2 * Copyright (c) 2011 Samsung Electronics Co., Ltd All Rights Reserved
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
17 * @file security_origin_dao.cpp
18 * @author Jihoon Chung (jihoon.chung@samsung.com)
20 * @brief This file contains the definition of security origin dao class.
23 #include <wrt-commons/security-origin-dao/security_origin_database.h>
24 #include <wrt-commons/security-origin-dao/security_origin_dao.h>
25 #include <wrt-commons/security-origin-dao/security_origin_dao_types.h>
26 #include <orm_generator_security_origin.h>
27 #include <dpl/foreach.h>
28 #include <dpl/wrt-dao-ro/widget_dao_read_only.h>
29 #include <dpl/wrt-dao-ro/WrtDatabase.h>
30 #include <dpl/wrt-dao-ro/widget_config.h>
31 #include <dpl/wrt-dao-ro/global_config.h>
32 #include <dpl/wrt-dao-ro/common_dao_types.h>
36 using namespace DPL::DB::ORM;
37 using namespace DPL::DB::ORM::security_origin;
39 namespace SecurityOriginDB {
40 #define SQL_CONNECTION_EXCEPTION_HANDLER_BEGIN Try
42 #define SQL_CONNECTION_EXCEPTION_HANDLER_END(message) \
43 Catch(DPL::DB::SqlConnection::Exception::Base) { \
45 ReThrowMsg(SecurityOriginDAO::Exception::DatabaseError, \
50 DPL::DB::SqlConnection::Flag::Option SECURITY_ORIGIN_DB_OPTION =
51 DPL::DB::SqlConnection::Flag::RW;
52 DPL::DB::SqlConnection::Flag::Type SECURITY_ORIGIN_DB_TYPE =
53 DPL::DB::SqlConnection::Flag::UseLucene;
54 const char* const SECURITY_ORIGIN_DB_NAME = ".security_origin.db";
55 const char* const SECURITY_ORIGIN_DB_SQL_PATH =
56 "/usr/share/wrt-engine/security_origin_db.sql";
57 const char* const SECURITY_DATABASE_JOURNAL_FILENAME = "-journal";
59 const int WEB_APPLICATION_UID = 5000;
60 const int WEB_APPLICATION_GUID = 5000;
62 std::string createDatabasePath(const WrtDB::WidgetPkgName &pkgName)
64 std::stringstream filename;
66 filename << WrtDB::WidgetConfig::GetWidgetPersistentStoragePath(pkgName)
68 << SECURITY_ORIGIN_DB_NAME;
69 return filename.str();
72 std::string createDatabasePath(int widgetHandle)
74 using namespace DPL::DB::ORM;
75 using namespace WrtDB::WidgetConfig;
76 using namespace WrtDB::GlobalConfig;
78 WrtDB::TizenAppId appid;
82 appid = WrtDB::WidgetDAOReadOnly::getTzAppId(widgetHandle);
84 Catch(DPL::DB::SqlConnection::Exception::Base) {
85 LogError("Failed to get database Path");
87 return createDatabasePath(appid);
90 void checkDatabase(std::string databasePath)
92 SQL_CONNECTION_EXCEPTION_HANDLER_BEGIN
94 if (databasePath.empty()) {
95 ThrowMsg(SecurityOriginDAO::Exception::DatabaseError,
96 "Wrong database Path is passed");
100 if (stat(databasePath.c_str(), &buffer) != 0) {
101 //Create fresh database
102 LogInfo("Creating database " << databasePath);
105 file.open(SECURITY_ORIGIN_DB_SQL_PATH, std::ios_base::in);
107 ThrowMsg(SecurityOriginDAO::Exception::DatabaseError,
108 "Fail to get database Path");
111 std::stringstream ssBuffer;
112 ssBuffer << file.rdbuf();
116 DPL::DB::SqlConnection con(databasePath,
117 SECURITY_ORIGIN_DB_TYPE,
118 SECURITY_ORIGIN_DB_OPTION);
119 con.ExecCommand(ssBuffer.str().c_str());
122 if(chown(databasePath.c_str(),
124 WEB_APPLICATION_GUID) != 0)
126 ThrowMsg(SecurityOriginDAO::Exception::DatabaseError,
127 "Fail to change uid/guid");
129 std::string databaseJournal =
130 databasePath + SECURITY_DATABASE_JOURNAL_FILENAME;
131 if(chown(databaseJournal.c_str(),
133 WEB_APPLICATION_GUID) != 0)
135 ThrowMsg(SecurityOriginDAO::Exception::DatabaseError,
136 "Fail to change uid/guid");
139 SQL_CONNECTION_EXCEPTION_HANDLER_END("Fail to get database Path")
143 SecurityOriginDAO::SecurityOriginDAO(int handle) :
144 m_securityOriginDBPath(createDatabasePath(handle)),
145 m_securityOriginDBInterface(m_securityOriginDBPath, SECURITY_ORIGIN_DB_TYPE)
147 checkDatabase(m_securityOriginDBPath);
148 m_securityOriginDBInterface.AttachToThread(SECURITY_ORIGIN_DB_OPTION);
151 SecurityOriginDAO::SecurityOriginDAO(const WrtDB::WidgetPkgName &pkgName) :
152 m_securityOriginDBPath(createDatabasePath(pkgName)),
153 m_securityOriginDBInterface(m_securityOriginDBPath, SECURITY_ORIGIN_DB_TYPE)
155 checkDatabase(m_securityOriginDBPath);
156 m_securityOriginDBInterface.AttachToThread(SECURITY_ORIGIN_DB_OPTION);
159 SecurityOriginDAO::~SecurityOriginDAO()
161 m_securityOriginDBInterface.DetachFromThread();
164 SecurityOriginDataList SecurityOriginDAO::getSecurityOriginDataList(void)
166 SQL_CONNECTION_EXCEPTION_HANDLER_BEGIN
168 SecurityOriginDataList list;
169 SECURITY_ORIGIN_DB_SELECT(select,
171 &m_securityOriginDBInterface);
172 typedef std::list<SecurityOriginInfo::Row> RowList;
173 RowList rowList = select->GetRowList();
175 FOREACH(it, rowList) {
176 Origin origin(it->Get_scheme(), it->Get_host(), it->Get_port());
178 SecurityOriginDataPtr(
179 new SecurityOriginData(
180 static_cast<Feature>(it->Get_feature()), origin)));
184 SQL_CONNECTION_EXCEPTION_HANDLER_END("Failed to get data list")
187 Result SecurityOriginDAO::getResult(
188 const SecurityOriginData &securityOriginData)
190 SQL_CONNECTION_EXCEPTION_HANDLER_BEGIN
192 SECURITY_ORIGIN_DB_SELECT(select,
194 &m_securityOriginDBInterface);
196 And(And(And(Equals<SecurityOriginInfo::feature>(securityOriginData.
198 Equals<SecurityOriginInfo::scheme>(securityOriginData.
200 Equals<SecurityOriginInfo::host>(securityOriginData.origin.
202 Equals<SecurityOriginInfo::port>(securityOriginData.origin.port)));
203 SecurityOriginInfo::Select::RowList rows = select->GetRowList();
206 return RESULT_UNKNOWN;
208 SecurityOriginInfo::Row row = rows.front();
209 return static_cast<Result>(row.Get_result());
211 SQL_CONNECTION_EXCEPTION_HANDLER_END(
212 "Failed to get result for security origin")
215 bool SecurityOriginDAO::isReadOnly(const SecurityOriginData &securityOriginData)
217 SQL_CONNECTION_EXCEPTION_HANDLER_BEGIN
219 SECURITY_ORIGIN_DB_SELECT(select, SecurityOriginInfo, &m_securityOriginDBInterface);
221 And(And(And(Equals<SecurityOriginInfo::feature>(securityOriginData.feature),
222 Equals<SecurityOriginInfo::scheme>(securityOriginData.origin.scheme)),
223 Equals<SecurityOriginInfo::host>(securityOriginData.origin.host)),
224 Equals<SecurityOriginInfo::port>(securityOriginData.origin.port)));
225 SecurityOriginInfo::Select::RowList rows = select->GetRowList();
228 return RESULT_UNKNOWN;
230 SecurityOriginInfo::Row row = rows.front();
231 return row.Get_readonly() ? true : false;
233 SQL_CONNECTION_EXCEPTION_HANDLER_END("Fail to get readonly property")
236 void SecurityOriginDAO::setSecurityOriginData(const SecurityOriginData &securityOriginData,
240 SQL_CONNECTION_EXCEPTION_HANDLER_BEGIN
242 ScopedTransaction transaction(&m_securityOriginDBInterface);
243 SecurityOriginInfo::Row row;
244 row.Set_feature(securityOriginData.feature);
245 row.Set_scheme(securityOriginData.origin.scheme);
246 row.Set_host(securityOriginData.origin.host);
247 row.Set_port(securityOriginData.origin.port);
248 row.Set_result(result);
249 row.Set_readonly(readOnly ? 1 : 0);
251 if (true == hasResult(securityOriginData)) {
252 SECURITY_ORIGIN_DB_UPDATE(update,
254 &m_securityOriginDBInterface);
258 SECURITY_ORIGIN_DB_INSERT(
261 &m_securityOriginDBInterface);
265 transaction.Commit();
267 SQL_CONNECTION_EXCEPTION_HANDLER_END("Fail to set security origin data")
270 void SecurityOriginDAO::setPrivilegeSecurityOriginData(const Feature feature,
271 bool isOnlyAllowedLocalOrigin)
273 Origin origin(DPL::FromUTF8String("file"),
274 DPL::FromUTF8String(""),
276 if (!isOnlyAllowedLocalOrigin) {
277 origin.scheme = DPL::FromUTF8String("");
279 SecurityOriginData data(feature, origin);
280 setSecurityOriginData(data, RESULT_ALLOW_ALWAYS, true);
283 void SecurityOriginDAO::removeSecurityOriginData(
284 const SecurityOriginData &securityOriginData)
286 SQL_CONNECTION_EXCEPTION_HANDLER_BEGIN
288 ScopedTransaction transaction(&m_securityOriginDBInterface);
290 if (true == hasResult(securityOriginData)) {
291 SECURITY_ORIGIN_DB_DELETE(del,
293 &m_securityOriginDBInterface)
295 And(And(And(Equals<SecurityOriginInfo::feature>(
296 securityOriginData.feature),
297 Equals<SecurityOriginInfo::scheme>(
298 securityOriginData.origin.scheme)),
299 Equals<SecurityOriginInfo::host>(securityOriginData.
301 Equals<SecurityOriginInfo::port>(securityOriginData.origin.
304 transaction.Commit();
307 SQL_CONNECTION_EXCEPTION_HANDLER_END("Fail to set security origin data")
310 void SecurityOriginDAO::removeSecurityOriginData(const Result result)
312 SQL_CONNECTION_EXCEPTION_HANDLER_BEGIN
314 ScopedTransaction transaction(&m_securityOriginDBInterface);
315 SECURITY_ORIGIN_DB_DELETE(del,
317 &m_securityOriginDBInterface)
318 del->Where(Equals<SecurityOriginInfo::result>(result));
320 transaction.Commit();
322 SQL_CONNECTION_EXCEPTION_HANDLER_END("Fail to remove data by result")
325 bool SecurityOriginDAO::hasResult(const SecurityOriginData &securityOriginData)
327 Result res = getResult(securityOriginData);
328 return (res != RESULT_UNKNOWN);
331 #undef SQL_CONNECTION_EXCEPTION_HANDLER_BEGIN
332 #undef SQL_CONNECTION_EXCEPTION_HANDLER_END
333 } // namespace SecurityOriginDB