Hello,
There is something i do not understand about TCC:
- I have allowed Terminal app to Full Disk Access.
- I was able to open my current user's TCC.db file with sqlite3 from terminal.
- I was able to delete entries in access table with sqlite3.
- I had no errors, but these changes haven't been applied.
My question is why was I able to modify TCC.db file ? Is there a specific thing to do to flush privileges ?
I have a second question: When an application fires an NSOPenDialog on a cocoa application, the selected file access rule bypasses TCC. This is normal because this is an intent from user. But this file access seems to be stored somewhere because if i reboot computer, my cocoa application can read this file again, without NSOpenDialog opening. I have tried to look in current user's TCC.db file but i did not found anything. My question is: where is this information stored ?
Thanks