1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
|
/**************************************************************************
**
** This file is part of Qt SDK**
**
** Copyright (c) 2012 Nokia Corporation and/or its subsidiary(-ies).*
**
** Contact: Nokia Corporation qt-info@nokia.com**
**
** No Commercial Usage
**
** This file contains pre-release code and may not be distributed.
** You may use this file in accordance with the terms and conditions
** contained in the Technology Preview License Agreement accompanying
** this package.
**
** GNU Lesser General Public License Usage
**
** This file may be used under the terms of the GNU Lesser General Public
** License version 2.1 as published by the Free Software Foundation and
** appearing in the file LICENSE.LGPL included in the packaging of this file.
** Please review the following information to ensure the GNU Lesser General
** Public License version 2.1 requirements will be met:
** http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html.
**
** In addition, as a special exception, Nokia gives you certain additional
** rights. These rights are described in the Nokia Qt LGPL Exception version
** 1.1, included in the file LGPL_EXCEPTION.txt in this package.
**
** If you are unsure which license is appropriate for your use, please contact
** (qt-info@nokia.com).
**
**************************************************************************/
#include "adminauthorization.h"
#include <Security/Authorization.h>
#include <Security/AuthorizationTags.h>
#include <QtCore/QStringList>
#include <QtCore/QVector>
#include <unistd.h>
// -- AdminAuthorization::Private
class AdminAuthorization::Private
{
public:
Private() : auth(0) { }
AuthorizationRef auth;
};
// -- AdminAuthorization
AdminAuthorization::AdminAuthorization()
: d(new Private)
{
AuthorizationCreate(NULL, kAuthorizationEmptyEnvironment, kAuthorizationFlagDefaults, &d->auth);
}
AdminAuthorization::~AdminAuthorization()
{
AuthorizationFree(d->auth, kAuthorizationFlagDestroyRights);
delete d;
}
bool AdminAuthorization::authorize()
{
if (geteuid() == 0)
setAuthorized();
if (isAuthorized())
return true;
AuthorizationItem item;
item.name = kAuthorizationRightExecute;
item.valueLength = 0;
item.value = NULL;
item.flags = 0;
AuthorizationRights rights;
rights.count = 1;
rights.items = &item;
const AuthorizationFlags flags = kAuthorizationFlagDefaults | kAuthorizationFlagInteractionAllowed
| kAuthorizationFlagPreAuthorize | kAuthorizationFlagExtendRights;
const OSStatus result = AuthorizationCopyRights(d->auth, &rights, kAuthorizationEmptyEnvironment,
flags, 0);
if (result != errAuthorizationSuccess)
return false;
seteuid(0);
setAuthorized();
emit authorized();
return true;
}
bool AdminAuthorization::execute(QWidget *, const QString &program, const QStringList &arguments)
{
QVector<char *> args;
QVector<QByteArray> utf8Args;
foreach (const QString &argument, arguments) {
utf8Args.push_back(argument.toUtf8());
args.push_back(utf8Args.last().data());
}
args.push_back(0);
const QByteArray utf8Program = program.toUtf8();
const OSStatus result = AuthorizationExecuteWithPrivileges(d->auth, utf8Program.data(),
kAuthorizationFlagDefaults, args.data(), 0);
return result == errAuthorizationSuccess;
}
bool AdminAuthorization::hasAdminRights()
{
return geteuid() == 0;
}
|