src/bluetooth.conf - nest-learning-thermostat/6.4/bluez - Git at Google

 <!-- This configuration file specifies the required security policies
      for Bluetooth core daemon to work. -->

 <!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN"
  "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
 <busconfig>

   <!-- ../system.conf have denied everything, so we just punch some holes -->

   <policy user="root">
     <allow own="org.bluez"/>
     <allow send_destination="org.bluez"/>
     <allow send_interface="org.bluez.Agent1"/>
     <allow send_interface="org.bluez.MediaEndpoint1"/>
     <allow send_interface="org.bluez.MediaPlayer1"/>
     <allow send_interface="org.bluez.ThermometerWatcher1"/>
     <allow send_interface="org.bluez.AlertAgent1"/>
     <allow send_interface="org.bluez.Profile1"/>
     <allow send_interface="org.bluez.HeartRateWatcher1"/>
     <allow send_interface="org.bluez.CyclingSpeedWatcher1"/>
     <allow send_interface="org.bluez.GattCharacteristic1"/>
     <allow send_interface="org.bluez.GattDescriptor1"/>
     <allow send_interface="org.freedesktop.DBus.ObjectManager"/>
     <allow send_interface="org.freedesktop.DBus.Properties"/>
   </policy>

   <policy at_console="true">
     <allow send_destination="org.bluez"/>
   </policy>

   <!-- allow users of lp group (printing subsystem) to
        communicate with bluetoothd -->
   <policy group="lp">
     <allow send_destination="org.bluez"/>
   </policy>

   <policy context="default">
     <deny send_destination="org.bluez"/>
   </policy>

 </busconfig>
	<!-- This configuration file specifies the required security policies
	for Bluetooth core daemon to work. -->

	<!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN"
	"http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
	<busconfig>

	<!-- ../system.conf have denied everything, so we just punch some holes -->

	<policy user="root">
	<allow own="org.bluez"/>
	<allow send_destination="org.bluez"/>
	<allow send_interface="org.bluez.Agent1"/>
	<allow send_interface="org.bluez.MediaEndpoint1"/>
	<allow send_interface="org.bluez.MediaPlayer1"/>
	<allow send_interface="org.bluez.ThermometerWatcher1"/>
	<allow send_interface="org.bluez.AlertAgent1"/>
	<allow send_interface="org.bluez.Profile1"/>
	<allow send_interface="org.bluez.HeartRateWatcher1"/>
	<allow send_interface="org.bluez.CyclingSpeedWatcher1"/>
	<allow send_interface="org.bluez.GattCharacteristic1"/>
	<allow send_interface="org.bluez.GattDescriptor1"/>
	<allow send_interface="org.freedesktop.DBus.ObjectManager"/>
	<allow send_interface="org.freedesktop.DBus.Properties"/>
	</policy>

	<policy at_console="true">
	<allow send_destination="org.bluez"/>
	</policy>

	<!-- allow users of lp group (printing subsystem) to
	communicate with bluetoothd -->
	<policy group="lp">
	<allow send_destination="org.bluez"/>
	</policy>

	<policy context="default">
	<deny send_destination="org.bluez"/>
	</policy>

	</busconfig>