2011-02-09 02:54:56 +00:00
|
|
|
/*
|
|
|
|
|
* Copyright (C) 2011 The Android Open Source Project
|
|
|
|
|
*
|
|
|
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
|
* you may not use this file except in compliance with the License.
|
|
|
|
|
* You may obtain a copy of the License at
|
|
|
|
|
*
|
|
|
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
*
|
|
|
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
|
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
|
* See the License for the specific language governing permissions and
|
|
|
|
|
* limitations under the License.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
package com.android.email.service;
|
|
|
|
|
|
|
|
|
|
import android.app.Service;
|
2014-09-15 20:26:36 +00:00
|
|
|
import android.app.admin.DevicePolicyManager;
|
|
|
|
|
import android.content.ComponentName;
|
2011-02-09 02:54:56 +00:00
|
|
|
import android.content.Context;
|
|
|
|
|
import android.content.Intent;
|
|
|
|
|
import android.os.IBinder;
|
2013-11-26 19:33:48 +00:00
|
|
|
import android.os.RemoteException;
|
2011-02-09 02:54:56 +00:00
|
|
|
|
2012-06-28 17:40:46 +00:00
|
|
|
import com.android.email.SecurityPolicy;
|
|
|
|
|
import com.android.emailcommon.provider.Policy;
|
|
|
|
|
import com.android.emailcommon.service.IPolicyService;
|
2013-03-08 07:00:47 +00:00
|
|
|
import com.android.mail.utils.LogTag;
|
|
|
|
|
import com.android.mail.utils.LogUtils;
|
2012-06-28 17:40:46 +00:00
|
|
|
|
2011-02-09 02:54:56 +00:00
|
|
|
public class PolicyService extends Service {
|
2013-03-08 07:00:47 +00:00
|
|
|
private static final String LOG_TAG = LogTag.getLogTag();
|
2011-02-09 02:54:56 +00:00
|
|
|
|
|
|
|
|
private SecurityPolicy mSecurityPolicy;
|
|
|
|
|
private Context mContext;
|
|
|
|
|
|
|
|
|
|
private final IPolicyService.Stub mBinder = new IPolicyService.Stub() {
|
2013-08-01 15:47:51 +00:00
|
|
|
@Override
|
2011-04-28 00:12:06 +00:00
|
|
|
public boolean isActive(Policy policy) {
|
2013-03-08 07:00:47 +00:00
|
|
|
try {
|
|
|
|
|
return mSecurityPolicy.isActive(policy);
|
|
|
|
|
} catch (RuntimeException e) {
|
|
|
|
|
// Catch, log and rethrow the exception, as otherwise when the exception is
|
|
|
|
|
// ultimately handled, the complete stack trace is losk
|
|
|
|
|
LogUtils.e(LOG_TAG, e, "Exception thrown during call to SecurityPolicy#isActive");
|
|
|
|
|
throw e;
|
|
|
|
|
}
|
2011-02-09 02:54:56 +00:00
|
|
|
}
|
|
|
|
|
|
2013-08-01 15:47:51 +00:00
|
|
|
@Override
|
2011-02-09 02:54:56 +00:00
|
|
|
public void setAccountHoldFlag(long accountId, boolean newState) {
|
|
|
|
|
SecurityPolicy.setAccountHoldFlag(mContext, accountId, newState);
|
|
|
|
|
}
|
|
|
|
|
|
2013-08-01 15:47:51 +00:00
|
|
|
@Override
|
2011-02-09 02:54:56 +00:00
|
|
|
public void remoteWipe() {
|
2013-03-08 07:00:47 +00:00
|
|
|
try {
|
|
|
|
|
mSecurityPolicy.remoteWipe();
|
|
|
|
|
} catch (RuntimeException e) {
|
|
|
|
|
// Catch, log and rethrow the exception, as otherwise when the exception is
|
|
|
|
|
// ultimately handled, the complete stack trace is losk
|
|
|
|
|
LogUtils.e(LOG_TAG, e, "Exception thrown during call to SecurityPolicy#remoteWipe");
|
|
|
|
|
throw e;
|
|
|
|
|
}
|
2011-02-09 02:54:56 +00:00
|
|
|
}
|
|
|
|
|
|
2013-08-01 15:47:51 +00:00
|
|
|
@Override
|
2012-06-28 17:40:46 +00:00
|
|
|
public void setAccountPolicy(long accountId, Policy policy, String securityKey) {
|
2013-11-26 19:33:48 +00:00
|
|
|
setAccountPolicy2(accountId, policy, securityKey, true /* notify */);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@Override
|
|
|
|
|
public void setAccountPolicy2(long accountId, Policy policy, String securityKey,
|
|
|
|
|
boolean notify) {
|
2013-03-08 07:00:47 +00:00
|
|
|
try {
|
2013-11-26 19:33:48 +00:00
|
|
|
mSecurityPolicy.setAccountPolicy(accountId, policy, securityKey, notify);
|
2013-03-08 07:00:47 +00:00
|
|
|
} catch (RuntimeException e) {
|
|
|
|
|
// Catch, log and rethrow the exception, as otherwise when the exception is
|
|
|
|
|
// ultimately handled, the complete stack trace is losk
|
|
|
|
|
LogUtils.e(LOG_TAG, e,
|
|
|
|
|
"Exception thrown from call to SecurityPolicy#setAccountPolicy");
|
|
|
|
|
throw e;
|
|
|
|
|
}
|
2011-02-09 02:54:56 +00:00
|
|
|
}
|
2014-09-15 20:26:36 +00:00
|
|
|
|
|
|
|
|
public boolean canDisableCamera() {
|
|
|
|
|
// TODO: This is not a clean way to do this, but there is not currently
|
|
|
|
|
// any api that can answer the question "will disabling the camera work?"
|
|
|
|
|
// We need to answer this question here so that we can tell the server what
|
|
|
|
|
// policies we are able to support, and only apply them after it confirms that
|
|
|
|
|
// our partial support is acceptable.
|
|
|
|
|
DevicePolicyManager dpm =
|
|
|
|
|
(DevicePolicyManager) mContext.getSystemService(Context.DEVICE_POLICY_SERVICE);
|
|
|
|
|
final ComponentName adminName = new ComponentName(mContext, SecurityPolicy.PolicyAdmin.class);
|
|
|
|
|
final boolean cameraDisabled = dpm.getCameraDisabled(adminName);
|
|
|
|
|
if (cameraDisabled) {
|
|
|
|
|
// The camera is already disabled, by this admin.
|
|
|
|
|
// Apparently we can support disabling the camera.
|
|
|
|
|
return true;
|
|
|
|
|
} else {
|
|
|
|
|
try {
|
|
|
|
|
dpm.setCameraDisabled(adminName, true);
|
|
|
|
|
dpm.setCameraDisabled(adminName, false);
|
|
|
|
|
} catch (SecurityException e) {
|
|
|
|
|
// Apparently we cannot support disabling the camera.
|
|
|
|
|
LogUtils.w(LOG_TAG, "SecurityException checking camera disabling.");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2011-02-09 02:54:56 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
@Override
|
|
|
|
|
public IBinder onBind(Intent intent) {
|
|
|
|
|
// When we bind this service, save the context and SecurityPolicy singleton
|
|
|
|
|
mContext = this;
|
|
|
|
|
mSecurityPolicy = SecurityPolicy.getInstance(this);
|
|
|
|
|
return mBinder;
|
|
|
|
|
}
|
|
|
|
|
}
|
