Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Remote Service deny permission onBind

Tags:

java

android

android-service

android-binder

I have a remote service, which external applications can bind to. There are situations where I may wish to decline the binding. According to the documentation,

Return the communication channel to the service. May return null if clients can not bind to the service.

@Override
public IBinder onBind(final Intent intent) {
    return null;
}

Returning null does indeed not return an IBinder object and therefore prevents the connection, however the calling application does not correctly receive this 'information'.

boolean bound = context.bindService(intent, serviceConnection, flagsHere);

Whether returning null or not from the Service, this always returns true?

According to the documentation,

Returns - If you have successfully bound to the service, true is returned; false is returned if the connection is not made so you will not receive the service object

I had assumed that returning null from onBind would have caused bindService to return false. Assumptions are never a good idea...

Returning null does however prevent the ServiceConnection from being instantiated invoked, but a consequence of this would be no option to check if the binder is in fact null in onServiceConnected.

So, my question - How does an application 'know' if the binding request has been denied?

Additionally, if I decide on the fly that a request to onRebind (having previously returned true from onUnbind) should be declined, I seem to be unable to override the behaviour to prevent this:

@Override
public void onRebind(final Intent intent) {

    if (shouldAllowRebind(intent)) {
        super.onRebind(intent);
    } else {
        // ?
    }
}

I hope someone can shed some light for me. Thanks in advance.

like image 353
brandall Avatar asked Mar 21 '16 16:03

brandall

1 Answers

You probably have to create a workaround. I see two options here:

  • Return a Binder without any functionality if the request should be denied. The client then has to check if the wanted functionality is there.
  • Always return the same Binder, but let every method throw an Exception (e.g. SecurityException) if the call is not permitted. (This was also suggested by @CommonsWare in the comments)

I would personnaly prefer the second approach as it is more flexible. (e.g. allows per-call permit/deny, solves the problem of denying stuff after a rebind, etc.)

like image 52
F43nd1r Avatar answered Sep 27 '22 19:09

F43nd1r
Sign in to Comment

Related questions

How to read all lines of a file in parallel in Java 8
Any workaround for ignoring unexpected elements in Apache Axis 1.4?
Kotlin: Unresolved reference: javaClass
Spontaneous NullPointerExceptions when firing Events
Why does ExecutorService.submit(Runnable task) return Future<?> rather than Future<Void>?
Why is AES encryption / decryption more than 3x slower on Android 24+?
Overriding a method with a generic return type fails after adding a parameter
JPA Composite Key + Sequence
best (or at least good) guide to Java annotations [closed]
Is there a command line option for setting the default log level in Java
How to validate a Kerberos ticket against a server in Java?
How to customize hashCode() and equals() generated by Eclipse?
Standard method of wrapping checked Java exceptions
Rhino and concurrent access to javax.script.ScriptEngine
How to measure file read speed without caching?
Reliable way of detecting whether an Android app is running in 'BlueStacks'
Java NIO non-blocking mode vs node.js asynchronous operation
Color quantization with N out of M predefined colors
Sort an array of primitives with a custom comparator and without converting to objects
Android Jack mockito alternative

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!