Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Android permissions, signature and the developer's key

Tags:

android

android-permissions

I am developing an application which has a number of components, each component will be a separate Android app. The "Core" app will use content providers to offer access to the database, and reading the permissions documentation "Signature" protection is the way I want to go.

I've defined a group for my permission, mainly so my permissions would show up nicely against my own icon in the "Permissions" section of the App Info. with android:protectionLevel="normal" they show up just fine. But when I use the android:protectionLevel="signature" they disappear.

<permission-group
    android:name="com.example.permissions.GROUP"
    android:label="@string/lblGroup"
    android:description="@string/descGroup"
    android:icon="@drawable/ic_menu_permissions_group" />

<permission
    android:name="com.example.permission.CONFIG_READ"
    android:permissionGroup="com.example.permissions.GROUP"
    android:protectionLevel="signature"
    android:label="@string/lblConfigRead"
    android:description="@string/descConfigRead" />
<permission
    android:name="com.example.permission.CONFIG_WRITE"
    android:permissionGroup="com.example.permissions.GROUP"
    android:protectionLevel="signature"
    android:label="@string/lblConfigWrite"
    android:description="@string/descConfigWrite" />

Given that I am currently developing and, therefore using the developers key, are there some other hoops I need to jump through in order to get the "signature" protection level to work for developers?

As always many thanks for your help

Steve

like image 412
Dobbo Avatar asked Feb 15 '13 11:02

Dobbo

1 Answers

But when I use the android:protectionLevel="signature" they disappear.

That is because the user does not need to approve them. Signature-level permissions are automatically granted and denied based upon the signatures of the apps.

are there some other hoops I need to jump through in order to get the "signature" protection level to work for developers?

It already works, for your own apps. If "developers" are third parties, you cannot use signature-level permissions, as they will be signing with their own signing keys.

like image 63
CommonsWare Avatar answered Oct 20 '22 21:10

CommonsWare
Sign in to Comment

Related questions

Android anti-crack, is it worth it anyway?
adding click listener to titlebar image
Move Camera Around Sphere
How to split text in 2 textviews like if there were 1?
Get all video id's from YouTube playlist
Android NDK build path not found
How to conditionally use vendor-specific APIs for Android apps?
Fragment member variables getting null when accessed in onPageSelected()
IMAP/SMTP authentication with AccountManager token
Simulated two keyevents with adb shell for ALT, SHIFT, etc
Android emulator upside down in Eclipse Juno
Replacement for deprecated Facebook code for Android
Send an SMS message (UTF-16) with an unknown character replaced by a "replacement character" in Android
Ringtone plays over and over again (looping infinitely)
SetGravity for GridLayout not working
onLocationChanged only called once, not refreshing
Character never stops from walking
Optimized size and dpi for Android app images
How can I modify and rerelease an AOSP app?
Pass variable between non-activity class to android activity class

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!