam Williamson Fedora QA Community Monkey IRC: adamw | Twitter: AdamW_Fedora | XMPP: adamw AT happyassassin . net http://www.happyassassin.net -- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
