Bug#1033511: release-notes: mention the switch from old polkit .pkla files to JavaScript .rules
i cant be the only one who has seen many references to "polkit" but
never managed to understand what it does - or whether i was using it
as part of gnome etc - so this was helpful!
By searching the internet, and reading the previous version, I think i
understood the following
<section id="changes-to-polkit-configuration">
<!-- bullseye to bookworm but will need something if/when future
releases drop pkla entirely -->
<title>Changes to polkit configuration</title>
<para>
The <literal>polkit</literal> (formerly
<literal>PolicyKit</literal>) service, which allows unprivileged
programs to access privileged system services,
has changed the syntax and location for local policy rules.
The previous syntax and locations are still supported but have been
deprecated for consistency with
upstream and other distributions.
<para>
System administrators should now add local rules for
customizing the security policy at
<filename>/etc/polkit-1/rules.d/*.rules</filename>, and write them in
<ulink url=""https://en.wikipedia.org/wiki/JavaScript>JavaScript</link>.
Example rules using the new format can be found in
<filename>/usr/share/doc/polkitd/examples/</filename>, and <ulink
url="&url-man;/&releasename;/polkitd/polkit.8.html#AUTHORIZATION_RULES">polkit(8)</ulink>
has further information.
</para>
<para>
Previously, rules could be written in <literal>pkla</literal>
format, and placed in in subdirectories of
<filename>/etc/polkit-1/localauthority</filename>
or <filename>/var/lib/polkit-1/localauthority</filename>: such
rules will only continue to work if you install the <systemitem
role="package">polkitd-pkla</systemitem> package.
This will usually be installed automatically when you upgrade
to bookworm.
</para>
</section>
Reply to: