SkyOS is a multiuser operating system. The "heart" of the SkyOS security handling is the "Security Context". Each file and process is associated with such a security context. This context defines and manages all possible rights for a process and a file. The rights themselves are extendable and not limited. All rights are grouped in so-called "ACCESS_GROUPS".
- GROUP: SYSTEM RIGHT: Reboot
- GROUP: SYSTEM RIGHT: Execute processes
- GROUP: SYSTEM RIGHT: Create threads
- GROUP: FILESYSTEM RIGHT: Create files
- GROUP: FILESYSTEM RIGHT: Read file
- GROUP: FILESYSTEM RIGHT: Write file
In total, there roughly 150 different rights for SkyOS 5.0. The user management plug-in for the system configuration allows all users with the proper rights to change individual rights for users, or to use so-called "Schemes" to change different rights at the same time. For example: you can select the "Normal user" scheme and all rights will be set which are typically needed by a "normal" user. There are other schemes such as "Administrator", "Service", "Remote user", etc.
After SkyOS completes the boot procedure, the login screen appears.
As soon as you select a user and supply the correct password, the login process starts the desktop application and sets to rights for the desktop application to the one that corresponds with the user that has just logged in.
There is also a "fast user switch" option supported. When right-clicking on the desktop and select"switch user", you can immediately switch to another user (you have the option to switch to a new desktop, or use the current active desktop to also see the processes which are being run by the "old" user).
SkyFS uses the same Security Contexts. This means, that each individual file may be associated with one or more "Security Contexts" from one or more users, or even groups.