We have a snap, it has snapd-control and previously we had it run in a client/server (server meaning a daemon that runs inside the snap separately) pattern where you could execute a command from the local user SSH session and accomplish what we wanted.
However, we were trying to make it just a stand-alone application that does not need the server portion. When we try to run it from the local admin SSH session it freezes and I see this in the logs:
Feb 23 16:24:01 xxxxx audit: AVC apparmor=“DENIED” operation=“open” profile=“snap.xxxxx.xxxx” name="/home/admin/.snap/auth.json" pid=2631 comm=“xxxx” requested_mask=“r” denied_mask=“r” fsuid=1000 ouid=1000
I’ve tried a variety of things but nothing seems to work. Can someone explain this difference and whether we should expect this to work?