On 5/4/21 7:43 PM, Daniel P. Berrangé wrote:
The current identity object represents the identity of the application which initiated the currently executing public API operation. Normally this is the libvirt client application identity.
There are times when the libvirt daemon has to make extra public API calls on behalf of the client application. We want these API calls to still use the client appication's identity for ACL checking. At the same time we need to be able to show that the API call is coming from the daemon.
Signed-off-by: Daniel P. Berrangé <berrange@redhat.com> --- src/util/viridentity.c | 36 ++++++++++++++++++++++++++++++++++++ src/util/viridentity.h | 1 + 2 files changed, 37 insertions(+)
Don't forget to expose the symbol in libvirt_private.syms. Michal