OpenSoul Docs

Appearance

# opensoul approvals

Manage exec approvals for the local host, gateway host, or a node host. By default, commands target the local approvals file on disk. Use --gateway to target the gateway, or --node to target a specific node.

Related:

# Common commands

bash
opensoul approvals get
opensoul approvals get --node <id|name|ip>
opensoul approvals get --gateway

# Replace approvals from a file

bash
opensoul approvals set --file ./exec-approvals.json
opensoul approvals set --node <id|name|ip> --file ./exec-approvals.json
opensoul approvals set --gateway --file ./exec-approvals.json

# Allowlist helpers

bash
opensoul approvals allowlist add "~/Projects/**/bin/rg"
opensoul approvals allowlist add --agent main --node <id|name|ip> "/usr/bin/uptime"
opensoul approvals allowlist add --agent "*" "/usr/bin/uname"

opensoul approvals allowlist remove "~/Projects/**/bin/rg"

# Notes

  • --node uses the same resolver as opensoul nodes (id, name, ip, or id prefix).
  • --agent defaults to "*", which applies to all agents.
  • The node host must advertise system.execApprovals.get/set (macOS app or headless node host).
  • Approvals files are stored per host at ~/.opensoul/exec-approvals.json.

Released under the MIT License.

Copyright © 2024-present OpenSoul Contributors