This is good for security becuase you're giving temporary access for a helper binary to do privileged stuff in a limited scope.

From the UX perspective, yes, it is triggered from the app.

It's been a long time since I used the Core Foundation API but you trigger a request, and then get back a token from the OS that grants you permission to do stuff.

I don't know if this is current or not:

https://developer.apple.com/library/archive/documentation/Se...