diff options
Diffstat (limited to 'src/libs/installer/adminauthorization_mac.cpp')
-rw-r--r-- | src/libs/installer/adminauthorization_mac.cpp | 120 |
1 files changed, 120 insertions, 0 deletions
diff --git a/src/libs/installer/adminauthorization_mac.cpp b/src/libs/installer/adminauthorization_mac.cpp new file mode 100644 index 000000000..ce0a17095 --- /dev/null +++ b/src/libs/installer/adminauthorization_mac.cpp @@ -0,0 +1,120 @@ +/************************************************************************** +** +** This file is part of Installer Framework +** +** Copyright (c) 2011-2012 Nokia Corporation and/or its subsidiary(-ies). +** +** Contact: Nokia Corporation (qt-info@nokia.com) +** +** +** GNU Lesser General Public License Usage +** +** This file may be used under the terms of the GNU Lesser General Public +** License version 2.1 as published by the Free Software Foundation and +** appearing in the file LICENSE.LGPL included in the packaging of this file. +** Please review the following information to ensure the GNU Lesser General +** Public License version 2.1 requirements will be met: +** http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html. +** +** In addition, as a special exception, Nokia gives you certain additional +** rights. These rights are described in the Nokia Qt LGPL Exception +** version 1.1, included in the file LGPL_EXCEPTION.txt in this package. +** +** Other Usage +** +** Alternatively, this file may be used in accordance with the terms and +** conditions contained in a signed written agreement between you and Nokia. +** +** If you have questions regarding the use of this file, please contact +** Nokia at qt-info@nokia.com. +** +**************************************************************************/ + +#include "adminauthorization.h" + +#include <Security/Authorization.h> +#include <Security/AuthorizationTags.h> + +#include <QtCore/QStringList> +#include <QtCore/QVector> + +#include <unistd.h> + + +// -- AdminAuthorization::Private + +class AdminAuthorization::Private +{ +public: + Private() : auth(0) { } + + AuthorizationRef auth; +}; + + +// -- AdminAuthorization + +AdminAuthorization::AdminAuthorization() + : d(new Private) +{ + AuthorizationCreate(NULL, kAuthorizationEmptyEnvironment, kAuthorizationFlagDefaults, &d->auth); +} + +AdminAuthorization::~AdminAuthorization() +{ + AuthorizationFree(d->auth, kAuthorizationFlagDestroyRights); + delete d; +} + +bool AdminAuthorization::authorize() +{ + if (geteuid() == 0) + setAuthorized(); + + if (isAuthorized()) + return true; + + AuthorizationItem item; + item.name = kAuthorizationRightExecute; + item.valueLength = 0; + item.value = NULL; + item.flags = 0; + + AuthorizationRights rights; + rights.count = 1; + rights.items = &item; + + const AuthorizationFlags flags = kAuthorizationFlagDefaults | kAuthorizationFlagInteractionAllowed + | kAuthorizationFlagPreAuthorize | kAuthorizationFlagExtendRights; + + const OSStatus result = AuthorizationCopyRights(d->auth, &rights, kAuthorizationEmptyEnvironment, + flags, 0); + if (result != errAuthorizationSuccess) + return false; + + seteuid(0); + setAuthorized(); + emit authorized(); + return true; +} + +bool AdminAuthorization::execute(QWidget *, const QString &program, const QStringList &arguments) +{ + QVector<char *> args; + QVector<QByteArray> utf8Args; + foreach (const QString &argument, arguments) { + utf8Args.push_back(argument.toUtf8()); + args.push_back(utf8Args.last().data()); + } + args.push_back(0); + + const QByteArray utf8Program = program.toUtf8(); + const OSStatus result = AuthorizationExecuteWithPrivileges(d->auth, utf8Program.data(), + kAuthorizationFlagDefaults, args.data(), 0); + return result == errAuthorizationSuccess; +} + +bool AdminAuthorization::hasAdminRights() +{ + return geteuid() == 0; +} |