337628 – Allow updates without authentication if in sudoers

Bug 337628 - Allow updates without authentication if in sudoers

Summary: Allow updates without authentication if in sudoers

Status:	RESOLVED NOT A BUG

Alias:	None

Product:	muon
Classification:	Applications
Component:	libqapt (show other bugs)
Version:	2.2.0
Platform:	Ubuntu Linux

Importance:	NOR wishlist
Target Milestone:	---
Assignee:	Jonathan Thomas

URL:
Keywords:

Depends on:
Blocks:

Reported:	2014-07-20 12:43 UTC by Pascal d'Hermilly
Modified:	2017-06-02 19:29 UTC (History)
CC List:	4 users (show)

See Also:
Latest Commit:
Version Fixed In:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Pascal d'Hermilly 2014-07-20 12:43:17 UTC

When running updates the action scope of the user is limited to update the packages or don't. For people in sudoers (users not governed by a sysadmin) the authentication/"type your password" step could be skipped as they can't really do anything to compromise the system.

Reproducible: Always

Comment 1 Harald Sitter 2014-07-21 00:28:38 UTC

sudo is not invovled. To control who gets to do what in which way you'll want to configure polkit (I think pklocalauthority or pokit-action would be terms to search for on that matter).

Comment 2 Pascal d'Hermilly 2014-07-21 07:10:29 UTC

So if e.g. Kubuntu configured a different policy it would not ask for password?

Comment 3 Harald Sitter 2014-07-21 10:14:40 UTC

Yes.

More improtantly though, *you* can create a different access policy.

Comment 4 Pascal d'Hermilly 2014-07-21 11:43:05 UTC

Great thanks.