# Create default buckets
while read bucket default_policy
do
- # Reuse the main bucket for PRIVACY_MANAGER bucket
+ # Reuse the primary bucket for PRIVACY_MANAGER bucket
[ "$bucket" = "PRIVACY_MANAGER" ] && bucket=""
cyad --set-bucket="$bucket" --type="$default_policy"
done <<END
done |
cyad --set-policy --bulk=-
done
+
+# Non-application programs get access to all privileges
+for client in User System
+do
+ cyad --set-policy --bucket=MAIN --client="$client" --user="*" --privilege="*" --type=ALLOW
+done