From 2a9c6ba7b7a6201e75ddd0ced6867df796a5c565 Mon Sep 17 00:00:00 2001 From: Jussi Laako Date: Tue, 5 Nov 2013 15:45:32 +0200 Subject: [PATCH] doc: fix documentation to match intended behavior --- libgsignon-glib/signon-identity.c | 7 ++++--- libgsignon-glib/signon-security-context.c | 12 +++++++----- 2 files changed, 11 insertions(+), 8 deletions(-) diff --git a/libgsignon-glib/signon-identity.c b/libgsignon-glib/signon-identity.c index 1b5aa43..acd8b78 100644 --- a/libgsignon-glib/signon-identity.c +++ b/libgsignon-glib/signon-identity.c @@ -82,9 +82,10 @@ * - Caption is a display name for the identity, presented to the user. Default * value is an empty caption. * - * - Realms is a list of realms that the identity can be used in. Interpretation - * of this field is up to the application; it is not used by gSSO. Default value - * is an empty list. + * - Realms is a list of realms that the identity can be used in. + * Interpretation of this field is up to the method. Typically it is + * list of internet domains allowed for authentication request. + * Default value is an empty list. * * - Type is a #SignonIdentityType. Interpretation of this field is up to the application; * gSSO does not use it. Default value is #SIGNON_IDENTITY_TYPE_OTHER diff --git a/libgsignon-glib/signon-security-context.c b/libgsignon-glib/signon-security-context.c index da2304d..c45bd52 100644 --- a/libgsignon-glib/signon-security-context.c +++ b/libgsignon-glib/signon-security-context.c @@ -48,11 +48,13 @@ * control decision requires not only a binary identifier, but also information * about what the binary is doing). * - * System context - * and application context can contain a wildcard match "*" which disables the ACL - * check when a default gSSO extension is used. Check the documentation for a - * platform specific extension to determine if "*" has any effect with that - * custom extension. + * System context and application context can contain a wildcard + * operator "*" to match 'any', while "" matches 'none' when a default + * gSSO extension is used. Matches are always evaluated in order where + * system context is evaluated first and if match is found, only then + * application context is evaluated. + * Check the documentation for a platform specific extension to determine + * any specific match rules with custom ACM (Access Control Manager). */ #include "signon-security-context.h" -- 2.34.1