1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
|
/**************************************************************************
**
** This file is part of Qt SDK**
**
** Copyright (c) 2011 Nokia Corporation and/or its subsidiary(-ies).*
**
** Contact: Nokia Corporation qt-info@nokia.com**
**
** No Commercial Usage
**
** This file contains pre-release code and may not be distributed.
** You may use this file in accordance with the terms and conditions
** contained in the Technology Preview License Agreement accompanying
** this package.
**
** GNU Lesser General Public License Usage
**
** This file may be used under the terms of the GNU Lesser General Public
** License version 2.1 as published by the Free Software Foundation and
** appearing in the file LICENSE.LGPL included in the packaging of this file.
** Please review the following information to ensure the GNU Lesser General
** Public License version 2.1 requirements will be met:
** http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html.
**
** In addition, as a special exception, Nokia gives you certain additional
** rights. These rights are described in the Nokia Qt LGPL Exception version
** 1.1, included in the file LGPL_EXCEPTION.txt in this package.
**
** If you are unsure which license is appropriate for your use, please contact
** (qt-info@nokia.com).
**
**************************************************************************/
#include "adminauthorization.h"
#include <Security/Authorization.h>
#include <Security/AuthorizationTags.h>
#include <unistd.h>
#include <QStringList>
#include <QVector>
class AdminAuthorization::Private
{
public:
Private()
: auth( 0 )
{
}
AuthorizationRef auth;
};
AdminAuthorization::AdminAuthorization()
{
AuthorizationCreate( 0, kAuthorizationEmptyEnvironment, kAuthorizationFlagDefaults, &d->auth );
}
AdminAuthorization::~AdminAuthorization()
{
AuthorizationFree( d->auth, kAuthorizationFlagDestroyRights );
}
bool AdminAuthorization::authorize()
{
if( geteuid() == 0 )
setAuthorized();
if( isAuthorized() )
return true;
AuthorizationItem item = { kAuthorizationRightExecute, 0, NULL, 0 };
const AuthorizationRights rights = { 1, &item };
const AuthorizationFlags flags = kAuthorizationFlagDefaults | kAuthorizationFlagInteractionAllowed | kAuthorizationFlagPreAuthorize | kAuthorizationFlagExtendRights;
const int result = AuthorizationCopyRights( d->auth, &rights, 0, flags, 0 );
if( result != 0 )
return false;
seteuid( 0 );
setAuthorized();
emit authorized();
return true;
}
bool AdminAuthorization::execute( QWidget*, const QString& program, const QStringList& arguments )
{
const QByteArray utf8Program = program.toUtf8();
const char* const prog = utf8Program.data();
QVector< QByteArray > utf8Args;
QVector< char* > args;
for( QStringList::const_iterator it = arguments.begin(); it != arguments.end(); ++it )
{
utf8Args.push_back( it->toUtf8() );
args.push_back( utf8Args.last().data() );
}
args.push_back( 0 );
const AuthorizationFlags flags = kAuthorizationFlagDefaults;
const int result = AuthorizationExecuteWithPrivileges( d->auth, prog, flags, args.data(), 0 );
return result == 0;
}
|