2020-01-30 06:49:33 -07:00
|
|
|
# Set rules here.
|
|
|
|
|
# Priority increases with linenumber.
|
|
|
|
|
# See doas.conf(5) for details.
|
|
|
|
|
|
2020-05-18 01:59:34 -06:00
|
|
|
# permit persist :wheel
|
|
|
|
|
# permit nopass root
|
2020-01-30 06:49:33 -07:00
|
|
|
|
2020-05-18 01:59:34 -06:00
|
|
|
# This config file isn't very powerful at all compared to
|
|
|
|
|
# the likes of sudo's. It's very difficult to tell it that
|
|
|
|
|
# we want to permit running the package manager and package
|
|
|
|
|
# manager alone (hence the 'git'/'env' listings).
|
|
|
|
|
#
|
|
|
|
|
# Further, the 'persist' feature is too strict and will beg
|
|
|
|
|
# you for a password every time 'doas' is run from a script`.
|
|
|
|
|
# Despite sudo's complexity, I recommened it over doas for
|
|
|
|
|
# better control.
|
|
|
|
|
#
|
|
|
|
|
# I'm working on a better overall solution.
|
2020-01-30 06:49:33 -07:00
|
|
|
|
2020-02-09 05:37:04 -07:00
|
|
|
# Allow wheel to run kiss with password required.
|
2020-05-18 01:59:34 -06:00
|
|
|
# permit persist :wheel cmd env
|
|
|
|
|
# permit persist :wheel cmd git args fetch
|
|
|
|
|
# permit persist :wheel cmd git args diff
|
|
|
|
|
# permit persist :wheel cmd git args merge
|
2020-02-09 05:37:04 -07:00
|
|
|
|
|
|
|
|
# Allow wheel to run kiss without a password.
|
2020-05-18 01:59:34 -06:00
|
|
|
# permit nopass :wheel cmd env
|
2020-02-09 05:37:04 -07:00
|
|
|
# permit nopass :wheel cmd git args fetch
|
|
|
|
|
# permit nopass :wheel cmd git args diff
|
|
|
|
|
# permit nopass :wheel cmd git args merge
|
