Details
-
Type:
Task
-
Status: Done
-
Priority:
(None)
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: Client API: Authentication
-
Labels:
-
Sprint:MEN Sprint 122
-
Story Points:8
-
Epic Link:
-
Backlog:yes
-
Days in progress:0
Description
By default, DBus transactions are visible to everyone.
Acceptance criteria:
- Implement polkit file which hides the token from dbus-monitor, and from logs
- If necessary, change API to pass token over a file descriptor
- There is some info on the subject here.
- There is a Makefile target to install the polkit file.
Attachments
Release management
Issue Links
- blocks
-
MEN-4013 Acceptance test which verifies that no sensitive data is passed over DBus insecurely
-
- Rejected
-