xref: /AOO41X/main/scripting/source/storage/ScriptSecurityManager.hxx (revision cdf0e10c4e3984b49a9502b011690b615761d4a3) 
1*cdf0e10cSrcweir /*************************************************************************
2*cdf0e10cSrcweir *
3*cdf0e10cSrcweir  * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
4*cdf0e10cSrcweir  *
5*cdf0e10cSrcweir  * Copyright 2000, 2010 Oracle and/or its affiliates.
6*cdf0e10cSrcweir  *
7*cdf0e10cSrcweir  * OpenOffice.org - a multi-platform office productivity suite
8*cdf0e10cSrcweir  *
9*cdf0e10cSrcweir  * This file is part of OpenOffice.org.
10*cdf0e10cSrcweir  *
11*cdf0e10cSrcweir  * OpenOffice.org is free software: you can redistribute it and/or modify
12*cdf0e10cSrcweir  * it under the terms of the GNU Lesser General Public License version 3
13*cdf0e10cSrcweir  * only, as published by the Free Software Foundation.
14*cdf0e10cSrcweir  *
15*cdf0e10cSrcweir  * OpenOffice.org is distributed in the hope that it will be useful,
16*cdf0e10cSrcweir  * but WITHOUT ANY WARRANTY; without even the implied warranty of
17*cdf0e10cSrcweir  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
18*cdf0e10cSrcweir  * GNU Lesser General Public License version 3 for more details
19*cdf0e10cSrcweir  * (a copy is included in the LICENSE file that accompanied this code).
20*cdf0e10cSrcweir  *
21*cdf0e10cSrcweir  * You should have received a copy of the GNU Lesser General Public License
22*cdf0e10cSrcweir  * version 3 along with OpenOffice.org.  If not, see
23*cdf0e10cSrcweir  * <http://www.openoffice.org/license.html>
24*cdf0e10cSrcweir  * for a copy of the LGPLv3 License.
25*cdf0e10cSrcweir  *
26*cdf0e10cSrcweir ************************************************************************/
27*cdf0e10cSrcweir 
28*cdf0e10cSrcweir 
29*cdf0e10cSrcweir #ifndef _FRAMEWORK_SCRIPT_SCRIPTSECURITYMANAGER_HXX_
30*cdf0e10cSrcweir #define _FRAMEWORK_SCRIPT_SCRIPTSECURITYMANAGER_HXX_
31*cdf0e10cSrcweir 
32*cdf0e10cSrcweir #include <hash_map>
33*cdf0e10cSrcweir #include <rtl/ustring.hxx>
34*cdf0e10cSrcweir #include <com/sun/star/uno/XComponentContext.hpp>
35*cdf0e10cSrcweir #include <com/sun/star/uno/RuntimeException.hpp>
36*cdf0e10cSrcweir #include <com/sun/star/lang/IllegalArgumentException.hpp>
37*cdf0e10cSrcweir #include <com/sun/star/security/AccessControlException.hpp>
38*cdf0e10cSrcweir #include <drafts/com/sun/star/script/framework/storage/XScriptInfo.hpp>
39*cdf0e10cSrcweir 
40*cdf0e10cSrcweir namespace scripting_securitymgr
41*cdf0e10cSrcweir {
42*cdf0e10cSrcweir // for simplification
43*cdf0e10cSrcweir #define css ::com::sun::star
44*cdf0e10cSrcweir #define dcsssf ::drafts::com::sun::star::script::framework
45*cdf0e10cSrcweir 
46*cdf0e10cSrcweir struct StoragePerm {
47*cdf0e10cSrcweir     rtl::OUString scriptStorageURL;
48*cdf0e10cSrcweir     sal_Int32 storageID;
49*cdf0e10cSrcweir     sal_Bool execPermission;
50*cdf0e10cSrcweir };
51*cdf0e10cSrcweir 
52*cdf0e10cSrcweir typedef ::std::hash_map< ::rtl::OUString, StoragePerm, ::rtl::OUStringHash,
53*cdf0e10cSrcweir     ::std::equal_to< ::rtl::OUString > > Permission_Hash;
54*cdf0e10cSrcweir /**
55*cdf0e10cSrcweir  * Class responsible for managing the ScriptSecurity.
56*cdf0e10cSrcweir  */
57*cdf0e10cSrcweir class ScriptSecurityManager
58*cdf0e10cSrcweir {
59*cdf0e10cSrcweir public:
60*cdf0e10cSrcweir     explicit ScriptSecurityManager(
61*cdf0e10cSrcweir         const css::uno::Reference< css::uno::XComponentContext > & xContext )
62*cdf0e10cSrcweir         throw ( css::uno::RuntimeException );
63*cdf0e10cSrcweir     ~ScriptSecurityManager();
64*cdf0e10cSrcweir     void addScriptStorage( rtl::OUString scriptStorageURL, sal_Int32 storageID)
65*cdf0e10cSrcweir         throw ( css::uno::RuntimeException );
66*cdf0e10cSrcweir /**
67*cdf0e10cSrcweir  * checks to see if the requested permission can be granted
68*cdf0e10cSrcweir  * checks to see whether the requested ScriptPeremission is allowed.
69*cdf0e10cSrcweir  */
70*cdf0e10cSrcweir     void checkPermission( const rtl::OUString & scriptStorageURL,
71*cdf0e10cSrcweir         const rtl::OUString & permissionRequest )
72*cdf0e10cSrcweir         throw ( css::uno::RuntimeException, css::lang::IllegalArgumentException,
73*cdf0e10cSrcweir             css::security::AccessControlException );
74*cdf0e10cSrcweir     void removePermissionSettings ( ::rtl::OUString & scriptStorageURL );
75*cdf0e10cSrcweir private:
76*cdf0e10cSrcweir     void readConfiguration() throw (css::uno::RuntimeException);
77*cdf0e10cSrcweir 
78*cdf0e10cSrcweir     short executeDialog ( const rtl::OUString & path )
79*cdf0e10cSrcweir         throw (css::uno::RuntimeException);
80*cdf0e10cSrcweir     short executeStandardDialog()
81*cdf0e10cSrcweir         throw ( css::uno::RuntimeException );
82*cdf0e10cSrcweir     short executePathDialog(const rtl::OUString & path)
83*cdf0e10cSrcweir         throw ( css::uno::RuntimeException );
84*cdf0e10cSrcweir 
85*cdf0e10cSrcweir         void addToSecurePaths ( const rtl::OUString & path )
86*cdf0e10cSrcweir         throw (css::uno::RuntimeException);
87*cdf0e10cSrcweir     bool isSecureURL( const rtl::OUString & path );
88*cdf0e10cSrcweir     css::uno::Reference< css::uno::XComponentContext > m_xContext;
89*cdf0e10cSrcweir     sal_Bool m_confirmationRequired;
90*cdf0e10cSrcweir     sal_Bool m_warning;
91*cdf0e10cSrcweir     sal_Int32 m_runMacroSetting;
92*cdf0e10cSrcweir     css::uno::Reference< css::lang::XMultiServiceFactory > m_xConfigProvFactory;
93*cdf0e10cSrcweir     css::uno::Sequence< rtl::OUString > m_secureURL;
94*cdf0e10cSrcweir     Permission_Hash m_permissionSettings;
95*cdf0e10cSrcweir 
96*cdf0e10cSrcweir };
97*cdf0e10cSrcweir } // scripting_securitymgr
98*cdf0e10cSrcweir 
99*cdf0e10cSrcweir #endif //_FRAMEWORK_SCRIPT_SCRIPTSECURITYMANAGER_HXX_
100