Module privilege 

Broker startup privilege checks.

The broker control socket is a per-user boundary. Starting it as root or Windows LocalSystem would make that boundary ambiguous, so the binary refuses privileged startup unless a test environment explicitly opts out.

Enums

PrivilegeError

Errors returned while checking broker startup privileges.

PrivilegedIdentity

Privileged identities that are forbidden for the broker by default.

Constants

ALLOW_PRIVILEGED_ENV

Environment variable that permits privileged broker startup.

Functions

refuse_privileged_run

Refuse to start the broker when the current process is privileged.