1 files changed, 120 insertions, 0 deletions

diff --git a/src/libs/installer/adminauthorization_mac.cpp b/src/libs/installer/adminauthorization_mac.cpp
new file mode 100644
index 000000000..ce0a17095
--- /dev/null
+++ b/src/libs/installer/adminauthorization_mac.cpp
@@ -0,0 +1,120 @@
+/**************************************************************************
+**
+** This file is part of Installer Framework
+**
+** Copyright (c) 2011-2012 Nokia Corporation and/or its subsidiary(-ies).
+**
+** Contact: Nokia Corporation (qt-info@nokia.com)
+**
+**
+** GNU Lesser General Public License Usage
+**
+** This file may be used under the terms of the GNU Lesser General Public
+** License version 2.1 as published by the Free Software Foundation and
+** appearing in the file LICENSE.LGPL included in the packaging of this file.
+** Please review the following information to ensure the GNU Lesser General
+** Public License version 2.1 requirements will be met:
+** http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html.
+**
+** In addition, as a special exception, Nokia gives you certain additional
+** rights. These rights are described in the Nokia Qt LGPL Exception
+** version 1.1, included in the file LGPL_EXCEPTION.txt in this package.
+**
+** Other Usage
+**
+** Alternatively, this file may be used in accordance with the terms and
+** conditions contained in a signed written agreement between you and Nokia.
+**
+** If you have questions regarding the use of this file, please contact
+** Nokia at qt-info@nokia.com.
+**
+**************************************************************************/
+
+#include "adminauthorization.h"
+
+#include <Security/Authorization.h>
+#include <Security/AuthorizationTags.h>
+
+#include <QtCore/QStringList>
+#include <QtCore/QVector>
+
+#include <unistd.h>
+
+
+// -- AdminAuthorization::Private
+
+class AdminAuthorization::Private
+{
+public:
+    Private() : auth(0) { }
+
+    AuthorizationRef auth;
+};
+
+
+// -- AdminAuthorization
+
+AdminAuthorization::AdminAuthorization()
+    : d(new Private)
+{
+    AuthorizationCreate(NULL, kAuthorizationEmptyEnvironment, kAuthorizationFlagDefaults, &d->auth);
+}
+
+AdminAuthorization::~AdminAuthorization()
+{
+    AuthorizationFree(d->auth, kAuthorizationFlagDestroyRights);
+    delete d;
+}
+
+bool AdminAuthorization::authorize()
+{
+    if (geteuid() == 0)
+        setAuthorized();
+
+    if (isAuthorized())
+        return true;
+
+    AuthorizationItem item;
+    item.name = kAuthorizationRightExecute;
+    item.valueLength = 0;
+    item.value = NULL;
+    item.flags = 0;
+
+    AuthorizationRights rights;
+    rights.count = 1;
+    rights.items = &item;
+
+    const AuthorizationFlags flags = kAuthorizationFlagDefaults | kAuthorizationFlagInteractionAllowed
+        | kAuthorizationFlagPreAuthorize | kAuthorizationFlagExtendRights;
+
+    const OSStatus result = AuthorizationCopyRights(d->auth, &rights, kAuthorizationEmptyEnvironment,
+        flags, 0);
+    if (result != errAuthorizationSuccess)
+        return false;
+
+    seteuid(0);
+    setAuthorized();
+    emit authorized();
+    return true;
+}
+
+bool AdminAuthorization::execute(QWidget *, const QString &program, const QStringList &arguments)
+{
+    QVector<char *> args;
+    QVector<QByteArray> utf8Args;
+    foreach (const QString &argument, arguments) {
+        utf8Args.push_back(argument.toUtf8());
+        args.push_back(utf8Args.last().data());
+    }
+    args.push_back(0);
+
+    const QByteArray utf8Program = program.toUtf8();
+    const OSStatus result = AuthorizationExecuteWithPrivileges(d->auth, utf8Program.data(),
+        kAuthorizationFlagDefaults, args.data(), 0);
+    return result == errAuthorizationSuccess;
+}
+
+bool AdminAuthorization::hasAdminRights()
+{
+    return geteuid() == 0;
+}