2016-12-01 19:27:35 -05:00
|
|
|
# sway security rules
|
|
|
|
|
#
|
|
|
|
|
# Read sway-security(7) for details on how to secure your sway install.
|
|
|
|
|
#
|
|
|
|
|
# You MUST read this man page if you intend to attempt to secure your sway
|
|
|
|
|
# installation.
|
|
|
|
|
|
|
|
|
|
# Configures which programs are allowed to use which sway features
|
2016-12-01 21:36:43 -05:00
|
|
|
permit __PREFIX__/swaylock lock
|
|
|
|
|
permit __PREFIX__/swaybar panel
|
|
|
|
|
permit __PREFIX__/swaybg background
|
|
|
|
|
permit __PREFIX__/swaygrab screenshot
|
2016-12-01 19:27:35 -05:00
|
|
|
|
|
|
|
|
permit * fullscreen keyboard mouse
|
|
|
|
|
|
|
|
|
|
# Configures which IPC features are enabled
|
|
|
|
|
ipc {
|
|
|
|
|
command enabled
|
|
|
|
|
outputs enabled
|
|
|
|
|
workspaces enabled
|
|
|
|
|
tree enabled
|
|
|
|
|
marks enabled
|
|
|
|
|
bar-config enabled
|
|
|
|
|
inputs enabled
|
|
|
|
|
|
|
|
|
|
events {
|
|
|
|
|
workspace enabled
|
|
|
|
|
output enabled
|
|
|
|
|
mode enabled
|
|
|
|
|
window enabled
|
|
|
|
|
bar-config enabled
|
|
|
|
|
binding enabled
|
|
|
|
|
modifier enabled
|
|
|
|
|
input enabled
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# Limits the contexts from which certain commands are permitted
|
|
|
|
|
commands {
|
2016-12-01 19:38:36 -05:00
|
|
|
fullscreen binding criteria
|
2016-12-01 19:27:35 -05:00
|
|
|
bindsym config
|
2016-12-01 19:38:36 -05:00
|
|
|
exit binding
|
|
|
|
|
kill binding
|
2016-12-01 19:27:35 -05:00
|
|
|
|
|
|
|
|
# You should not change these unless you know what you're doing - it could
|
|
|
|
|
# cripple your security
|
2016-12-01 19:38:36 -05:00
|
|
|
reload binding
|
|
|
|
|
restart binding
|
2016-12-01 19:27:35 -05:00
|
|
|
permit config
|
|
|
|
|
reject config
|
|
|
|
|
ipc config
|
|
|
|
|
}
|
