From fa668af54a590e02a15df463d20d3cd90c1dac70 Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Thu, 19 Sep 2024 00:00:54 +0100
Subject: [PATCH] feat(profile): add some gnome profiles.

---
 apparmor.d/groups/gnome/gnome-font-viewer     | 19 ++++++++++++++++
 .../groups/gnome/gnome-user-share-webdav      | 21 ++++++++++++++++++
 apparmor.d/groups/gnome/tracker-xdg-portal    | 22 +++++++++++++++++++
 3 files changed, 62 insertions(+)
 create mode 100644 apparmor.d/groups/gnome/gnome-font-viewer
 create mode 100644 apparmor.d/groups/gnome/gnome-user-share-webdav
 create mode 100644 apparmor.d/groups/gnome/tracker-xdg-portal

diff --git a/apparmor.d/groups/gnome/gnome-font-viewer b/apparmor.d/groups/gnome/gnome-font-viewer
new file mode 100644
index 00000000..2844be9b
--- /dev/null
+++ b/apparmor.d/groups/gnome/gnome-font-viewer
@@ -0,0 +1,19 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2024 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{bin}/gnome-font-viewer
+profile gnome-font-viewer @{exec_path} {
+  include <abstractions/base>
+  include <abstractions/common/gnome>
+
+  @{exec_path} mr,
+
+  include if exists <local/gnome-font-viewer>
+}
+
+# vim:syntax=apparmor
diff --git a/apparmor.d/groups/gnome/gnome-user-share-webdav b/apparmor.d/groups/gnome/gnome-user-share-webdav
new file mode 100644
index 00000000..37e1ea49
--- /dev/null
+++ b/apparmor.d/groups/gnome/gnome-user-share-webdav
@@ -0,0 +1,21 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2024 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/gnome-user-share-webdav
+profile gnome-user-share-webdav @{exec_path} {
+  include <abstractions/base>
+  include <abstractions/bus-session>
+
+  #aa:dbus own bus=session name=org.gnome.user-share.webdav
+
+  @{exec_path} mr,
+
+  include if exists <local/gnome-user-share-webdav>
+}
+
+# vim:syntax=apparmor
diff --git a/apparmor.d/groups/gnome/tracker-xdg-portal b/apparmor.d/groups/gnome/tracker-xdg-portal
new file mode 100644
index 00000000..bf612104
--- /dev/null
+++ b/apparmor.d/groups/gnome/tracker-xdg-portal
@@ -0,0 +1,22 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2024 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{lib}/tracker-xdg-portal-3
+profile tracker-xdg-portal @{exec_path} flags=(complain) {
+  include <abstractions/base>
+  include <abstractions/bus-session>
+  include <abstractions/gnome-strict>
+
+  #aa:dbus own bus=session name=org.freedesktop.portal.Tracker
+
+  @{exec_path} mr,
+
+  include if exists <local/tracker-xdg-portal>
+}
+
+# vim:syntax=apparmor