2016-12-01 19:27:35 -05:00
|
|
|
# sway security rules
|
|
|
|
|
#
|
|
|
|
|
# Read sway-security(7) for details on how to secure your sway install.
|
|
|
|
|
#
|
|
|
|
|
# You MUST read this man page if you intend to attempt to secure your sway
|
|
|
|
|
# installation.
|
2016-12-17 15:19:50 -05:00
|
|
|
#
|
|
|
|
|
# This file should live at __SYSCONFDIR__/sway/security and will be
|
|
|
|
|
# automatically read by sway.
|
2016-12-01 19:27:35 -05:00
|
|
|
|
|
|
|
|
# Configures which programs are allowed to use which sway features
|
2016-12-03 12:38:42 -05:00
|
|
|
permit * fullscreen keyboard mouse ipc
|
2016-12-02 15:56:36 -05:00
|
|
|
permit __PREFIX__/bin/swaylock lock
|
|
|
|
|
permit __PREFIX__/bin/swaybar panel
|
|
|
|
|
permit __PREFIX__/bin/swaybg background
|
|
|
|
|
permit __PREFIX__/bin/swaygrab screenshot
|
2016-12-01 19:27:35 -05:00
|
|
|
|
|
|
|
|
# Configures which IPC features are enabled
|
|
|
|
|
ipc {
|
|
|
|
|
command enabled
|
|
|
|
|
outputs enabled
|
|
|
|
|
workspaces enabled
|
|
|
|
|
tree enabled
|
|
|
|
|
marks enabled
|
|
|
|
|
bar-config enabled
|
|
|
|
|
inputs enabled
|
|
|
|
|
|
|
|
|
|
events {
|
|
|
|
|
workspace enabled
|
|
|
|
|
output enabled
|
|
|
|
|
mode enabled
|
|
|
|
|
window enabled
|
|
|
|
|
input enabled
|
2016-12-02 10:05:43 -05:00
|
|
|
binding disabled
|
2016-12-01 19:27:35 -05:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# Limits the contexts from which certain commands are permitted
|
|
|
|
|
commands {
|
2016-12-03 12:38:42 -05:00
|
|
|
* all
|
|
|
|
|
|
2016-12-01 19:38:36 -05:00
|
|
|
fullscreen binding criteria
|
2016-12-01 19:27:35 -05:00
|
|
|
bindsym config
|
2016-12-01 19:38:36 -05:00
|
|
|
exit binding
|
|
|
|
|
kill binding
|
2016-12-01 19:27:35 -05:00
|
|
|
}
|
