Currently, only UNIX permissions are used to control seat access.
To gain finer control, one could have an optional PAM module or command line tool to set which UIDs have access to which seat.