AppArmor rules for OpenJK / Jedi Knight: Jedi Academy on ARM64 (adjustments might be required)

usr.local.JediAcademy.openjkded.aarch64

# Last Modified: Fri Dec 13 20:41:06 2019
#include <tunables/global>

/usr/local/JediAcademy/openjkded.aarch64 {
  #include <abstractions/base>
  #include <abstractions/nameservice>

  /lib/aarch64-linux-gnu/ld-*.so mr,
  /usr/local/JediAcademy/base/ r,
  /usr/local/JediAcademy/base/jampgameaarch64.so mr,
  /usr/local/JediAcademy/openjkded.aarch64 mr,
  owner /home/*/.local/share/openjk/base/maps/mp/* w,
  owner /home/jedi/.local/share/openjk/*/ r,
  owner /home/jedi/.local/share/openjk/base/* r,
  owner /home/jedi/.local/share/openjk/base/*/ r,
  owner /home/jedi/.local/share/openjk/base/games.log w,
  owner /home/jedi/.local/share/openjk/base/openjk_server.cfg w,
  owner /home/jedi/.local/share/openjk/base/security.log w,
  owner /home/jedi/.local/share/openjk/base/strings/*/ r,
  owner /home/jedi/.local/share/openjk/basejka/* rw,

}

NOTE: In case this isn't clear already this is for ARM64 Linux machines (for example RPI3/RPI4)

I noticed that this file is poorly found on search engines, therefore I'll explain a little further:
This file can be used in order to confine access to system resources on OpenJK servers.
OpenJK server can be used to host Jedi Knight: Jedi Academy servers.
OpenJK also provides a way to build Jedi Knight: Jedi Outcast binaries.