GenericSocketService::ServiceDescriptionVector CookieService::GetServiceDescription() {
return ServiceDescriptionVector {
- {SERVICE_SOCKET_COOKIE_GET, "security-server::api-cookie-get", INTERFACE_GET },
+ {SERVICE_SOCKET_COOKIE_GET, "*", INTERFACE_GET },
{SERVICE_SOCKET_COOKIE_CHECK, "security-server::api-cookie-check", INTERFACE_CHECK},
{SERVICE_SOCKET_COOKIE_CHECK_TMP, "security-server::api-cookie-check", INTERFACE_CHECK_TMP}
};
GenericSocketService::ServiceDescriptionVector GetGidService::GetServiceDescription() {
return ServiceDescriptionVector
- {{SERVICE_SOCKET_GET_GID, "*"}};
+ {{SERVICE_SOCKET_GET_GID, "security-server::api-get-gid"}};
}
void GetGidService::accept(const AcceptEvent &event) {
namespace SecurityServer {
GenericSocketService::ServiceDescriptionVector PrivilegeByPidService::GetServiceDescription() {
- //TODO: after enabled smack protection for api use "security-server::api-privilege-by-pid"
return ServiceDescriptionVector
- {{SERVICE_SOCKET_PRIVILEGE_BY_PID, "*" }};
+ {{SERVICE_SOCKET_PRIVILEGE_BY_PID, "security-server::api-privilege-by-pid" }};
}
void PrivilegeByPidService::accept(const AcceptEvent &event) {
[Socket]
ListenStream=/tmp/.security-server-api-cookie-check.sock
SocketMode=0777
-#SmackLabelIPIn=security-server::api-cookie-check
-SmackLabelIPIn=*
+SmackLabelIPIn=security-server::api-cookie-check
SmackLabelIPOut=@
Service=security-server.service
[Socket]
ListenStream=/tmp/.security-server-api-cookie-get.sock
SocketMode=0777
-#SmackLabelIPIn=security-server::api-cookie-get
SmackLabelIPIn=*
SmackLabelIPOut=@
[Socket]
ListenStream=/tmp/.security-server-api-get-gid.sock
SocketMode=0777
-#SmackLabelIPIn=security-server::api-get-gid
-SmackLabelIPIn=*
+SmackLabelIPIn=security-server::api-get-gid
SmackLabelIPOut=@
Service=security-server.service
[Socket]
ListenStream=/tmp/.security-server-api-password-check.sock
SocketMode=0777
-#SmackLabelIPIn=security-server::api-password-check
-SmackLabelIPIn=*
+SmackLabelIPIn=security-server::api-password-check
SmackLabelIPOut=@
Service=security-server.service
[Socket]
ListenStream=/tmp/.security-server-api-password-reset.sock
SocketMode=0777
-#SmackLabelIPIn=security-server::api-password-reset
-SmackLabelIPIn=*
+SmackLabelIPIn=security-server::api-password-reset
SmackLabelIPOut=@
Service=security-server.service
[Socket]
ListenStream=/tmp/.security-server-api-password-set.sock
SocketMode=0777
-#SmackLabelIPIn=security-server::api-password-set
-SmackLabelIPIn=*
+SmackLabelIPIn=security-server::api-password-set
SmackLabelIPOut=@
Service=security-server.service
[Socket]
ListenStream=/tmp/.security-server-api-privilege-by-pid.sock
SocketMode=0777
-#SmackLabelIPIn=security-server::api-privilege-by-pid
-SmackLabelIPIn=*
+SmackLabelIPIn=security-server::api-privilege-by-pid
SmackLabelIPOut=@
Service=security-server.service