portfolio-filemanager: sandbox with bunpen
note that portfolio seems not to use portal integration anymore? so using it to launch e.g. Music files totally fails (because i don't grant pipewire access) well, i don't really use this that much, so i'll deal with that only if/when it's an issue
This commit is contained in:
@@ -2,7 +2,7 @@
|
|||||||
{
|
{
|
||||||
sane.programs.portfolio-filemanager = {
|
sane.programs.portfolio-filemanager = {
|
||||||
# this is all taken pretty directly from nautilus config
|
# this is all taken pretty directly from nautilus config
|
||||||
sandbox.method = "bwrap";
|
sandbox.method = "bunpen";
|
||||||
sandbox.whitelistDbus = [ "user" ]; # for portals launching apps
|
sandbox.whitelistDbus = [ "user" ]; # for portals launching apps
|
||||||
sandbox.whitelistWayland = true;
|
sandbox.whitelistWayland = true;
|
||||||
sandbox.extraHomePaths = [
|
sandbox.extraHomePaths = [
|
||||||
@@ -10,8 +10,17 @@
|
|||||||
"/"
|
"/"
|
||||||
".persist/ephemeral"
|
".persist/ephemeral"
|
||||||
".persist/plaintext"
|
".persist/plaintext"
|
||||||
|
"Pictures/Photos"
|
||||||
|
"Pictures/Screenshots"
|
||||||
|
"Pictures/albums"
|
||||||
|
"Pictures/cat"
|
||||||
|
"Pictures/from"
|
||||||
|
"Videos/local"
|
||||||
|
"archive"
|
||||||
"knowledge"
|
"knowledge"
|
||||||
"nixos"
|
"nixos"
|
||||||
|
"records"
|
||||||
|
"tmp"
|
||||||
];
|
];
|
||||||
sandbox.extraPaths = [
|
sandbox.extraPaths = [
|
||||||
"/boot"
|
"/boot"
|
||||||
|
|||||||
Reference in New Issue
Block a user