Edit permissions of Flatpak applications in TUXEDO OS - TUXEDO Computers

  ATTENTION: To use our store you have to activate JavaScript and deactivate script blockers!  
Thank you for your understanding!

Edit permissions of Flatpak applications in TUXEDO OS

With KDE Plasma 5.27, its control panel received a module for assigning and editing rights for Flatpaks. This betters the already good integration of Flatpaks in KDE Plasma's software shop Discover and is thus also available to you as a user of TUXEDO OS

Why do Flatpaks need special rights?

Flatpaks are containerized applications that cannot interact with the rest of the system without additional permissions. Without permissions, Flatpaks cannot print, play sound, create files or otherwise access the file system. An example is the KDE music player Elisa, which by default can only add collections that are in the user's home.

The creator of the container decides which rights a Flatpak comes with out of the box. This can be the developer of the application, but also anyone who can create a Flatpak. There are Flatpaks shipped, that have hardly any rights, as well as those that are allowed more than is good and necessary. This often goes beyond the specifications of the Flatpak developers, which stipulate that Flatpaks in the delivery state have no access to system processes or the network and much more. The recommended rights are limited to the user's home and access to the app itself and its runtime environment.

How can Flatpak permissions be viewed and edited?

The permissions of a Flatpak can be displayed on the command line:

flatpak info --show-permissions
You can see the Flatpak ID with: 
flatpak list
You can also grant permissions this way. To pick up on Elisa's example, providing access to a collection outside your Home would work with: 
sudo flatpak override [package name] --filesystem=/media/john/music/

Edit permissions graphically

Those who prefer graphical editing could previously use the external application Flatseal, which requires about 200 MByte of space when installed as a Flatpack. For KDE users, there is now a new module for the system settings of the Plasma desktop. It can be found in the Applications tab under Flatpak Permission Settings.

Flatseal is an external app to edit permissions of Flatpaks.
Plasma 5.27 lets you edit Flatpak permissions in the system settings.

The basic settings include access to the Internet, the sound server, the printer, other connected devices and Bluetooth. If necessary, place one or more ticks here.

Portals

The file system access in the second point is mainly controlled via so-called portals. These are a generic mechanism through which applications within a sandbox can interact with the host environment. They allow interacting with data, files and services without the need for additional sandbox permissions. This then interactively queries the root password if needed. Examples of functions that can be accessed via portals are opening files via a file selection dialogue, taking screenshots or printing.

Toolkits such as GTK 3 and 4 or Qt 5 and 6 offer transparent support for portals via the respective desktops, so that access to resources outside the sandbox works securely and immediately. With this approach, applications can avoid having to configure access to large amounts of data or services in a blanket manner, and users have control over what their applications have access to. In this section, you can set new permissions via Add New.

This permission allows music player Elisa to find music on a mounted external drive.

You must first expand the extended permissions via the arrow on the right. There you will find permissions for subsystems such as DBus, sockets such as X11, Wayland and XWayland and devices such as virtual machines and the graphic rendering engine. In general, there is only a need for action when a Flatpak reaches its limits somewhere. You should only assign permissions in advance if you know exactly what you are doing. Currently, KDE still lacks the corresponding documentation.

Service & Support

Welcome to TUXEDO Support - how can we help you?

Linux at TUXEDO

Are you wondering if Linux is right for you? Our team will be happy to answer your questions and explain details about the free operating system at TUXEDO.
Let the advantages and services convince you!

Hardware

Notebook, PC, both - and which model? Our technical service team also provides advice on selection, equipment and puts together suitable offers for your technical requirements.

Questions and Answers

Frequently asked questions and the corresponding answers can be found here. If you cannot find a solution to your problem here, it is also worth taking a look at the instructions section.


Find out more

Instructions and Tips

Most situations can be solved quickly and easily by yourself. This saves you time and you can use your device directly again. We provide you with instructions, first steps and short tips for all TUXEDO models.


Find out more

System Recovery

Even in the case of a case, you don't have to rely on us: Your device can be reset to the factory settings - completely automatically! Everything is included with your order and you can get started right away.


Find out more

Technical Service

Our competent technicians are also happy to help with service requests. You have different possibilities to contact us. We are personally there for you Monday to Friday from 9 am to 1 pm and from 2 pm to 5 pm. But also outside these times, you can contact our team with your request by e-mail.
An extra function is available in your customer account for repair requests (RMA).

 

Contact

We are personally there for you Monday to Friday from 9 am to 1 pm and from 2 pm to 5 pm (German time). But also outside these times you can contact our team with your request by e-mail. Please include your customer number, the model name of your laptop or PC and as detailed a description of your request as possible. The more details you give us, the faster we can process your request!

We might not be able to answer questions about third party hardware or software. For questions about popular open source software (Thunderbird, Filezilla...) please contact a forum e.g. ubuntuforums.org. The research effort for application specific setup is immense and not manageable at the current time. Basic compatibility questions e.g. are of course still welcome!

An extra function is available in your customer account for repair requests (RMA).

 

Shipping costs & delivery times

We ship your order to almost all countries, in Europe mostly even free of charge! The respective shipping costs and the cost threshold above which we will cover the costs for you can be found here or for international shipping in the table below.

 


Free shipping within Germany

There are no shipping costs within Germany for goods worth €100 or more.

 

7.99 € shipping cost at max!

No matter how many small articles you order, such as USB stick card reader, LAN adapters or fan articles, with us, you pay a maximum of 7.99 € shipping costs.

  • 7.99 € shipping fee for all orders below 100 € of goods
  • Free shipping from 100 € total value of goods

You can check all occurring shipping costs or if we even deliver for free right before sending your order!

 


International delivery

Here are the shipping costs as well as the amount threshold for your order. The threshold is referring to the total amount of your order, which enables free shipping.
 

Taxes and customs outside the EU:

For orders outside the EU there might be additional duties, taxes or charges needed to be paid by the customer. These don't have to be paid to the supplier, but to local authorities. Please check for any details with your local customs or tax authorities before ordering! But as a benefit you don't have to pay German taxes, this means you save up to 19%!
Due to the Brexit and the associated changes, there may be delays of several days in customs clearance on site for deliveries to the UK. This is not within our sphere of influence, so we ask for your understanding.

 


⚠️ Countries to which we unfortunately cannot ship, and information on how you can still order from us, can be found here!
Country Shipping Fee Free Shipping From
Albania 99,00 EUR -
Andorra 59,00 EUR -
Belarus Temporarily no delivery possible 59,00 EUR -
Belgium 8,49 EUR 100 EUR
Bulgaria 15,99 EUR 160 EUR
Denmark 8,49 EUR 100 EUR
Estonia 15,99 EUR 160 EUR
Faroe Islands 129,00 EUR -
Finland 14,99 EUR 150 EUR
France 9,99 EUR 120 EUR
Greece 22,90 EUR -
United Kingdom 9,99 EUR 120 EUR
Hong Kong 199,00 EUR -
India 199,00 EUR -
Ireland 14,99 EUR 150 EUR
Island 129,00 EUR -
Italy 9,99 EUR 120 EUR
Japan 99,00 EUR -
Canada 99,00 EUR -
Croatia 34,90 EUR 500 EUR
Latvia 15,99 EUR 160 EUR
Lithuania 15,99 EUR 160 EUR
Luxembourg 8,49 EUR 100 EUR
Macau 199,00 EUR -
Malta 34,90 EUR 500 EUR
Macedonia 59,00 EUR -
Moldova 199,00 EUR -
Monaco 19,00 EUR -
Montenegro 99,00 EUR -
Netherlands 8,49 EUR 100 EUR
Norway 14,99 EUR 150 EUR
Austria 8,49 EUR 100 EUR
Poland 15,99 EUR 160 EUR
Portugal 14,99 EUR 150 EUR
Romania 15,99 EUR 160 EUR
San Marino 9,99 EUR 120 EUR
Sweden 14,99 EUR 150 EUR
Switzerland 13,99 EUR 150 EUR
Serbia 34,90 EUR 500 EUR
Singapore 199,00 EUR -
Slovakia 15,99 EUR 160 EUR
Slovenia 15,99 EUR 160 EUR
Spain (without Canary Islands) 14,99 EUR 150 EUR
Czech Republic 15,99 EUR 160 EUR
Ukraine Temporarily no delivery possible 129,00 EUR -
Hungary 15,99 EUR 160 EUR
USA including Hawaii 99,00 EUR -
United Arabic Emirates 199,00 EUR -
Cyprus 34,90 EUR 500 EUR
Qatar 199,00 EUR -
⚠️ Countries to which we unfortunately cannot ship, and information on how you can still order from us, can be found here!

 


Time of delivery

If not stated differently in the article's description, we deliver goods in:

  • 7-10 working days within Germany
  • 10-12 working days outside Germany

For orders paid in advance, the delivery time starts with receipt of the payment. Please keep in mind that there is no delivery on Sundays or on holidays.
For goods delivered as download, there will be no shipping fees due.
Access data for downloads are sent out via e-mail 1-3 working days after contract formation. For orders with advanced payment, we will deliver after receiving the payment. You can download the item by using the link sent to you via e-mail.

Self-pick-up of orders is not possible, unfortunately.