diff options
author | Albin Kauffmann <albin@kauff.org> | 2021-02-09 18:58:59 +0100 |
---|---|---|
committer | Albin Kauffmann <albin@kauff.org> | 2021-02-09 19:57:12 +0100 |
commit | 8ad2807297882e308da71f87fa2923f8fbdfd0cd (patch) | |
tree | 55753807b29407a258c7747c561bb1102ee17546 /etc | |
parent | Revert "etc: use ${DOCUMENTS} macro where appropriate" (diff) | |
download | firejail-8ad2807297882e308da71f87fa2923f8fbdfd0cd.tar.gz firejail-8ad2807297882e308da71f87fa2923f8fbdfd0cd.tar.zst firejail-8ad2807297882e308da71f87fa2923f8fbdfd0cd.zip |
Add a comment to some profiles to allow screen sharing
This configuration is to be applied in order to get screen sharing
working under Wayland (via pipewire and a xdg-desktop-portal backend).
Note that {chrome|chromium} does not need the dbus filters (at least
as of today) because dbus filtering is not enabled (dbus-user not set
to none).
Diffstat (limited to 'etc')
-rw-r--r-- | etc/profile-a-l/chromium-common.profile | 3 | ||||
-rw-r--r-- | etc/profile-a-l/firefox.profile | 5 |
2 files changed, 8 insertions, 0 deletions
diff --git a/etc/profile-a-l/chromium-common.profile b/etc/profile-a-l/chromium-common.profile index ce9c652c6..996e00912 100644 --- a/etc/profile-a-l/chromium-common.profile +++ b/etc/profile-a-l/chromium-common.profile | |||
@@ -34,6 +34,9 @@ include whitelist-var-common.inc | |||
34 | # if your kernel allows unprivileged userns clone. | 34 | # if your kernel allows unprivileged userns clone. |
35 | #include chromium-common-hardened.inc | 35 | #include chromium-common-hardened.inc |
36 | 36 | ||
37 | # Uncomment or put in your chromium-common.local to allow screen sharing under wayland. | ||
38 | #whitelist ${RUNUSER}/pipewire-0 | ||
39 | |||
37 | apparmor | 40 | apparmor |
38 | caps.keep sys_admin,sys_chroot | 41 | caps.keep sys_admin,sys_chroot |
39 | netfilter | 42 | netfilter |
diff --git a/etc/profile-a-l/firefox.profile b/etc/profile-a-l/firefox.profile index 772aad7da..96bcb773c 100644 --- a/etc/profile-a-l/firefox.profile +++ b/etc/profile-a-l/firefox.profile | |||
@@ -41,6 +41,11 @@ dbus-user.own org.mpris.MediaPlayer2.firefox.* | |||
41 | #dbus-user.own org.mpris.MediaPlayer2.plasma-browser-integration | 41 | #dbus-user.own org.mpris.MediaPlayer2.plasma-browser-integration |
42 | #dbus-user.talk org.kde.JobViewServer | 42 | #dbus-user.talk org.kde.JobViewServer |
43 | #dbus-user.talk org.kde.kuiserver | 43 | #dbus-user.talk org.kde.kuiserver |
44 | # Uncomment or put in your firefox.local to allow screen sharing under wayland. | ||
45 | #whitelist ${RUNUSER}/pipewire-0 | ||
46 | #dbus-user.talk org.freedesktop.portal.* | ||
47 | # Also uncomment or put in your firefox.local if screen sharing sharing still does not work with the above lines (might depends on the portal implementation) | ||
48 | #ignore noroot | ||
44 | ignore dbus-user none | 49 | ignore dbus-user none |
45 | 50 | ||
46 | # Redirect | 51 | # Redirect |