RIPEDA's Privileges Client
Forked variant of SAP's Privileges, with modifications for RIPEDA's workflow.
Changes include:
- Support for HTTP/HTTPS logging server
- Log messages through JSON payload
- Send additional host information (ex. Client name, serial number, etc.)
- LaunchAgent to demote after certain period of time
- Designed to avoid users from abusing admin privileges indefinitely
- Defaults to 5 min, configurable via
MenubarTimeout
key
- Menubar item for managing Privileges
- Demote user on login
- Allow exemptions for configured users (ex. IT staff) through
ExcludeUsers
key
For documentation, please see the original repository:
For logging, note that the Bundle ID has been adjusted (to avoid conflicts with the original Privileges client):
log stream --style syslog --predicate 'evantMessage CONTAINS "RIPEDA: "'