The one place for your designs
To enable design management, you'll need to meet the requirements. If you need help, reach out to our support team for assistance.
Improve data sandboxing by using Tracker 3
Description
The Tracker search engine has historically exposed the whole search index to the Flatpak sandbox, with no way to enforce that apps can only see data relevant to them.
Tracker 3 introduces data sandboxing using graphs. Apps need updating to take advantage of this.
Goals
Port all apps to use Tracker 3.0 API.
Ensure Flatpak apps use xdg-tracker-portal and specify a limited set of graphs they will access.
Scope
- core apps
- all other apps that use Tracker
People on charge & contact
- Carlos Garnacho @carlosg
- Sam Thursfield @sthursfield
Instructions to achieve the goals
See https://discourse.gnome.org/t/tracker-3-app-porting/3351
Label for tracking the initiative
"~9. Initiative: Tracker 3"
Text for the initiative issue in projects
/label ~"9. Initiative: Tracker 3"
List of projects & tasks
Core apps and libraries that need attention:
- GTK (Tracker search engine) - @carlosg (gtk!1944 (merged) ,gtk!1945 (merged))
- gnome-online-miners - @sthursfield (gnome-online-miners!3)
- grilo-plugins (Tracker plugin) - @carlosg (grilo-plugins!85)
- libfolks (Tracker backend) and GNOME Contacts
- Rygel (Tracker plugin) - @jensgeorg
- GNOME Boxes - @carlosg (gnome-boxes!332)
- GNOME Files (Nautilus) - @sthursfield (nautilus!553)
- GNOME Music (uses grilo) - @jfelder and @carlosg (gnome-music!728)
- GNOME Photos (uses gnome-online-miners) - @sthursfield (gnome-photos#152)
- GNOME Videos (uses grilo) - @carlosg (totem!146)
Others we should look at:
- GNOME Books
- GNOME Documents (uses gnome-online-miners)
- GNOME Games - @jfelder
- GNOME Notes (Bijiben) - @carlosg (gnome-notes!60)
We will also need to update gnome-build-meta and jhbuild.
User data will need to be migrated for some apps. A prototype of how to do this is here: https://gitlab.gnome.org/sthursfield/tracker-data-migration-tools/ -- more work is needed.
Testing will be required of all the apps. Our aim is to have a tracker-3 .flatpak bundle for each app that everyone can test. Additional testing can be done using VM images built from gnome-build-meta..
How can I help
- Test the ported apps using Flatpak (see https://discourse.gnome.org/t/tracker-3-app-porting/3351)
- Review existing merge requests
- Help port the remaining apps