colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity

programs: gnome-maps: sandbox

Browse Source
This commit is contained in:
Colin 2024-02-25 11:51:50 +00:00
parent 2ad33a49df
commit c304367e21
1 changed files with 10 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
hosts/common/programs/gnome-maps.nix
View File

@ -1,13 +1,16 @@
{ ... }:
{
sane.programs."gnome.gnome-maps" = {
# TODO: verify location services
# sandbox.method = "bwrap";
# sandbox.wrapperType = "inplace";
# sandbox.whitelistDri = true; # for perf
# sandbox.whitelistDbus = [ "user" ]; # for GPS (geoclue, portals)
# sandbox.whitelistWayland = true;
# sandbox.net = "clearnet";
sandbox.method = "bwrap";
sandbox.wrapperType = "inplace"; #< dbus files
sandbox.whitelistDri = true; # for perf
sandbox.whitelistDbus = [
"system" # system is required for non-portal location services
"user" #< not sure if "user" is necessary?
];
sandbox.whitelistWayland = true;
sandbox.net = "clearnet";
sandbox.usePortal = false; # TODO: set up portal-based location services
persist.byStore.plaintext = [ ".cache/shumate" ];
persist.byStore.private = [