From 20a1aeb5b31cdf953c9912f1c86d68d3b3828493 Mon Sep 17 00:00:00 2001
From: Colin <colin@uninsane.org>
Date: Tue, 27 Feb 2024 18:28:24 +0000
Subject: [PATCH] programs: add gdbus as a standalone program, separate from
 the rest of glib

---
 hosts/common/programs/default.nix |  1 +
 hosts/common/programs/gdbus.nix   | 11 +++++++++++
 2 files changed, 12 insertions(+)
 create mode 100644 hosts/common/programs/gdbus.nix

diff --git a/hosts/common/programs/default.nix b/hosts/common/programs/default.nix
index 2b0d48d5c..802f3dc6c 100644
--- a/hosts/common/programs/default.nix
+++ b/hosts/common/programs/default.nix
@@ -33,6 +33,7 @@
     ./fwupd.nix
     ./g4music.nix
     ./gajim.nix
+    ./gdbus.nix
     ./geary.nix
     ./git.nix
     ./gnome-feeds.nix
diff --git a/hosts/common/programs/gdbus.nix b/hosts/common/programs/gdbus.nix
new file mode 100644
index 000000000..58a56a714
--- /dev/null
+++ b/hosts/common/programs/gdbus.nix
@@ -0,0 +1,11 @@
+{ pkgs, ... }:
+{
+  sane.programs.gdbus = {
+    packageUnwrapped = pkgs.linkIntoOwnPackage pkgs.glib "bin/gdbus";
+
+    sandbox.method = "bwrap";
+    sandbox.wrapperType = "wrappedDerivation";
+    sandbox.whitelistDbus = [ "user" ];  #< XXX: maybe future users will also want system access
+  };
+}
+