On Thu, 2017-12-21 at 22:15 +0100, Rafal Luzynski wrote: > 20.12.2017 17:07 Przemek Klosowski <przemek.klosowski@xxxxxxxx> wrote: > > > > > > The primary logged-in session is of course authorized to access the main > > X11/wayland display, but it's often useful to add display authorization > > to other accounts. For instance, looking at disk space with 'baobab' > > works better as root because some areas of the filesystem are not > > readable to normal users (*). I used to do such authorization by > > > > xhost +si:localhost:root > > > > but it recently stopped working: > > https://bugzilla.redhat.com/show_bug.cgi?id=1527754 . Is there another > > way of authorizing display access for other accounts? If not, this is a > > fairly painful regression. > > The same here: > > https://pagure.io/system-config-language > https://bugzilla.redhat.com/show_bug.cgi?id=1274451 > > and AFAIUC the answer is that the applications should use polkit to > run privileged operations while being able to display regular user's GUI. Well, no, it's not exactly the same. Using xhost in this way has been a (grudgingly) documented workaround for Wayland's restrictions for some time now: https://fedoraproject.org/wiki/Common_F27_bugs#wayland-root-apps But it appears it has recently broken. That's a distinct thing from the existence of the restrictions in Wayland at all. -- Adam Williamson Fedora QA Community Monkey IRC: adamw | Twitter: AdamW_Fedora | XMPP: adamw AT happyassassin . net http://www.happyassassin.net _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
