-
Notifications
You must be signed in to change notification settings - Fork 6.6k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
policy: Create managed screensaver device policies
Whereas consumer users can configure the screensaver, the managed screensaver will retrieve the images to display, and configurable settings from policy values. This change adds the user-policy set to configure the managed screensaver in the device sign-in screen. Bug: b:175142676,b:265112751 Change-Id: I2badec3cc5e2defad9816036ecabf0fb7cf984f1 Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/4161692 Reviewed-by: Jana Grill <janagrill@google.com> Reviewed-by: Maksim Ivanov <emaxx@chromium.org> Commit-Queue: Emmanuel Arias Soto <eariassoto@google.com> Cr-Commit-Position: refs/heads/main@{#1096169}
- Loading branch information
Emmanuel Arias Soto
authored and
Chromium LUCI CQ
committed
Jan 24, 2023
1 parent
9523544
commit 4d8b6c6
Showing
10 changed files
with
196 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
2 changes: 1 addition & 1 deletion
2
components/policy/resources/templates/policy_definitions/Screensaver/.group.details.yaml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,2 +1,2 @@ | ||
caption: Screensaver Settings | ||
desc: Controls the screensaver settings for the device sign-in screen, and user lock screen. | ||
desc: Controls the screensaver settings for the device sign-in screen, and user lock screen. |
34 changes: 34 additions & 0 deletions
34
...s/policy/resources/templates/policy_definitions/Screensaver/DeviceScreensaverEnabled.yaml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,34 @@ | ||
caption: Device screensaver enabled. | ||
default: false | ||
desc: |- | ||
Configures the device-level screensaver for the sign-in screen. | ||
If this policy is set to true, the <ph name="PRODUCT_OS_NAME">$2<ex>Google ChromeOS</ex></ph> device will show a screensaver when it is idle in the sign-in screen. | ||
If this policy is set to false, or unset, the screensaver will not be displayed in the sign-in screen. | ||
The device screensaver displays the images referenced by the <ph name="DEVICE_SCREENSAVER_IMAGES_POLICY_NAME">DeviceScreensaverImages</ph> policy. If <ph name="DEVICE_SCREENSAVER_IMAGES_POLICY_NAME">DeviceScreensaverImages</ph> is unset, or it is set to an empty list, or to a list without any valid images, the screensaver for the sign-in screen will not be displayed. | ||
The idle timeout to start the screensaver, and the interval that an image is displayed can be modified with the <ph name="DEVICE_SCREENSAVER_IDLE_TIMEOUT_SECONDS_POLICY_NAME">DeviceScreensaverIdleTimeoutSeconds</ph>, and the <ph name="DEVICE_SCREENSAVER_DISPLAY_INTERVAL_SECONDS_POLICY_NAME">DeviceScreensaverDisplayIntervalSeconds</ph> policies respectively. If any of these policies are unset, their default values will be use instead. | ||
device_only: true | ||
example_value: true | ||
features: | ||
can_be_recommended: false | ||
dynamic_refresh: true | ||
per_profile: false | ||
items: | ||
- caption: Enable the screensaver in the sign-in screen. | ||
value: true | ||
- caption: Do not enable the screensaver in the sign-in screen. | ||
value: false | ||
owners: | ||
- mpetrisor@google.com | ||
- eariassoto@google.com | ||
- imprivata-eng@google.com | ||
schema: | ||
type: boolean | ||
future_on: | ||
- chrome_os | ||
tags: [] | ||
type: main |
27 changes: 27 additions & 0 deletions
27
...sources/templates/policy_definitions/Screensaver/DeviceScreensaverIdleTimeoutSeconds.yaml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,27 @@ | ||
caption: Device screensaver idle timeout. | ||
desc: |- | ||
Configures the time in seconds that the device will wait idle before showing the screensaver for the sign-in screen. | ||
Valid values range from 1 second to 9999 seconds. Leaving the policy unset means <ph name="PRODUCT_OS_NAME">$2<ex>Google ChromeOS</ex></ph> uses the default value of 7 seconds. | ||
This policy will not have any effect when the <ph name="DEVICE_SCREENSAVER_ENABLED_POLICY_NAME">DeviceScreensaverEnabled</ph> policy is set to false. | ||
device_only: true | ||
default: 7 | ||
example_value: 7 | ||
features: | ||
can_be_recommended: false | ||
dynamic_refresh: true | ||
per_profile: false | ||
owners: | ||
- mpetrisor@google.com | ||
- eariassoto@google.com | ||
- imprivata-eng@google.com | ||
schema: | ||
minimum: 1 | ||
maximum: 9999 | ||
type: integer | ||
future_on: | ||
- chrome_os | ||
tags: [] | ||
type: int |
27 changes: 27 additions & 0 deletions
27
...emplates/policy_definitions/Screensaver/DeviceScreensaverImageDisplayIntervalSeconds.yaml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,27 @@ | ||
caption: Device screensaver image display interval. | ||
desc: |- | ||
Configures the interval in seconds to display an image when the screensaver for the sign-in screen has multiple images to display. | ||
Valid values range from 1 second to 9999 seconds. Leaving the policy unset means <ph name="PRODUCT_OS_NAME">$2<ex>Google ChromeOS</ex></ph> uses the default value of 60 seconds. | ||
This policy will not have any effect when the <ph name="DEVICE_SCREENSAVER_ENABLED_POLICY_NAME">DeviceScreensaverEnabled</ph> policy is set to false. | ||
device_only: true | ||
default: 60 | ||
example_value: 60 | ||
features: | ||
can_be_recommended: false | ||
dynamic_refresh: true | ||
per_profile: false | ||
owners: | ||
- mpetrisor@google.com | ||
- eariassoto@google.com | ||
- imprivata-eng@google.com | ||
schema: | ||
minimum: 1 | ||
maximum: 9999 | ||
type: integer | ||
future_on: | ||
- chrome_os | ||
tags: [] | ||
type: int |
45 changes: 45 additions & 0 deletions
45
...ts/policy/resources/templates/policy_definitions/Screensaver/DeviceScreensaverImages.yaml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,45 @@ | ||
caption: Device screensaver image source. | ||
desc: |- | ||
Configures the list of images to display in the screensaver for the sign-in screen. | ||
Each list item references an image to be displayed in the screensaver. The item must have as members a URL to the image, and the SHA-256 hash value of the image file for verification. The image format must be JPEG. The <ph name="PRODUCT_OS_NAME">$2<ex>Google ChromeOS</ex></ph> device will download these images, and maintain a local cache of these references. | ||
This policy will not have any effect if the <ph name="DEVICE_SCREENSAVER_ENABLED_POLICY_NAME">DeviceScreensaverEnabled</ph> policy is set to false. | ||
If this policy is unset, or the list does not contain any valid image references, the screensaver for the sign-in screen will not be displayed, regardless of the value set in the <ph name="DEVICE_SCREENSAVER_ENABLED_POLICY_NAME">DeviceScreensaverEnabled</ph> policy. | ||
device_only: true | ||
default: [] | ||
example_value: | ||
- url: https://www.example.com/img_1.jpg | ||
hash: 38aae2b1647f1f37729c4f3632c297ceb901a130bf5881d72c3a19e16ff97e7a | ||
- url: https://www.example.com/img_2.jpg | ||
hash: 439189aabe4fb024450ca7f0f5a7bc06841200e14b286db87e820d8674e316cd | ||
- url: https://www.example.com/img_3.jpg | ||
hash: b6d9d35eb4d2957dbb78ba82f47c94727b8563ee7e3030c3c56be227c4ef4f78 | ||
features: | ||
can_be_recommended: false | ||
dynamic_refresh: true | ||
per_profile: false | ||
owners: | ||
- mpetrisor@google.com | ||
- eariassoto@google.com | ||
- imprivata-eng@google.com | ||
schema: | ||
items: | ||
properties: | ||
hash: | ||
description: The SHA-256 hash of the image. | ||
type: string | ||
url: | ||
description: The URL from which the screensaver image can be downloaded. | ||
type: string | ||
required: | ||
- url | ||
- hash | ||
type: object | ||
type: array | ||
future_on: | ||
- chrome_os | ||
tags: [] | ||
type: dict |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters