|
1 <?xml version="1.0" encoding="ISO-8859-1" ?> |
|
2 <!DOCTYPE policy> |
|
3 <policy> |
|
4 <!-- an alias groups a set of capabilities under one name --> |
|
5 <alias name="UserDataGroup"> |
|
6 <info>This can contain info which can be displayed with capabilities while prompting</info> |
|
7 <capabilities> |
|
8 <capability>ReadUserData</capability> |
|
9 <capability>WriteUserData</capability> |
|
10 <capability>Location</capability> |
|
11 <capability>UserEnvironment</capability> |
|
12 </capabilities> |
|
13 </alias> |
|
14 |
|
15 <alias name="DeviceResourcesGroup"> |
|
16 <info>This can contain info which can be displayed with capabilities while prompting</info> |
|
17 <capabilities> |
|
18 <capability>MultimediaDD</capability> |
|
19 <capability>ReadDeviceData</capability> |
|
20 <capability>WriteDeviceData</capability> |
|
21 <capability>CommDD</capability> |
|
22 <capability>SurroundingsDD</capability> |
|
23 <capability>NetworkControl</capability> |
|
24 <!--capability>SwEvent</capability--> |
|
25 </capabilities> |
|
26 </alias> |
|
27 |
|
28 <alias name="NetworkGroup"> |
|
29 <info>This can contain info which can be displayed with capabilities while prompting</info> |
|
30 <capabilities> |
|
31 <capability>NetworkServices</capability> |
|
32 <capability>LocalServices</capability> |
|
33 </capabilities> |
|
34 </alias> |
|
35 |
|
36 |
|
37 <!-- specify a protection domain --> |
|
38 <domain name="UnTrusted"> |
|
39 <allow> |
|
40 <capabilities> |
|
41 <capability>SwEvent</capability> |
|
42 |
|
43 |
|
44 </capabilities> |
|
45 </allow> |
|
46 |
|
47 <!-- user-grantable capabilities for this domain --> |
|
48 <user> |
|
49 <condition>oneshot</condition> |
|
50 <condition>session</condition> |
|
51 <condition>blanket</condition> |
|
52 <defaultCondition>session</defaultCondition> |
|
53 <capabilities> |
|
54 <capability>NetworkGroup</capability> |
|
55 <capability>UserDataGroup</capability> |
|
56 <capability>DeviceResourcesGroup</capability> |
|
57 <!--capability>ReadUserData</capability> |
|
58 <capability>WriteUserData</capability> |
|
59 <capability>Location</capability--> |
|
60 </capabilities> |
|
61 </user> |
|
62 </domain> |
|
63 |
|
64 |
|
65 <policy> |