https://bugs.kde.org/show_bug.cgi?id=432833
Harald Sitter <sit...@kde.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |sit...@kde.org
Status|REOPENED |RESOLVED
Resolution|--- |UPSTREAM
--- Comment #4 from Harald Sitter <sit...@kde.org> ---
I think that would need implementing in polkit directly. By the time the
request reaches the agent we are already inside a pam auth flow and need to
supply a finger print or 2fa token or passphrase etc.
If polkitd got some more context about app lifetime that may help here
e.g.
- discover creates a pipe
- discover sends one end of the pipe over dbus directly to polkitd
- polkitd can get discover's pid through dbus builtin API
- polkitd now has a pid and a life sign (the open pipe)
- while the pipe is open discover holds that pid and polkit could choose to
reuse prior successful authentications
possibly this could even be done through either a dbus peer to peer connection
or tracking dbus service names (though I think that is subject to race
conditioning).
Best report this upstream to polkit for consideration.
--
You are receiving this mail because:
You are watching all bug changes.
