RFE: way to specify additional users that should have permissions for the socket

[nirik]

It would be nice if the pesign-bridge could have some kind of option to set facls to allow additional users to access the socket.

Something like:

pesign_bridge_additional_users:

and then when starting it adds facls to /run/pesign/socket to allow those users access.

Currently in fedora infra we have a ansible role that applies acls, but it means you have to run the playbook anytime you restart the service.
This is to allow the 'kojibuilder' user in mock chroot/container to access the socket via a mock bind mount.