diff options
| author | Adrian Vovk <adrianvovk@gmail.com> | 2024-02-01 17:43:48 +0100 |
|---|---|---|
| committer | Luca Boccassi <bluca@debian.org> | 2024-03-23 02:05:13 +0100 |
| commit | 5ec87d577f92effe27a62e965e02a6f9a40f81cc (patch) | |
| tree | d0984780f9c9358ad21eaac19c3c9a6a8527df49 /man | |
| parent | homework: Always upload volume key to keyring (diff) | |
| download | systemd-5ec87d577f92effe27a62e965e02a6f9a40f81cc.tar.xz systemd-5ec87d577f92effe27a62e965e02a6f9a40f81cc.zip | |
homework: Accept volume key from keyring
This bypasses authentication (i.e. user_record_authenticate) if the
volume key was loaded from the keyring and no secret section is
provided.
This also changes Update() and Resize() to always try and load the
volume key from the keyring. This makes the secret section optional for
these methods while still letting them function (as long as the home
area is active)
Diffstat (limited to 'man')
| -rw-r--r-- | man/org.freedesktop.home1.xml | 19 |
1 files changed, 9 insertions, 10 deletions
diff --git a/man/org.freedesktop.home1.xml b/man/org.freedesktop.home1.xml index 6fe3bb3ce0..726d9d9832 100644 --- a/man/org.freedesktop.home1.xml +++ b/man/org.freedesktop.home1.xml @@ -320,10 +320,10 @@ node /org/freedesktop/home1 { interface.</para> <para><function>UpdateHome()</function> updates a locally registered user record. Takes a fully - specified JSON user record as argument (including the <literal>secret</literal> section). A user with a - matching name and realm must be registered locally already, and the last change timestamp of the newly - supplied record must be newer than the previously existing user record. Note this operation updates the - user record only, it does not propagate passwords/authentication tokens from the user record to the + specified JSON user record as argument (possibly including the <literal>secret</literal> section). A user + with a matching name and realm must be registered locally already, and the last change timestamp of the + newly supplied record must be newer than the previously existing user record. Note this operation updates + the user record only, it does not propagate passwords/authentication tokens from the user record to the storage back-end, or resizes the storage back-end. Typically a home directory is first updated, and then the password of the underlying storage updated using <function>ChangePasswordHome()</function> as well as the storage resized using <function>ResizeHome()</function>. This method is equivalent to @@ -338,13 +338,12 @@ node /org/freedesktop/home1 { on the <classname>org.freedesktop.home1.Home</classname> interface.</para> <para><function>ResizeHome()</function> resizes the storage associated with a user record. Takes a user - name, a disk size in bytes and a user record consisting only of the <literal>secret</literal> section - as argument. If the size is specified as <constant>UINT64_MAX</constant> the storage is resized to the - size already specified in the user record. Typically, if the user record is updated using + name, a disk size in bytes, and optionally a user record consisting only of the <literal>secret</literal> + section as arguments. If the size is specified as <constant>UINT64_MAX</constant> the storage is resized to + the size already specified in the user record. Typically, if the user record is updated using <function>UpdateHome()</function> above this is used to propagate the size configured there-in down to - the underlying storage back-end. This method is equivalent to - <function>Resize()</function> on the <classname>org.freedesktop.home1.Home</classname> - interface.</para> + the underlying storage back-end. This method is equivalent to <function>Resize()</function> on the + <classname>org.freedesktop.home1.Home</classname> interface.</para> <para><function>ChangePasswordHome()</function> changes the passwords/authentication tokens of a home directory. Takes a user name, and two JSON user record objects, each consisting only of the |