1*b1cdbd2cSJim Jagielski /************************************************************** 2*b1cdbd2cSJim Jagielski * 3*b1cdbd2cSJim Jagielski * Licensed to the Apache Software Foundation (ASF) under one 4*b1cdbd2cSJim Jagielski * or more contributor license agreements. See the NOTICE file 5*b1cdbd2cSJim Jagielski * distributed with this work for additional information 6*b1cdbd2cSJim Jagielski * regarding copyright ownership. The ASF licenses this file 7*b1cdbd2cSJim Jagielski * to you under the Apache License, Version 2.0 (the 8*b1cdbd2cSJim Jagielski * "License"); you may not use this file except in compliance 9*b1cdbd2cSJim Jagielski * with the License. You may obtain a copy of the License at 10*b1cdbd2cSJim Jagielski * 11*b1cdbd2cSJim Jagielski * http://www.apache.org/licenses/LICENSE-2.0 12*b1cdbd2cSJim Jagielski * 13*b1cdbd2cSJim Jagielski * Unless required by applicable law or agreed to in writing, 14*b1cdbd2cSJim Jagielski * software distributed under the License is distributed on an 15*b1cdbd2cSJim Jagielski * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 16*b1cdbd2cSJim Jagielski * KIND, either express or implied. See the License for the 17*b1cdbd2cSJim Jagielski * specific language governing permissions and limitations 18*b1cdbd2cSJim Jagielski * under the License. 19*b1cdbd2cSJim Jagielski * 20*b1cdbd2cSJim Jagielski *************************************************************/ 21*b1cdbd2cSJim Jagielski 22*b1cdbd2cSJim Jagielski 23*b1cdbd2cSJim Jagielski 24*b1cdbd2cSJim Jagielski 25*b1cdbd2cSJim Jagielski #ifndef _FRAMEWORK_SCRIPT_SCRIPTSECURITYMANAGER_HXX_ 26*b1cdbd2cSJim Jagielski #define _FRAMEWORK_SCRIPT_SCRIPTSECURITYMANAGER_HXX_ 27*b1cdbd2cSJim Jagielski 28*b1cdbd2cSJim Jagielski #include <hash_map> 29*b1cdbd2cSJim Jagielski #include <rtl/ustring.hxx> 30*b1cdbd2cSJim Jagielski #include <com/sun/star/uno/XComponentContext.hpp> 31*b1cdbd2cSJim Jagielski #include <com/sun/star/uno/RuntimeException.hpp> 32*b1cdbd2cSJim Jagielski #include <com/sun/star/lang/IllegalArgumentException.hpp> 33*b1cdbd2cSJim Jagielski #include <com/sun/star/security/AccessControlException.hpp> 34*b1cdbd2cSJim Jagielski #include <drafts/com/sun/star/script/framework/storage/XScriptInfo.hpp> 35*b1cdbd2cSJim Jagielski 36*b1cdbd2cSJim Jagielski namespace scripting_securitymgr 37*b1cdbd2cSJim Jagielski { 38*b1cdbd2cSJim Jagielski // for simplification 39*b1cdbd2cSJim Jagielski #define css ::com::sun::star 40*b1cdbd2cSJim Jagielski #define dcsssf ::drafts::com::sun::star::script::framework 41*b1cdbd2cSJim Jagielski 42*b1cdbd2cSJim Jagielski struct StoragePerm { 43*b1cdbd2cSJim Jagielski rtl::OUString scriptStorageURL; 44*b1cdbd2cSJim Jagielski sal_Int32 storageID; 45*b1cdbd2cSJim Jagielski sal_Bool execPermission; 46*b1cdbd2cSJim Jagielski }; 47*b1cdbd2cSJim Jagielski 48*b1cdbd2cSJim Jagielski typedef ::std::hash_map< ::rtl::OUString, StoragePerm, ::rtl::OUStringHash, 49*b1cdbd2cSJim Jagielski ::std::equal_to< ::rtl::OUString > > Permission_Hash; 50*b1cdbd2cSJim Jagielski /** 51*b1cdbd2cSJim Jagielski * Class responsible for managing the ScriptSecurity. 52*b1cdbd2cSJim Jagielski */ 53*b1cdbd2cSJim Jagielski class ScriptSecurityManager 54*b1cdbd2cSJim Jagielski { 55*b1cdbd2cSJim Jagielski public: 56*b1cdbd2cSJim Jagielski explicit ScriptSecurityManager( 57*b1cdbd2cSJim Jagielski const css::uno::Reference< css::uno::XComponentContext > & xContext ) 58*b1cdbd2cSJim Jagielski throw ( css::uno::RuntimeException ); 59*b1cdbd2cSJim Jagielski ~ScriptSecurityManager(); 60*b1cdbd2cSJim Jagielski void addScriptStorage( rtl::OUString scriptStorageURL, sal_Int32 storageID) 61*b1cdbd2cSJim Jagielski throw ( css::uno::RuntimeException ); 62*b1cdbd2cSJim Jagielski /** 63*b1cdbd2cSJim Jagielski * checks to see if the requested permission can be granted 64*b1cdbd2cSJim Jagielski * checks to see whether the requested ScriptPeremission is allowed. 65*b1cdbd2cSJim Jagielski */ 66*b1cdbd2cSJim Jagielski void checkPermission( const rtl::OUString & scriptStorageURL, 67*b1cdbd2cSJim Jagielski const rtl::OUString & permissionRequest ) 68*b1cdbd2cSJim Jagielski throw ( css::uno::RuntimeException, css::lang::IllegalArgumentException, 69*b1cdbd2cSJim Jagielski css::security::AccessControlException ); 70*b1cdbd2cSJim Jagielski void removePermissionSettings ( ::rtl::OUString & scriptStorageURL ); 71*b1cdbd2cSJim Jagielski private: 72*b1cdbd2cSJim Jagielski void readConfiguration() throw (css::uno::RuntimeException); 73*b1cdbd2cSJim Jagielski 74*b1cdbd2cSJim Jagielski short executeDialog ( const rtl::OUString & path ) 75*b1cdbd2cSJim Jagielski throw (css::uno::RuntimeException); 76*b1cdbd2cSJim Jagielski short executeStandardDialog() 77*b1cdbd2cSJim Jagielski throw ( css::uno::RuntimeException ); 78*b1cdbd2cSJim Jagielski short executePathDialog(const rtl::OUString & path) 79*b1cdbd2cSJim Jagielski throw ( css::uno::RuntimeException ); 80*b1cdbd2cSJim Jagielski 81*b1cdbd2cSJim Jagielski void addToSecurePaths ( const rtl::OUString & path ) 82*b1cdbd2cSJim Jagielski throw (css::uno::RuntimeException); 83*b1cdbd2cSJim Jagielski bool isSecureURL( const rtl::OUString & path ); 84*b1cdbd2cSJim Jagielski css::uno::Reference< css::uno::XComponentContext > m_xContext; 85*b1cdbd2cSJim Jagielski sal_Bool m_confirmationRequired; 86*b1cdbd2cSJim Jagielski sal_Bool m_warning; 87*b1cdbd2cSJim Jagielski sal_Int32 m_runMacroSetting; 88*b1cdbd2cSJim Jagielski css::uno::Reference< css::lang::XMultiServiceFactory > m_xConfigProvFactory; 89*b1cdbd2cSJim Jagielski css::uno::Sequence< rtl::OUString > m_secureURL; 90*b1cdbd2cSJim Jagielski Permission_Hash m_permissionSettings; 91*b1cdbd2cSJim Jagielski 92*b1cdbd2cSJim Jagielski }; 93*b1cdbd2cSJim Jagielski } // scripting_securitymgr 94*b1cdbd2cSJim Jagielski 95*b1cdbd2cSJim Jagielski #endif //_FRAMEWORK_SCRIPT_SCRIPTSECURITYMANAGER_HXX_ 96