doc: Correct the "guix shell --container" example.
* doc/guix.texi (Invoking @command{guix shell}): Add missing parameters to preserve and expose $XAUTHORITY. Adjust corresponding textual description. Change-Id: Ib99c81c107ff9784708ae807ec9b3ab93ad75603 Signed-off-by: Liliana Marie Prikler <liliana.prikler@gmail.com>master
parent
e14bc39a97
commit
0f68306268
|
@ -5983,12 +5983,18 @@ such as @file{/usr/bin} on foreign distros.
|
||||||
This @option{--container} option can also prove useful if you wish to
|
This @option{--container} option can also prove useful if you wish to
|
||||||
run a security-sensitive application, such as a web browser, in an
|
run a security-sensitive application, such as a web browser, in an
|
||||||
isolated environment. For example, the command below launches
|
isolated environment. For example, the command below launches
|
||||||
Ungoogled-Chromium in an isolated environment, this time sharing network
|
Ungoogled-Chromium in an isolated environment, which:
|
||||||
access with the host and preserving its @code{DISPLAY} environment
|
@itemize
|
||||||
variable, but without even sharing the current directory:
|
@item shares network access with the host
|
||||||
|
@item inherits host's environment variables @code{DISPLAY} and @code{XAUTHORITY}
|
||||||
|
@item has access to host's authentication records from the @code{XAUTHORITY}
|
||||||
|
file
|
||||||
|
@item has no information about host's current directory
|
||||||
|
@end itemize
|
||||||
|
|
||||||
@example
|
@example
|
||||||
guix shell --container --network --no-cwd ungoogled-chromium \
|
guix shell --container --network --no-cwd ungoogled-chromium \
|
||||||
|
--preserve='^XAUTHORITY$' --expose="$@{XAUTHORITY@}" \
|
||||||
--preserve='^DISPLAY$' -- chromium
|
--preserve='^DISPLAY$' -- chromium
|
||||||
@end example
|
@end example
|
||||||
|
|
||||||
|
|
Reference in New Issue