Yunjin Lee [Wed, 22 Mar 2017 07:53:47 +0000 (16:53 +0900)]
Add API to see if the applciation is on the privacy white list
Change-Id: Ic274c314ee3cf94e554fafcc8d315c16f6681fc4
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
MyungJoo Ham [Mon, 14 Nov 2016 10:24:01 +0000 (19:24 +0900)]
Remove Profile Build Dependency: Do it at runtime
- This is for Tizen 4.0.
: Tizen 4.0 Configurability and Build Blocks require
to remove all profile-depending build options in spec files.
(No More profile macros!)
- It is recommended to distinguish features/profiles at runtime.
unless it incurs too much overhead, which requires you to
create multiple binaries and subpackages.
The configuration file is /etc/privilege-checker.ini
For example:
$ cat /etc/privilege-checker.ini
[General]
Profile = mobile
$
You can apply same ini file for server-running scenarios.
- This has a bit of code cleaning in build scripts.
(e.g., BuildRequires is global to all subpackages.)
- When you SR this, you need to create JIRA-TRE of:
: Add security-privilege-manager-profile_tv for tv profile
: Add security-privilege-manager-profile_wearable for wearable profile
: Add security-privilege-manager-profile_mobile for wearable profile
patchset7: rebased and coding style updated
Change-Id: I901bf017cd088bbb657144ad34a8d1209b648f15
Signed-off-by: MyungJoo Ham <myungjoo.ham@samsung.com>
Yunjin Lee [Mon, 23 Jan 2017 05:03:57 +0000 (14:03 +0900)]
Add policy DB update script for mdm blacklist
Change-Id: I7c831554c2e643ac31be9be332e0351b5afbb0cb
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 20 Jan 2017 06:17:00 +0000 (15:17 +0900)]
Apply runtime askuser-disable on new API
Change-Id: I9871901ef1c0e12cbf53ae021df69b4e974ad711
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 16 Jan 2017 07:05:58 +0000 (16:05 +0900)]
Support 2.3 issued web privilege set of mobile/wearable profile for 2.2.x
- There's no platform version 2.2.1 indeed but requirement of backward compatibility exist by product released with version 2.2.x
hence change platform 2.3 issued privilege's from version to 2.2.1 (mapping table only)
- The list of modified privileges are as follows(mobile/wearable)
: account.read, account.write, audiorecorder, call, camera, healthinfo, internet, nfc.cardemulation, volume.set
Change-Id: Ifb45f3c19bd5d0cfa7fb99a51679d8d209c5c9cc
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 13 Jan 2017 07:12:51 +0000 (16:12 +0900)]
Remove negative symbol from return value
- Error enum was modified to negative value hence no need to return error enum with negative symbol
Change-Id: I4c359d5389be4344d07936505679186ce082422c
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 4 Jan 2017 06:20:44 +0000 (15:20 +0900)]
Handle black list check error properly
Change-Id: I5756f03a099e67dc31f321d99eeaf12cd0c4a1e6
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 3 Jan 2017 11:47:03 +0000 (20:47 +0900)]
Fix not exist privilege check bug of web under 2.3.1
Change-Id: Icb1aebf4239ca4c31bf5bc24686da0f034c26135
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 23 Dec 2016 07:34:22 +0000 (16:34 +0900)]
Add API to set/unset privilege disable list
- Add API to set/unset privilege disable list
- Add API to get disabled privilege list of certain user
- Remove compile warning : invalid multibyte sequence
Change-Id: Ib1a07e2adbb23430dde8aec7e3fe4b165a1288cd
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 21 Dec 2016 09:17:23 +0000 (18:17 +0900)]
Add API to get privilege type
- Add API to get privilege type.
It determines privilege type according to the given uid and package id
on the basis of ask policy white list per privacy and mdm black list.
- Add table for privacy white list.
It stores whitelist for ask policy and whether the privacy is user-settable or not.
Possible privacy option format is "*-{privacyA}-{privacyB}.." or "{privacyA}+{privacyB}+...".
If pkg should not be seen in privacy setting menu then set 'settable' flag to 0.
If 'settable' flag is set to 1 for the privacy or not exist for the privacy then then pkg privacy option is user-settable for that privacy.
Change-Id: I720e9f5abcf02c89b3a09238d5fbafe26bf8e044
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 2 Jan 2017 02:25:37 +0000 (11:25 +0900)]
Map internal usermanage privilege to systemsettings.admin
Change-Id: I14ef494c9abb9f0b1dd5f44e9c11668e6c2f9776
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 30 Dec 2016 07:38:32 +0000 (16:38 +0900)]
Add web push privilege to tv profile
Change-Id: I412469beb787742a5b2632e38bf1a4706acc02e2
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 26 Dec 2016 10:10:11 +0000 (19:10 +0900)]
Update wrt privilege mapping table: power privilege
Change-Id: Ia2633d04b871cf2564b4e0531e34253b4ed56289
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
jooseong lee [Fri, 23 Dec 2016 02:05:15 +0000 (11:05 +0900)]
Fix typo in previous commit
Change-Id: I9c9a2c9666e647550d3960b1e371b5a92022e5a5
Signed-off-by: jooseong lee <jooseong.lee@samsung.com>
jooseong lee [Thu, 22 Dec 2016 08:06:28 +0000 (17:06 +0900)]
Provide location privilege to all web application (below required version 2.3)
Change-Id: I95cb5a696ad55478bff50791167ddc41feb4f7e0
Signed-off-by: jooseong lee <jooseong.lee@samsung.com>
jin-gyu.kim [Mon, 19 Dec 2016 02:03:57 +0000 (11:03 +0900)]
Add the functionality to disable askuser in run-time.
Change-Id: I6f542060d29578757103a63f9835e12ba9245fa1
jooseong lee [Fri, 16 Dec 2016 04:09:46 +0000 (13:09 +0900)]
Add display privilege to all web application
When web applications use html video elements, web engine calls
display privileged api, which makes cynanre deny. Display privilege
should be provided to all web application like as Tizen2.x
Change-Id: I32f49289426cfc5e8233e3efe1d399f7516648db
Signed-off-by: jooseong lee <jooseong.lee@samsung.com>
Yunjin Lee [Mon, 12 Dec 2016 11:17:10 +0000 (20:17 +0900)]
Remove internal privacymanagement and usermanagement privilege from mapping table
Change-Id: I1477b038dd6200083a4892c8b642583b0627c48c
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 12 Dec 2016 11:14:25 +0000 (20:14 +0900)]
Do not treat internal privileges as privacy related
Change-Id: Id14795ba85f80e9e374903fbef62ba645a19411a
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 8 Dec 2016 08:25:58 +0000 (17:25 +0900)]
Change policy db directory and fix typo
- Change policy db directory to TZ_SYS_DB and modify its security configuration for DPM
- Fix typo in profile definition
Change-Id: Ib6feae1a74bd4ff5f172caa0bf669f6053b25a05
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 7 Dec 2016 07:32:04 +0000 (16:32 +0900)]
Add DISABLE_ASKUSER definition for profiles not using it
Change-Id: Iaf37662cc564544cc4756f02f6f0ccafd9dbe917
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 7 Dec 2016 07:13:13 +0000 (16:13 +0900)]
Add internal appdebugging privilege to mapping db
Change-Id: I6ac875ff34b0ea023d6f21d1445583bccfb0e09c
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 6 Dec 2016 12:00:50 +0000 (21:00 +0900)]
Revert modification of error message allocation
Change-Id: Icbfb12e6a115c5718aecc873678886f1c20ab975
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 5 Dec 2016 06:10:38 +0000 (15:10 +0900)]
Add missing whitelist app and Fix memory leak
Change-Id: Ie5703b747d1db76af22d0ab8cadf9e6ccba28f28
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 28 Nov 2016 06:38:46 +0000 (15:38 +0900)]
Add API to determine given privilege is privacy related or not on the basis of whitelist
Change-Id: I1df0f8dc4654124d3b052cc51dfd12c245f9bd69
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 18 Nov 2016 09:54:36 +0000 (18:54 +0900)]
Modify to check whether internal privileges are privacy related or not
- internal privileges mapped by privacy related core privileges are also privacy related.
- remove redundant internal privileges listed in internal_only.list to store them properly.
Change-Id: I561c4b998a90e4d527c5ef38c6c28802bddf33f5
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 16 Nov 2016 09:13:15 +0000 (18:13 +0900)]
Add uid input parameter to privilege verification API
Change-Id: Ibfb77bd9af850cdd606a174f9861690fff1b0c5c
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 16 Nov 2016 06:05:10 +0000 (15:05 +0900)]
Add API to check metadata with certificate level
Change-Id: I9e2157e9b09fb98e7773089de565b51634ccd26f
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 8 Nov 2016 09:29:10 +0000 (18:29 +0900)]
Fix spec not to provide so at devel
Change-Id: I21edad969ed79b36711917e44645913761b3ad18
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 4 Nov 2016 05:06:31 +0000 (14:06 +0900)]
Add core privilege
- Add core calendar.read and calendar.write to wearable profile since api version 3.0
Change-Id: I5c42c26db524802c0ea1ef6b64d3f77ce74e7087
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 31 Oct 2016 09:18:51 +0000 (18:18 +0900)]
Fix not to do make db dir for build_type NO_DB and add so file for devel package
Change-Id: I19d32b188456fb2a8d8b0016d49180aae17dd499
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 28 Oct 2016 10:26:27 +0000 (19:26 +0900)]
Modify privilege version validation logic to support x.x.x.x format (x = integer, 0 <= x <= 255)
Change-Id: I0fd8978559abe5db19be62de14f3c0bcf97f4269
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Kim Kidong [Mon, 24 Oct 2016 02:00:35 +0000 (19:00 -0700)]
Merge "Remove rpmlint error and warning and add build type NO_DB" into tizen
Yunjin Lee [Fri, 21 Oct 2016 03:00:33 +0000 (12:00 +0900)]
Remove rpmlint error and warning and add build type NO_DB
- Remove rpmlint error and warning caused by package description and lang files
- Add build_type NO_DB to reduce build time for test without DB changes
Change-Id: Ia2b64035dad5346ec16458d67721f2820d94bda5
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 9 Sep 2016 07:59:53 +0000 (16:59 +0900)]
Treat web only privilege as core privilege
Change-Id: I1bc290f00cb8b95d5326a50a3421e0be875633ef
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 29 Sep 2016 04:16:21 +0000 (13:16 +0900)]
Add web bluetooth privilege to TV profile
Change-Id: I6eb83f2f8779ae4ae5d46210422d725646eb4aa5
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 20 Sep 2016 08:23:29 +0000 (17:23 +0900)]
Fix privacy ID of tv profile to url format
Change-Id: Iaf669470fef71546682ae653d7b14c5c0ae26aed
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 5 Sep 2016 06:25:21 +0000 (15:25 +0900)]
Add restore_fcommon macro for ASan
Change-Id: I52e98248544950fab7a2b09852d1ae94c6912ed2
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 5 Sep 2016 05:14:57 +0000 (14:14 +0900)]
Modify privacy display API and add tc for it
- Modify privilege_info_get_privacy_display() to get translated string
- Add tc for privilege_info_get_privacy_display()
Change-Id: If215be28cc7a716428e21b794e6d8eeb1c3bac95
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 31 Aug 2016 08:48:13 +0000 (17:48 +0900)]
Add core privilege and update language files : fido client
Change-Id: I6be58d17e8879827915dd056135b43d8a02f78d2
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 31 Aug 2016 05:30:40 +0000 (14:30 +0900)]
Remove core privilege and update language files
- Remove core privilege: dpm.settings
- Update language files for appdir.shareddata privilege description
Change-Id: Ia9ce31778815025fa41d824a419e0ec51dbf4401
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 22 Aug 2016 01:37:39 +0000 (10:37 +0900)]
Add core privilege: appdir.shareddata
Change-Id: I71636f2b97df7f523f1aff3ee3d5bc1805f89b4f
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 11 Aug 2016 08:36:14 +0000 (17:36 +0900)]
Remove core privilege: vpnservice.admin
Change-Id: I2e02333bfb6886d702d09d18444737fb9830c878
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 8 Aug 2016 08:06:18 +0000 (17:06 +0900)]
Add API for getting privacy ID by privilege
Change-Id: I090af0d4b6043cfd7cadfbb50d9cf57105626ba1
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
BogonKim [Tue, 26 Jul 2016 10:04:21 +0000 (19:04 +0900)]
Privilege Verifier : Utility provides functions to verify privilege information of packages to be installed.
Change-Id: Ibbc584e867ae625baf593a9f0444ed0a588e8df2
Signed-off-by: BogonKim <bogon82.kim@samsung.com>
BogonKim [Tue, 26 Jul 2016 03:56:30 +0000 (12:56 +0900)]
remove undefined symbol
Problem : undefined symbol cause link error
when executable link with this library.
Solution : Add "-Wl,--no-undefined" to occur build error
for undefined symbol and remove undefined symbol
Change-Id: I5c942cdf3be6114f5a3e918c0e8cee47fdceb050
Signed-off-by: BogonKim <bogon82.kim@samsung.com>
BogonKim [Tue, 26 Jul 2016 02:20:54 +0000 (11:20 +0900)]
featuring out tizen specific features using __TIZEN__ macro
Change-Id: I83e667cb952eac608ecbf140b217ed71861bb0db
Signed-off-by: BogonKim <bogon82.kim@samsung.com>
Yunjin Lee [Mon, 8 Aug 2016 07:47:09 +0000 (16:47 +0900)]
Modify Privacy ID format : XXX -> tizen.org/privacy/XXX
Change-Id: Ieee9e1a1450581787b8e5175cc39c2369de9beca
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 12 Jul 2016 01:28:21 +0000 (10:28 +0900)]
Update language files and privacy DID
Change-Id: Ida319fbc42bd1aa66cbdc497aff08d03629393f2
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 6 Jul 2016 09:59:50 +0000 (18:59 +0900)]
Add API and table to provide privacy DID and update language files
Change-Id: I3faf862b33099eba5a3859929662d737069e4703
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 1 Jul 2016 01:56:20 +0000 (10:56 +0900)]
Update mapping table: Add systemsettings.admin -> internal usermanagement, privacymanagement
Change-Id: Ib2183cc7942af6fe456299e6dbeec806998c33f4
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 30 Jun 2016 08:48:49 +0000 (17:48 +0900)]
Sync tv core privilege table to mobile and modify db generator script for tv profile
Change-Id: I08643cec86d40431b80413cc20dddf648a72cbe4
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 28 Jun 2016 01:57:44 +0000 (10:57 +0900)]
1. Add APIs for checing valid/internal/privacy privilege and table for the APIs 2. Fix to check return value of sqlite3_mprintf
Change-Id: I47b0e61ca3a6bd31cfce83033d4e36aa0cd772ec
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 24 Jun 2016 09:10:25 +0000 (02:10 -0700)]
Revert "Add APIs to check valid privilege and internal privilege"
This reverts commit
d47a3cc12b0c4d6aa959bf6107518f7d6f85cfb7.
Change-Id: I3fad7418bf4010c2e600da63dbc4eb7a8b2b5047
Yunjin Lee [Fri, 24 Jun 2016 09:09:48 +0000 (02:09 -0700)]
Revert "Fix to check return value of sqlite3_mprintf"
This reverts commit
e75fccaf4c07ddb23f2b6a3e732685152e2fd12d.
Change-Id: I883e542b6ee6f50ae1f8565fbd6249bfc37ed146
Yunjin Lee [Fri, 24 Jun 2016 05:48:20 +0000 (14:48 +0900)]
Fix to check return value of sqlite3_mprintf
Change-Id: Ic9be1be50e756121cbd79128d38b19aba417e1f0
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 13 Jun 2016 07:50:52 +0000 (16:50 +0900)]
Update web privilege mapping table
Some web APIs are not a wrapper of native API so web privileges for those have no mapping native privilege. Therefore we add internal privileges for them to check the permission properly. (format of http://tizen.org/privilege/internal/web/xxxx)
Change-Id: Ic27ec76015ecd0777c5fd11af3ebf044c804e02e
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 17 Jun 2016 11:32:15 +0000 (20:32 +0900)]
Add APIs to check valid privilege and internal privilege
Change-Id: Ife6da0e3bb37d2e6984356c58fc366040d52be62
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 17 Jun 2016 02:59:04 +0000 (11:59 +0900)]
Add/deprecate core privileges and update language files
- Add core privilege: antivirus.admin, antivirus.scan, antivirus.webprotect, dpm.bluetooth, dpm.browser, dpm.camera, dpm.clipboard, dpm.debugging, dpm.email, dpm.location, dpm.lock, dpm.message, dpm.microphone, dpm.password, dpm.security, dpm.settings, dpm.storage, dpm.usb, dpm.wifi, dpm.wipe, dpm.zone
- Deprecate core privilege: antiviurs
- Update language files
Change-Id: I65c136bc7263bf7aadad1c277e871bf6076fa666
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 16 Jun 2016 07:02:13 +0000 (16:02 +0900)]
Update native privilege info: Fix issued version of mapservice of wearable profile to 2.3.2
Change-Id: I16899354f924cdef0ff54c0ea70e73a55bc31ab8
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 15 Jun 2016 04:46:59 +0000 (13:46 +0900)]
Fix privilege mis-grouping issue
- pkgmgr passes privilege list including internal privileges and it causes misgrouping issue. fix to bypass internal privileges when getting privilege group info.
- fix not to check api version when getting privilege group info(not required).
Change-Id: I6263178b7d747b3fc9fa1bdccfa50d97e73c1246
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 7 Jun 2016 09:03:25 +0000 (18:03 +0900)]
Revise return value of privilege_info_is_privacy()
return 1 for true(privilege id privacy related), 0 for false(include not stored in db case), and -1 for any other DB error.
Change-Id: If5b6d6dd3f2df0879b0e12def69b57bdeebe379d
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 7 Jun 2016 01:18:52 +0000 (10:18 +0900)]
Fix 64bit build break
Change-Id: Ia193f79ca2076b7cb79b8ccb80edc939d41eeb1e
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 1 Jun 2016 10:41:11 +0000 (19:41 +0900)]
Revise testsuit: Add missing testcase and add util header for frequently used functions
Change-Id: Iccbf48e74fc4696ed45a7cc0bf27be745c33d5c1
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 1 Jun 2016 05:26:06 +0000 (14:26 +0900)]
Add wrt privilege: widget.viewer
Change-Id: I5943e2d07c3be88175119947b10430ba81a91b7a
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 20 May 2016 07:18:39 +0000 (16:18 +0900)]
Fix memory leak and typo
Change-Id: Iac7f5a7429320e38061cba70a74f041b0a44f7de
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 18 May 2016 01:29:06 +0000 (10:29 +0900)]
Add core email privilege to wearable profile and update language files
Add core email privilege to wearable profile (ACR-604)
Change-Id: Ic17f19172044e65204e2fec5d8b738a43bd4f2e9
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 4 May 2016 02:02:03 +0000 (11:02 +0900)]
Update mapping table: Add mediastorage and externalstorage to web default privilege
Change-Id: Ic50beaf28814c973810dcb47728bc504f2f50365
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 28 Apr 2016 03:16:36 +0000 (12:16 +0900)]
Deprecate core privilege : minicontrol.provider
Change-Id: I49795de5a0f76fe5032b83733403452600b35f98
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 28 Apr 2016 02:24:53 +0000 (11:24 +0900)]
Change profile of privilege : core vpnservice, vpnservice.admin
Change-Id: I2560d9cadc432b27fee6e0a14894d703755f8cc9
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 25 Apr 2016 06:08:11 +0000 (15:08 +0900)]
Revise function to avoid SQL injection and memory leak
Change-Id: Ie9d579756199bab7c64b3afc05f19d47e4b1a9b0
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 18 Apr 2016 00:08:26 +0000 (09:08 +0900)]
Add missing policy db generate script
Change-Id: Iee4023152f8b9e9a3dfc6b1482dec3f9ae34c3fc
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 7 Apr 2016 01:44:40 +0000 (10:44 +0900)]
Revise error message and Fix memory leak
Change-Id: I058ffe166e48e1339d8eeb39512ac67763d0a6ac
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 5 Apr 2016 23:56:39 +0000 (08:56 +0900)]
Add black list APIs and DB
For testing, build package and install tc-privilege-checker.*.rpm on target and run /usr/bin/tc-privilege-black-list on target shell
Change-Id: Ia7a931a7325a3cce8e039b52be67e187c8dfde44
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 30 Mar 2016 09:10:50 +0000 (18:10 +0900)]
Update language files
Change-Id: Ifb2e29e69a3b5b5e57e9176b1a61f92f288eea60
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 29 Mar 2016 05:22:06 +0000 (14:22 +0900)]
Apply Tizen coding rule to headers
Change-Id: I917f67691ba8d177e2dd7f89747ddff78c6c5940
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Kim Kidong [Tue, 29 Mar 2016 02:00:56 +0000 (19:00 -0700)]
Merge "Fix typo in tv core privilege DB and sync privilege list with mobile" into tizen
Kim Kidong [Tue, 29 Mar 2016 02:00:07 +0000 (19:00 -0700)]
Merge "Remove minicontrol.provider from wearable profile" into tizen
Yunjin Lee [Mon, 28 Mar 2016 10:52:28 +0000 (19:52 +0900)]
Add wrt volume.set privilege to TV profile
Change-Id: I84910ab3db24dad0741614031de70abad6088734
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 28 Mar 2016 02:57:53 +0000 (11:57 +0900)]
Fix typo in tv core privilege DB and sync privilege list with mobile
Change-Id: Id59bbbdfaf4ee09e7e117d23010fce34787d5a07
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 24 Mar 2016 05:14:20 +0000 (14:14 +0900)]
Remove minicontrol.provider from wearable profile
Change-Id: Ibbff5846b81cc444f20272c621dbe13112519319
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 23 Mar 2016 06:53:28 +0000 (15:53 +0900)]
Revise version info of wearable privileges
Change-Id: I75edbbe73f33fc7f568ef5ac99808c55f1ffa78f
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 23 Mar 2016 06:10:45 +0000 (15:10 +0900)]
Update language files
Change-Id: I3119f033efb2f9025342ad438fd2c54b3069f845
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 23 Mar 2016 05:36:51 +0000 (14:36 +0900)]
Add core privilege: vpnservice, vpnservice.admin
Change-Id: I0dfa280dfc4de1bfee89cf9b1f9d4a2a518df6ef
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 17 Mar 2016 06:52:30 +0000 (15:52 +0900)]
Add missing privilege: Add web d2d.datasharing privilege to tv profile
Change-Id: Id91475043754cfe6890d5cf4277dfe5233cdb1af
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 15 Mar 2016 07:24:42 +0000 (16:24 +0900)]
Add core location.coarse privilege
Change-Id: I0753b330fc22ff0dbff15c2d47e27690372397b9
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 15 Mar 2016 03:03:57 +0000 (12:03 +0900)]
Revise mapping table: Add missing privilege mapping(core use_ir) and fix miswritten expired version(wrt systemmanager) in mapping table
Change-Id: Ia510cb956199c409be5cae5d61576aca0ecf0d17
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 14 Mar 2016 10:38:42 +0000 (19:38 +0900)]
Fix typo in wearable testsuit
Change-Id: Id3cb913a2c9a343fece674c36aa2cb9c7d3bc348
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 10 Mar 2016 10:12:22 +0000 (19:12 +0900)]
Apply "-Werror -Wall -Wextra" option
Change-Id: I3ccaf81d9189fae198ff650d21ea66e4a56225f6
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 9 Mar 2016 06:57:18 +0000 (15:57 +0900)]
Modify core mapservice to non-privacy related privilege
Change-Id: Ifab7707f23b88a15447e25ec511e4aa52787824c
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 8 Mar 2016 09:04:13 +0000 (18:04 +0900)]
Modify query for privilege description refers to https://review.tizen.org/gerrit/#/c/57858/
Change-Id: I2d8c16ece9aad4660100ea47db57ad981516078a
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 8 Mar 2016 08:53:50 +0000 (17:53 +0900)]
Deprecate/remove wrt keymanager privilege
Change-Id: Ib2b0475f923ae1fe59c081c6631136fdfdbc75b4
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 3 Mar 2016 00:52:37 +0000 (09:52 +0900)]
Modify to see mobile when build profile is common
Change-Id: I0d7136836771d37c90b4ed4b129d2ef6085b143d
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 2 Mar 2016 08:08:49 +0000 (17:08 +0900)]
Deprecate native keymanager and Add web d2d.datasharing privilege
Change-Id: Iadb7b011fcab8d7c5ca27fa704b18c889621c1e7
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 24 Feb 2016 06:01:27 +0000 (15:01 +0900)]
Remove useless mkdir line from spec file
Change-Id: I05c14c13ec1ff42eecfd9729dfe3ec5b57989e78
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 22 Feb 2016 08:45:27 +0000 (17:45 +0900)]
1. Add core use_ir privilege 2. Remove d2d.* privileges except d2d.datasharing 3. Update DID and language files 4. Add note field to csv file - this field is ignored when creating db -
Change-Id: If489d5784c6d75cf3aeecfb78caee3195a02f2b4
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 28 Jan 2016 08:05:28 +0000 (17:05 +0900)]
1. Remove d2d.admin privilege 2. Revise expired version of mapping table and query for mapping
Change-Id: I7544201074739253c725abed749acd73d3f25de3
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 26 Jan 2016 00:35:04 +0000 (09:35 +0900)]
1. Revise rpm name from capi-security-privilege-manager to security-privilege-manager 2. Add pc_requires to fix build fail of askuser
Change-Id: Ie212fe0ab401708483fd2512377591fb986418f0
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 25 Jan 2016 09:11:42 +0000 (18:11 +0900)]
1. Modify privilege verification logic according to the changes of expired version 2. Fix api version padding 3. Fix broken DB of TV profile
Change-Id: I8e2778e498a7379c9b997eef3449bcc16fa240e8
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 20 Jan 2016 07:54:55 +0000 (16:54 +0900)]
Add privacy feature: APIs and privacy info
To Test New APIs, bulid packages and install tc-privilege-checker.*.rpm and run /usr/bin/tc-privilege-info
For using new APIs:
#include <privilege_info.h>
int ret = privilege_info_is_privacy("http://tizen.org/privilege/account.read");
if (ret == 1)
//is privacy case
else if (ret == 0)
// is not privacy case
else if (ret == -1)
// on error
GList* privacy_list = NULL; // privacy_list must be released with g_list_free by caller
ret = privilege_info_get_privacy_list(&privacy_list);
if (ret == 0) // ret == PRVMGR_ERR_NONE
// success case
else
// on error
GList* privilege_list = NULL; // privilege_list must be released with g_list_free by caller
ret = privilege_info_get_privilege_list_by_privacy("ACCOUNT", &privilege_list);
if (ret == 0) // ret == PRVMGR_ERR_NONE
//success case
else if (ret == PRVMGR_ERR_INVALID_PARAMETER)
// privacy param is NULL
else
// on error
Change-Id: I5106d53b4adc538155912269bdf6fd31142ad4ab
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>