This file is indexed.

/usr/share/doc/connman-doc/session-policy-format.txt is in connman-doc 1.35-6.

This file is owned by root:root, with mode 0o644.

The actual contents of the file can be viewed below.

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
ConnMan policy file format
**************************

The session policy plugin allows to configure/provision a session.
ConnMan will be looking for policy files in STORAGEDIR/session_policy_local
which by default points to /var/lib/connman. Policy file names must
not include other characters than letters or numbers and must have
a .policy suffix. Policy files are text files.

It is possible to add, remove or update a policy file during run-time.
The corresponding sessions will be updated accordingly.

Policy group [policy_*]
=======================

Each policy group must start with as [policy_*] tag. '*' has no
semantic meaning but should consist just out of characters.

Required fields:

Exactly one and only one of the required fields need to be present
per policy group.

- uid: This policy group will be applied to any session
  with given user ID.

- gid: This policy group will be applied to any session
  with given group ID.

- selinux: This policy group will be applied to any session
  with given SELinux context.

Allowed fields:

- AllowedBearers: see session-api.txt
  The policy AllowedBearers overrules the settings done via
  D-Bus. For example the policy AllowedBearers is 'ethernet' then
  the D-Bus API will only accept an empty string or 'ethernet'.

- ConnectionType: see session-api.txt
  The policy ConnectionType overrules the settings done via
  D-Bus.

- Priority: A boolean which tells ConnMan to prefer the session
  over other Sessions. This priority value is more for applications
  that want to push themselves up in the asychronization notification
  queue once a bearer becomes online.

  This actual priority order also depends on the allowed bearers and
  other factors. This setting is just a little indicator for one
  application being notified before another one.

- RoamingPolicy: The allowed roaming behavior.

  Valid policies are "national", "international", "default", "always"
  and "forbidden".

  "national" allows roaming within a country.  "international" allows
  roaming in a country and between countries.

  "default" is used to tell the session to use the global roaming
  setting.

  "always" will overwrite the default "forbidden" value which is
  useful for emergency application.

  Default value is "forbidden".

- EmergencyCall: A boolean which tells ConnMan whenever the
  Connect() method is called for this session, all other
  session are disconnected.

  Note only services matching the AllowedBearers rule will be
  considered.

Example
=======

example@example:[~]$ cat /var/lib/connman/session_policy_local/auser.policy
[policy_auser]
uid = auser
AllowedBearers = wifi cellular
RoamingPolicy = forbidden