Allow defining RPC policies using more than one tag #9446
Labels
C: core
P: default
Priority: default. Default priority for new issues, to be replaced given sufficient information.
T: enhancement
Type: enhancement. A new feature that does not yet exist or improvement of existing functionality.
How to file a helpful issue
The problem you're addressing (if any)
I would like to create fine-grained RPC policies that target VMs using a combination of tags (for example
@tag:dev-vm
and@tag:client-1
). Currently it seems this isn't possible.The solution you'd like
It would be nice to be able to write RPC policies to allow multiple qualifiers or tags:
Where I can say "VMs which are tagged with both
dev-vm
andclient-1
can useQubes.SshAgent
in VMs which are tagged with bothvault-vm
andclient-
The value to a user, and who that user might be
This allows for fine-grained policies that otherwise would take numerous policies or are otherwise impossible to define.
Completion criteria checklist
(This section is for developer use only. Please do not modify it.)
The text was updated successfully, but these errors were encountered: