src/com/android/settings/accounts/AccountRestrictionHelper.java


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129

/*
 * Copyright (C) 2016 The Android Open Source Project
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package com.android.settings.accounts;

import static android.os.UserManager.DISALLOW_REMOVE_MANAGED_PROFILE;

import static com.android.settingslib.RestrictedLockUtils.EnforcedAdmin;

import android.annotation.UserIdInt;
import android.app.admin.DevicePolicyManager;
import android.content.ComponentName;
import android.content.Context;
import android.content.pm.UserInfo;
import android.os.UserHandle;
import android.os.UserManager;

import com.android.settings.AccessiblePreferenceCategory;
import com.android.settingslib.RestrictedLockUtilsInternal;
import com.android.settingslib.RestrictedPreference;

import java.util.ArrayList;

public class AccountRestrictionHelper {

    private final Context mContext;

    public AccountRestrictionHelper(Context context) {
        mContext = context;
    }

    /**
     * Configure the UI of the preference by checking user restriction.
     * @param preference The preference we are configuring.
     * @param userRestriction The user restriction related to the preference.
     * @param userId The user that we retrieve user restriction of.
     */
    public void enforceRestrictionOnPreference(RestrictedPreference preference,
        String userRestriction, @UserIdInt int userId) {
        if (preference == null) {
            return;
        }
        if (hasBaseUserRestriction(userRestriction, userId)) {
            if (userRestriction.equals(DISALLOW_REMOVE_MANAGED_PROFILE)
                    && isOrganizationOwnedDevice()) {
                preference.setDisabledByAdmin(getEnforcedAdmin(userRestriction, userId));
            } else {
                preference.setEnabled(false);
            }
        } else {
            preference.checkRestrictionAndSetDisabled(userRestriction, userId);
        }
    }

    public boolean hasBaseUserRestriction(String userRestriction, @UserIdInt int userId) {
        return RestrictedLockUtilsInternal.hasBaseUserRestriction(mContext, userRestriction,
                userId);
    }

    private boolean isOrganizationOwnedDevice() {
        final DevicePolicyManager dpm = (DevicePolicyManager) mContext.getSystemService(
                Context.DEVICE_POLICY_SERVICE);
        if (dpm == null) {
            return false;
        }
        return dpm.isOrganizationOwnedDeviceWithManagedProfile();
    }

    private EnforcedAdmin getEnforcedAdmin(String userRestriction, int userId) {
        final DevicePolicyManager dpm = (DevicePolicyManager) mContext.getSystemService(
                Context.DEVICE_POLICY_SERVICE);
        if (dpm == null) {
            return null;
        }
        final int managedUsedId = getManagedUserId(userId);
        ComponentName adminComponent = dpm.getProfileOwnerAsUser(managedUsedId);
        if (adminComponent != null) {
            return new EnforcedAdmin(adminComponent, userRestriction,
                    UserHandle.of(managedUsedId));
        }
        return null;
    }

    private int getManagedUserId(int userId) {
        final UserManager um = UserManager.get(mContext);
        for (UserInfo ui : um.getProfiles(userId)) {
            if (ui.id == userId || !ui.isManagedProfile()) {
                continue;
            }
            return ui.id;
        }
        return -1;
    }

    public AccessiblePreferenceCategory createAccessiblePreferenceCategory(Context context) {
        return new AccessiblePreferenceCategory(context);
    }

    /**
     * Checks if the account should be shown based on the required authorities for the account type
     * @param authorities given authority that is passed as activity extra
     * @param auths list of authorities for particular account type
     * @return true if the activity has the required authority to show the account
     */
    public static boolean showAccount(String[] authorities, ArrayList<String> auths) {
        boolean showAccount = true;
        if (authorities != null && auths != null) {
            showAccount = false;
            for (String requestedAuthority : authorities) {
                if (auths.contains(requestedAuthority)) {
                    return true;
                }
            }
        }
        return showAccount;
    }
}