<title><systemitem>--enable-keychain=sysctx</systemitem></title>
<para>
- Sets the system security context of keychain UI as returned by
- the access control manager. This value becomes written to the
+ Sets the system security context of keychain UI process as returned by
+ the default <link linkend="GSignondAccessControlManager">
+ GSignondAccessControlManager</link>. This value becomes written to the
gsignond.conf in addition to being encoded as default value
through config.h.
</para>
<para>
Sets the base path for user specific storage directories where
- database files will be located.
+ database files will be located as utilised by
+ <link linkend="GSignondStorageManager">
+ GSignondStorageManager</link>.
Default location is <filename>/var/db</filename>
</para>
</formalpara>
* Path provided by #GSignondStorageManager for storing user-specific
* information, including secret and metadata databases.
*
- * This is run-time value and any value read from configuration file
+ * This is a run-time value and any value read from configuration file
* is overwritten.
*
* Value provided by the default implementation:
/**
* GSIGNOND_CONFIG_GENERAL_KEYCHAIN_SYSCTX:
*
- * System security context of the keychain UI.
+ * System security context of the keychain UI process
+ * (see #GSignondAccessControlManager).
*
- * Default value can be defined through configure flag.
+ * Default value can be defined through configure --enable-keychain flag (see
+ * <link linkend="gsignond-building">Building gsignond</link>).
*/
#define GSIGNOND_CONFIG_GENERAL_KEYCHAIN_SYSCTX GSIGNOND_CONFIG_GENERAL \
"/KeychainSystemContext"
* has a special management access to all stored identities and is able to
* perform deletion of all identities from storage.
*
- * The default implementation returns a context either set in the
- * configuration, or if not set, a value specified through a configure
- * option. If gSSO was compiled
+ * The default implementation returns a context either set in #GSignondConfig,
+ * or if not set, a value specified through a configure --enable-keychain
+ * option (see
+ * <link linkend="gsignond-building">Building gsignond</link>), or if that is not
+ * set either then an empty string "" is returned.
+ *
+ * If gSSO was compiled
* with --enable-debug and SSO_KEYCHAIN_SYSCTX environment variable is set, then
* the value of that variable is used to set the returned system context instead.
*
* #GSignondConfig holds configuration information as a set of keys and values
* (integer or strings). The key names are defined in
* <link linkend="gsignond-General-configuration">general config keys</link>,
- * <link linkend="gsignond-Database-configuration">database config keys</link>, and
- * <link linkend="gsignond-DBus-configuration">DBus config keys</link>.
+ * and <link linkend="gsignond-DBus-configuration">DBus config keys</link>.
*
- * The configuration is discovered from these sources, in decreasing order of
- * priority:
- * - environment variables, if gSSO has been compiled with --enable-debug switch.
- * See the specific keys documentation for the variable names.
- * - gSSO configuration file. See below for where the file is searched for.
- * - default values. See the documentation for specific keys for those.
+ * The configuration is retrieved from the gSSO configuration file. See below
+ * for where the file is searched for.
*
* <refsect1><title>Where the configuration file is searched for</title></refsect1>
*
* <refsect1><title>Example configuration file</title></refsect1>
*
* See example configuration file here:
- * <ulink url="http://code.google.com/p/accounts-sso/source/browse/gsignond.conf?repo=gsignond">
- * http://code.google.com/p/accounts-sso/source/browse/gsignond.conf?repo=gsignond</ulink>
+ * <ulink url="http://code.google.com/p/accounts-sso/source/browse/gsignond.conf.in?repo=gsignond">
+ * http://code.google.com/p/accounts-sso/source/browse/gsignond.conf.in?repo=gsignond</ulink>
*/
/**
* @self: object instance.
*
* Initialize encryption storage. This means making sure that the
- * necessary directories exist and are accessible.
+ * necessary directories under #GSIGNOND_CONFIG_GENERAL_STORAGE_PATH exist and are accessible.
*
* Returns: success?
*/
* @self: object instance.
*
* Mounts an encrypted storage and returns the filesystem path of the storage
- * mount point. This path will be used to access the secret database via
+ * mount point. This path will be set in #GSignondConfig as
+ * #GSIGNOND_CONFIG_GENERAL_SECURE_DIR and used to access the secret database via
* #GSignondSecretStorage.
*
* The default implemenation does nothing, and immediately returns the path for the