[packagekit] Signed packages again again

Richard Hughes hughsient at gmail.com
Thu Nov 15 14:19:24 PST 2007

On Thu, 2007-11-15 at 17:09 -0500, David Zeuthen wrote:
> it occurred to me that you may want to make some of the PolicyKit
> actions for PackageKit more fine grained. Basically, I think we want to
> support the use case mentioned in that comment; e.g. it should be
> possible to grant the user 'bob' the authorization to install signed
> packages but at the same time ensure he's not authorized to install
> unsigned packages. That's very useful in both enterprise and home user
> scenarios.

Yes, this is sane.

> Looking at the current actions
>  org.freedesktop.packagekit.install
>  org.freedesktop.packagekit.localinstall
>  org.freedesktop.packagekit.update
>  org.freedesktop.packagekit.remove
>  org.freedesktop.packagekit.update
>  org.freedesktop.packagekit.rollback
>  org.freedesktop.packagekit.repo-change
>  org.freedesktop.packagekit.refresh-cache

It looks like you are not using git from the developer repo. update is
now update-package and update-system.

> I'm not sure where that is codified. Maybe introduce new actions
>  org.freedesktop.packagekit.install-unsigned
>  org.freedesktop.packagekit.localinstall-unsigned
> Thoughts?

Define signed. Signed by who?


More information about the PackageKit mailing list