Loading core/java/android/app/admin/DevicePolicyManager.java +94 −36 Original line number Diff line number Diff line Loading @@ -89,6 +89,10 @@ public class DevicePolicyManager { private final Context mContext; private final IDevicePolicyManager mService; // TODO Use it everywhere. private static final String REMOTE_EXCEPTION_MESSAGE = "Failed to talk with device policy manager service"; private DevicePolicyManager(Context context) { this(context, IDevicePolicyManager.Stub.asInterface( ServiceManager.getService(Context.DEVICE_POLICY_SERVICE))); Loading Loading @@ -686,7 +690,7 @@ public class DevicePolicyManager { * extra field. This will invoke a UI to bring the user through adding the profile owner admin * to remotely control restrictions on the user. * * <p>The intent must be invoked via {@link Activity#startActivityForResult()} to receive the * <p>The intent must be invoked via {@link Activity#startActivityForResult} to receive the * result of whether or not the user approved the action. If approved, the result will * be {@link Activity#RESULT_OK} and the component will be set as an active admin as well * as a profile owner. Loading Loading @@ -2765,37 +2769,94 @@ public class DevicePolicyManager { * the setup process. * @param packageName the package name of the app, to compare with the registered device owner * app, if any. * @return whether or not the package is registered as the device owner app. Note this method * does *not* check weather the device owner is actually running on the current user. * @return whether or not the package is registered as the device owner app. */ public boolean isDeviceOwnerApp(String packageName) { return isDeviceOwnerAppOnCallingUser(packageName); } /** * @return true if a package is registered as device owner, only when it's running on the * calling user. * * <p>Same as {@link #isDeviceOwnerApp}, but bundled code should use it for clarity. * @hide */ public boolean isDeviceOwnerAppOnCallingUser(String packageName) { return isDeviceOwnerAppOnAnyUserInner(packageName, /* callingUserOnly =*/ true); } /** * @return true if a package is registered as device owner, even if it's running on a different * user. * * <p>Requires the MANAGE_USERS permission. * * @hide */ public boolean isDeviceOwnerAppOnAnyUser(String packageName) { return isDeviceOwnerAppOnAnyUserInner(packageName, /* callingUserOnly =*/ false); } /** * @return device owner component name, only when it's running on the calling user. * * @hide */ public ComponentName getDeviceOwnerComponentOnCallingUser() { return getDeviceOwnerComponentInner(/* callingUserOnly =*/ true); } /** * @return device owner component name, even if it's running on a different user. * * <p>Requires the MANAGE_USERS permission. * * @hide */ public ComponentName getDeviceOwnerComponentOnAnyUser() { return getDeviceOwnerComponentInner(/* callingUserOnly =*/ false); } private boolean isDeviceOwnerAppOnAnyUserInner(String packageName, boolean callingUserOnly) { if (packageName == null) { return false; } final ComponentName deviceOwner = getDeviceOwnerComponent(); final ComponentName deviceOwner = getDeviceOwnerComponentInner(callingUserOnly); if (deviceOwner == null) { return false; } return packageName.equals(deviceOwner.getPackageName()); } /** * @hide * Redirect to isDeviceOwnerApp. */ public boolean isDeviceOwner(String packageName) { return isDeviceOwnerApp(packageName); private ComponentName getDeviceOwnerComponentInner(boolean callingUserOnly) { if (mService != null) { try { return mService.getDeviceOwnerComponent(callingUserOnly); } catch (RemoteException re) { Log.w(TAG, REMOTE_EXCEPTION_MESSAGE); } } return null; } /** * Check whether a given component is registered as a device owner. * Note this method does *not* check weather the device owner is actually running on the current * user. * @return ID of the user who runs device owner, or {@link UserHandle#USER_NULL} if there's * no device owner. * * <p>Requires the MANAGE_USERS permission. * * @hide */ public boolean isDeviceOwner(ComponentName who) { return (who != null) && who.equals(getDeviceOwner()); public int getDeviceOwnerUserId() { if (mService != null) { try { return mService.getDeviceOwnerUserId(); } catch (RemoteException re) { Log.w(TAG, REMOTE_EXCEPTION_MESSAGE); } } return UserHandle.USER_NULL; } /** Loading @@ -2818,46 +2879,43 @@ public class DevicePolicyManager { } /** * Returns the device owner package name. Note this method will still return the device owner * package name even if it's running on a different user. * Returns the device owner package name, only if it's running on the calling user. * * <p>Bundled components should use {@code getDeviceOwnerComponentOnCallingUser()} for clarity. * * @hide */ @SystemApi public String getDeviceOwner() { final ComponentName componentName = getDeviceOwnerComponent(); return componentName == null ? null : componentName.getPackageName(); final ComponentName name = getDeviceOwnerComponentOnCallingUser(); return name != null ? name.getPackageName() : null; } /** * Returns the device owner name. Note this method will still return the device owner * name even if it's running on a different user. * @return true if the device is managed by any device owner. * * <p>Requires the MANAGE_USERS permission. * * @hide */ public String getDeviceOwnerName() { if (mService != null) { try { return mService.getDeviceOwnerName(); } catch (RemoteException re) { Log.w(TAG, "Failed to get device owner"); } } return null; public boolean isDeviceManaged() { return getDeviceOwnerComponentOnAnyUser() != null; } /** * Returns the device owner component name. Note this method will still return the device owner * component name even if it's running on a different user. * Returns the device owner name. Note this method *will* return the device owner * name when it's running on a different user. * * <p>Requires the MANAGE_USERS permission. * * @hide */ public ComponentName getDeviceOwnerComponent() { public String getDeviceOwnerNameOnAnyUser() { if (mService != null) { try { return mService.getDeviceOwner(); return mService.getDeviceOwnerName(); } catch (RemoteException re) { Log.w(TAG, "Failed to get device owner"); Log.w(TAG, REMOTE_EXCEPTION_MESSAGE); } } return null; Loading Loading @@ -3130,7 +3188,7 @@ public class DevicePolicyManager { /** * @hide * @param user The user for whom to fetch the profile owner name, if any. * @param userId The user for whom to fetch the profile owner name, if any. * @return the human readable name of the organisation associated with this profile owner or * null if one is not set. * @throws IllegalArgumentException if the userId is invalid. Loading core/java/android/app/admin/IDevicePolicyManager.aidl +2 −1 Original line number Diff line number Diff line Loading @@ -114,9 +114,10 @@ interface IDevicePolicyManager { void reportSuccessfulPasswordAttempt(int userHandle); boolean setDeviceOwner(in ComponentName who, String ownerName, int userId); ComponentName getDeviceOwner(); ComponentName getDeviceOwnerComponent(boolean callingUserOnly); String getDeviceOwnerName(); void clearDeviceOwner(String packageName); int getDeviceOwnerUserId(); boolean setProfileOwner(in ComponentName who, String ownerName, int userHandle); ComponentName getProfileOwner(int userHandle); Loading packages/SystemUI/src/com/android/systemui/qs/QSFooter.java +5 −1 Original line number Diff line number Diff line Loading @@ -111,7 +111,9 @@ public class QSFooter implements OnClickListener, DialogInterface.OnClickListene private void handleRefreshState() { mIsIconVisible = mSecurityController.isVpnEnabled(); if (mSecurityController.hasDeviceOwner()) { // If the device has device owner, show "Device may be monitored", but -- // TODO See b/25779452 -- device owner doesn't actually have monitoring power. if (mSecurityController.isDeviceManaged()) { mFooterTextId = R.string.device_owned_footer; mIsVisible = true; } else { Loading Loading @@ -156,6 +158,8 @@ public class QSFooter implements OnClickListener, DialogInterface.OnClickListene private String getMessage(String deviceOwner, String profileOwner, String primaryVpn, String profileVpn, boolean primaryUserIsManaged) { // Show a special warning when the device has device owner, but -- // TODO See b/25779452 -- device owner doesn't actually have monitoring power. if (deviceOwner != null) { if (primaryVpn != null) { return mContext.getString(R.string.monitoring_description_vpn_app_device_owned, Loading packages/SystemUI/src/com/android/systemui/statusbar/policy/SecurityController.java +2 −2 Original line number Diff line number Diff line Loading @@ -16,8 +16,8 @@ package com.android.systemui.statusbar.policy; public interface SecurityController { boolean hasDeviceOwner(); /** Whether the device has device owner, even if not on this user. */ boolean isDeviceManaged(); boolean hasProfileOwner(); String getDeviceOwnerName(); String getProfileOwnerName(); Loading packages/SystemUI/src/com/android/systemui/statusbar/policy/SecurityControllerImpl.java +3 −3 Original line number Diff line number Diff line Loading @@ -102,13 +102,13 @@ public class SecurityControllerImpl implements SecurityController { } @Override public boolean hasDeviceOwner() { return !TextUtils.isEmpty(mDevicePolicyManager.getDeviceOwner()); public boolean isDeviceManaged() { return mDevicePolicyManager.isDeviceManaged(); } @Override public String getDeviceOwnerName() { return mDevicePolicyManager.getDeviceOwnerName(); return mDevicePolicyManager.getDeviceOwnerNameOnAnyUser(); } @Override Loading Loading
core/java/android/app/admin/DevicePolicyManager.java +94 −36 Original line number Diff line number Diff line Loading @@ -89,6 +89,10 @@ public class DevicePolicyManager { private final Context mContext; private final IDevicePolicyManager mService; // TODO Use it everywhere. private static final String REMOTE_EXCEPTION_MESSAGE = "Failed to talk with device policy manager service"; private DevicePolicyManager(Context context) { this(context, IDevicePolicyManager.Stub.asInterface( ServiceManager.getService(Context.DEVICE_POLICY_SERVICE))); Loading Loading @@ -686,7 +690,7 @@ public class DevicePolicyManager { * extra field. This will invoke a UI to bring the user through adding the profile owner admin * to remotely control restrictions on the user. * * <p>The intent must be invoked via {@link Activity#startActivityForResult()} to receive the * <p>The intent must be invoked via {@link Activity#startActivityForResult} to receive the * result of whether or not the user approved the action. If approved, the result will * be {@link Activity#RESULT_OK} and the component will be set as an active admin as well * as a profile owner. Loading Loading @@ -2765,37 +2769,94 @@ public class DevicePolicyManager { * the setup process. * @param packageName the package name of the app, to compare with the registered device owner * app, if any. * @return whether or not the package is registered as the device owner app. Note this method * does *not* check weather the device owner is actually running on the current user. * @return whether or not the package is registered as the device owner app. */ public boolean isDeviceOwnerApp(String packageName) { return isDeviceOwnerAppOnCallingUser(packageName); } /** * @return true if a package is registered as device owner, only when it's running on the * calling user. * * <p>Same as {@link #isDeviceOwnerApp}, but bundled code should use it for clarity. * @hide */ public boolean isDeviceOwnerAppOnCallingUser(String packageName) { return isDeviceOwnerAppOnAnyUserInner(packageName, /* callingUserOnly =*/ true); } /** * @return true if a package is registered as device owner, even if it's running on a different * user. * * <p>Requires the MANAGE_USERS permission. * * @hide */ public boolean isDeviceOwnerAppOnAnyUser(String packageName) { return isDeviceOwnerAppOnAnyUserInner(packageName, /* callingUserOnly =*/ false); } /** * @return device owner component name, only when it's running on the calling user. * * @hide */ public ComponentName getDeviceOwnerComponentOnCallingUser() { return getDeviceOwnerComponentInner(/* callingUserOnly =*/ true); } /** * @return device owner component name, even if it's running on a different user. * * <p>Requires the MANAGE_USERS permission. * * @hide */ public ComponentName getDeviceOwnerComponentOnAnyUser() { return getDeviceOwnerComponentInner(/* callingUserOnly =*/ false); } private boolean isDeviceOwnerAppOnAnyUserInner(String packageName, boolean callingUserOnly) { if (packageName == null) { return false; } final ComponentName deviceOwner = getDeviceOwnerComponent(); final ComponentName deviceOwner = getDeviceOwnerComponentInner(callingUserOnly); if (deviceOwner == null) { return false; } return packageName.equals(deviceOwner.getPackageName()); } /** * @hide * Redirect to isDeviceOwnerApp. */ public boolean isDeviceOwner(String packageName) { return isDeviceOwnerApp(packageName); private ComponentName getDeviceOwnerComponentInner(boolean callingUserOnly) { if (mService != null) { try { return mService.getDeviceOwnerComponent(callingUserOnly); } catch (RemoteException re) { Log.w(TAG, REMOTE_EXCEPTION_MESSAGE); } } return null; } /** * Check whether a given component is registered as a device owner. * Note this method does *not* check weather the device owner is actually running on the current * user. * @return ID of the user who runs device owner, or {@link UserHandle#USER_NULL} if there's * no device owner. * * <p>Requires the MANAGE_USERS permission. * * @hide */ public boolean isDeviceOwner(ComponentName who) { return (who != null) && who.equals(getDeviceOwner()); public int getDeviceOwnerUserId() { if (mService != null) { try { return mService.getDeviceOwnerUserId(); } catch (RemoteException re) { Log.w(TAG, REMOTE_EXCEPTION_MESSAGE); } } return UserHandle.USER_NULL; } /** Loading @@ -2818,46 +2879,43 @@ public class DevicePolicyManager { } /** * Returns the device owner package name. Note this method will still return the device owner * package name even if it's running on a different user. * Returns the device owner package name, only if it's running on the calling user. * * <p>Bundled components should use {@code getDeviceOwnerComponentOnCallingUser()} for clarity. * * @hide */ @SystemApi public String getDeviceOwner() { final ComponentName componentName = getDeviceOwnerComponent(); return componentName == null ? null : componentName.getPackageName(); final ComponentName name = getDeviceOwnerComponentOnCallingUser(); return name != null ? name.getPackageName() : null; } /** * Returns the device owner name. Note this method will still return the device owner * name even if it's running on a different user. * @return true if the device is managed by any device owner. * * <p>Requires the MANAGE_USERS permission. * * @hide */ public String getDeviceOwnerName() { if (mService != null) { try { return mService.getDeviceOwnerName(); } catch (RemoteException re) { Log.w(TAG, "Failed to get device owner"); } } return null; public boolean isDeviceManaged() { return getDeviceOwnerComponentOnAnyUser() != null; } /** * Returns the device owner component name. Note this method will still return the device owner * component name even if it's running on a different user. * Returns the device owner name. Note this method *will* return the device owner * name when it's running on a different user. * * <p>Requires the MANAGE_USERS permission. * * @hide */ public ComponentName getDeviceOwnerComponent() { public String getDeviceOwnerNameOnAnyUser() { if (mService != null) { try { return mService.getDeviceOwner(); return mService.getDeviceOwnerName(); } catch (RemoteException re) { Log.w(TAG, "Failed to get device owner"); Log.w(TAG, REMOTE_EXCEPTION_MESSAGE); } } return null; Loading Loading @@ -3130,7 +3188,7 @@ public class DevicePolicyManager { /** * @hide * @param user The user for whom to fetch the profile owner name, if any. * @param userId The user for whom to fetch the profile owner name, if any. * @return the human readable name of the organisation associated with this profile owner or * null if one is not set. * @throws IllegalArgumentException if the userId is invalid. Loading
core/java/android/app/admin/IDevicePolicyManager.aidl +2 −1 Original line number Diff line number Diff line Loading @@ -114,9 +114,10 @@ interface IDevicePolicyManager { void reportSuccessfulPasswordAttempt(int userHandle); boolean setDeviceOwner(in ComponentName who, String ownerName, int userId); ComponentName getDeviceOwner(); ComponentName getDeviceOwnerComponent(boolean callingUserOnly); String getDeviceOwnerName(); void clearDeviceOwner(String packageName); int getDeviceOwnerUserId(); boolean setProfileOwner(in ComponentName who, String ownerName, int userHandle); ComponentName getProfileOwner(int userHandle); Loading
packages/SystemUI/src/com/android/systemui/qs/QSFooter.java +5 −1 Original line number Diff line number Diff line Loading @@ -111,7 +111,9 @@ public class QSFooter implements OnClickListener, DialogInterface.OnClickListene private void handleRefreshState() { mIsIconVisible = mSecurityController.isVpnEnabled(); if (mSecurityController.hasDeviceOwner()) { // If the device has device owner, show "Device may be monitored", but -- // TODO See b/25779452 -- device owner doesn't actually have monitoring power. if (mSecurityController.isDeviceManaged()) { mFooterTextId = R.string.device_owned_footer; mIsVisible = true; } else { Loading Loading @@ -156,6 +158,8 @@ public class QSFooter implements OnClickListener, DialogInterface.OnClickListene private String getMessage(String deviceOwner, String profileOwner, String primaryVpn, String profileVpn, boolean primaryUserIsManaged) { // Show a special warning when the device has device owner, but -- // TODO See b/25779452 -- device owner doesn't actually have monitoring power. if (deviceOwner != null) { if (primaryVpn != null) { return mContext.getString(R.string.monitoring_description_vpn_app_device_owned, Loading
packages/SystemUI/src/com/android/systemui/statusbar/policy/SecurityController.java +2 −2 Original line number Diff line number Diff line Loading @@ -16,8 +16,8 @@ package com.android.systemui.statusbar.policy; public interface SecurityController { boolean hasDeviceOwner(); /** Whether the device has device owner, even if not on this user. */ boolean isDeviceManaged(); boolean hasProfileOwner(); String getDeviceOwnerName(); String getProfileOwnerName(); Loading
packages/SystemUI/src/com/android/systemui/statusbar/policy/SecurityControllerImpl.java +3 −3 Original line number Diff line number Diff line Loading @@ -102,13 +102,13 @@ public class SecurityControllerImpl implements SecurityController { } @Override public boolean hasDeviceOwner() { return !TextUtils.isEmpty(mDevicePolicyManager.getDeviceOwner()); public boolean isDeviceManaged() { return mDevicePolicyManager.isDeviceManaged(); } @Override public String getDeviceOwnerName() { return mDevicePolicyManager.getDeviceOwnerName(); return mDevicePolicyManager.getDeviceOwnerNameOnAnyUser(); } @Override Loading
