|
|
16ca71188f
|
users/services: simplify the before/after/wantedBy criteria, to match s6 concepts
|
2024-03-21 17:16:11 +00:00 |
|
|
|
d2f6648bce
|
users/services: refactor: replace ExecStart/ExecStopPost with command/cleanupCommand
note that this completely breaks the systemd backend (though easily fixable if wanted)
|
2024-03-21 17:16:11 +00:00 |
|
|
|
9b793ef4b8
|
programs: services: no need to fully-qualify paths anymore (s6 doesn't require)
|
2024-03-21 17:16:11 +00:00 |
|
|
|
1417497001
|
users/services: remove serviceConfig.Type option
|
2024-03-21 17:16:11 +00:00 |
|
|
|
9afd9725d1
|
users: services: remove no-longer-needed Restart and RestartSec options
|
2024-03-21 17:16:11 +00:00 |
|
|
|
291e704477
|
programs: replace systemd-specific 'environment' option with generic 'env'
note, these services no longer work with systemd, because systemd expects absolute paths
|
2024-03-21 17:16:11 +00:00 |
|
|
|
40e30cf2f8
|
programs: make sandbox.wrapperType default to "wrappedDerivation" and remove everywhere i manually set that
|
2024-02-28 17:39:00 +00:00 |
|
|
|
67536e3c1f
|
programs: assorted: correct sandbox paths now that Pictures/Videos/Books are categorized
i don't like this Pictures/ approach though. i may reconsolidate some of those
|
2024-02-27 21:37:20 +00:00 |
|
|
|
da1053d635
|
programs: configure auto-launching programs to only start *after* graphical-session.target
this ensures they really have their environment
|
2024-02-19 12:58:08 +00:00 |
|
|
|
b2fcf6fdfd
|
programs: messengers (fractal, signal, dino, tuba): add media libraries to the sandbox
|
2024-02-15 00:49:24 +00:00 |
|
|
|
080bd856ec
|
programs: sandboxing: only permit wayland socket access to those specific apps which require it
|
2024-02-14 01:49:49 +00:00 |
|
|
|
1a18ed533b
|
programs: don't include dbus in the sandbox by default
|
2024-02-13 11:58:33 +00:00 |
|
|
|
6eaaeeb91a
|
programs: remove audio from the sandbox by default
|
2024-02-13 11:14:38 +00:00 |
|
|
|
c9af5bf9b4
|
programs: sandboxing: enable net isolation for most sandboxed programs
|
2024-02-08 21:51:32 +00:00 |
|
|
|
6151eee8d5
|
programs (assorted): fix wantedBy = "default.target" to be more specific
now GUI apps aren't stuck in a restart loop until sway starts
in particular, signal-desktop can actually be autostarted
|
2024-02-02 14:21:57 +00:00 |
|
|
|
db6ba61429
|
programs: sandbox more apps with wrapperType=wrappedDerivation
|
2024-01-29 13:45:57 +00:00 |
|
|
|
d945b43f6b
|
signal-desktop: switch sandbox from firejail -> bwrap
|
2024-01-23 16:42:48 +00:00 |
|
|
|
2d338201a5
|
signal-desktop: sandbox with firejail
TODO: fix URL opening / xdg-open
|
2024-01-22 09:30:34 +00:00 |
|
|
|
59187a0ec0
|
programs: allow running binaries in a netns-style firejail
|
2024-01-20 11:11:12 +00:00 |
|
|
|
0c0e7881b1
|
signal-desktop: document a known bug
|
2023-12-03 13:58:30 +00:00 |
|
|
|
c687d059c5
|
signal-desktop: support wayland even when running as a service
|
2023-12-03 13:00:29 +00:00 |
|
|
|
850354b7d7
|
integrate Signal into swaync and sway/autostart
|
2023-11-17 04:05:59 +00:00 |
|
|
|
bb810ac75a
|
signal-desktop: fix directory persistence
|
2023-11-15 23:07:25 +00:00 |
|
