Kezdőlap Felfedezés Súgó
Regisztráció Bejelentkezés
Mac_PDF
/
PDF_Office
3
0
Másolás 0
Fájlok Problémák 0 Beolvasztási kérések 0 Wiki
Fa: f82ac2d5f4
Branch-ok Tag-ek
PDF_Office
/
PDF Office
/
PDF Master
/
Third Pard Library
/
AppSandboxFileAccess
/
AppSandboxFileAccess.m

AppSandboxFileAccess.m 9.1 KB
Előzmények Nyers

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243 
  1. //
    2. 

  2. //  AppSandboxFileAccess.m
    3. 

  3. //  AppSandboxFileAccess
    4. 

  4. //
    5. 

  5. //  Created by Leigh McCulloch on 23/11/2013.
    6. 

  6. //
    7. 

  7. //  Copyright (c) 2013, Leigh McCulloch
    8. 

  8. //  All rights reserved.
    9. 

  9. //
    10. 

  10. //  BSD-2-Clause License: http://opensource.org/licenses/BSD-2-Clause
    11. 

  11. //
    12. 

  12. //  Redistribution and use in source and binary forms, with or without
    13. 

  13. //  modification, are permitted provided that the following conditions are
    14. 

  14. //  met:
    15. 

  15. //
    16. 

  16. //  1. Redistributions of source code must retain the above copyright
    17. 

  17. //  notice, this list of conditions and the following disclaimer.
    18. 

  18. //
    19. 

  19. //  2. Redistributions in binary form must reproduce the above copyright
    20. 

  20. //  notice, this list of conditions and the following disclaimer in the
    21. 

  21. //  documentation and/or other materials provided with the distribution.
    22. 

  22. //
    23. 

  23. //  THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS
    24. 

  24. //  IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
    25. 

  25. //  TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
    26. 

  26. //  PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
    27. 

  27. //  HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
    28. 

  28. //  SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
    29. 

  29. //  TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
    30. 

  30. //  PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
    31. 

  31. //  LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
    32. 

  32. //  NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
    33. 

  33. //  SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
    34. 

  34. //
    35. 

  35. 

  36. #import "AppSandboxFileAccess.h"
    37. 

  37. #import "AppSandboxFileAccessPersist.h"
    38. 

  38. #import "AppSandboxFileAccessOpenSavePanelDelegate.h"
    39. 

  39. 

  40. #if !__has_feature(objc_arc)
    41. 

  41. #error ARC must be enabled!
    42. 

  42. #endif
    43. 

  43. 

  44. #define CFBundleDisplayName @"CFBundleDisplayName"
    45. 

  45. #define CFBundleName        @"CFBundleName"
    46. 

  46. 

  47. @interface AppSandboxFileAccess ()
    48. 

  48. @property (nonatomic, strong) AppSandboxFileAccessPersist *defaultDelegate;
    49. 

  49. @end
    50. 

  50. 

  51. @implementation AppSandboxFileAccess
    52. 

  52. 

  53. + (AppSandboxFileAccess *)fileAccess {
    54. 

  54. 	return [[AppSandboxFileAccess alloc] init];
    55. 

  55. }
    56. 

  56. 

  57. - (instancetype)init {
    58. 

  58. 	self = [super init];
    59. 

  59. 	if (self) {
    60. 

  60. 		NSString *applicationName = [[NSBundle mainBundle] objectForInfoDictionaryKey:CFBundleDisplayName];
    61. 

  61. 		if (!applicationName) {
    62. 

  62. 			applicationName = [[NSBundle mainBundle] objectForInfoDictionaryKey:CFBundleName];
    63. 

  63. 		}
    64. 

  64. 		
    65. 

  65. 		self.title = NSLocalizedString(@"Allow Access",nil);
    66. 

  66.         applicationName = [applicationName stringByAppendingString:@" "];
    67. 

  67. 		self.message = [applicationName stringByAppendingString:NSLocalizedString(@"needs to access this path to continue. Click Allow to continue.", nil)];
    68. 

  68. 		self.prompt = NSLocalizedString(@"Allow",nil);
    69. 

  69. 		
    70. 

  70. 		// create default delegate object that persists bookmarks to user defaults
    71. 

  71. 		self.defaultDelegate = [[AppSandboxFileAccessPersist alloc] init];
    72. 

  72. 		self.bookmarkPersistanceDelegate = _defaultDelegate;
    73. 

  73. 	}
    74. 

  74. 	return self;
    75. 

  75. }
    76. 

  76. 

  77. - (NSURL *)askPermissionForURL:(NSURL *)url {
    78. 

  78. 	NSParameterAssert(url);
    79. 

  79. 	
    80. 

  80. 	// this url will be the url allowed, it might be a parent url of the url passed in
    81. 

  81. 	__block NSURL *allowedURL = nil;
    82. 

  82. 	
    83. 

  83. 	// create delegate that will limit which files in the open panel can be selected, to ensure only a folder
    84. 

  84. 	// or file giving permission to the file requested can be selected
    85. 

  85. 	AppSandboxFileAccessOpenSavePanelDelegate *openPanelDelegate = [[AppSandboxFileAccessOpenSavePanelDelegate alloc] initWithFileURL:url];
    86. 

  86. 	
    87. 

  87. 	// check that the url exists, if it doesn't, find the parent path of the url that does exist and ask permission for that
    88. 

  88. 	NSFileManager *fileManager = [NSFileManager defaultManager];
    89. 

  89. 	NSString *path = [url path];
    90. 

  90. 	while (path.length > 1) { // give up when only '/' is left in the path or if we get to a path that exists
    91. 

  91. 		if ([fileManager fileExistsAtPath:path isDirectory:NULL]) {
    92. 

  92. 			break;
    93. 

  93. 		}
    94. 

  94. 		path = [path stringByDeletingLastPathComponent];
    95. 

  95. 	}
    96. 

  96. 	url = [NSURL fileURLWithPath:path];
    97. 

  97. 	
    98. 

  98. 	// display the open panel
    99. 

  99. 	dispatch_block_t displayOpenPanelBlock = ^{
    100. 

  100.         
    101. 

  101. 		NSOpenPanel *openPanel = [NSOpenPanel openPanel];
    102. 

  102. 		[openPanel setMessage:self.message];
    103. 

  103. 		[openPanel setCanCreateDirectories:NO];
    104. 

  104. 		[openPanel setCanChooseFiles:YES];
    105. 

  105. 		[openPanel setCanChooseDirectories:YES];
    106. 

  106. 		[openPanel setAllowsMultipleSelection:NO];
    107. 

  107. 		[openPanel setPrompt:self.prompt];
    108. 

  108. 		[openPanel setTitle:self.title];
    109. 

  109. 		[openPanel setShowsHiddenFiles:NO];
    110. 

  110. 		[openPanel setExtensionHidden:NO];
    111. 

  111.         [openPanel setDirectoryURL:url];
    112. 

  112. 		[openPanel setDelegate:openPanelDelegate];
    113. 

  113. 		[[NSApplication sharedApplication] activateIgnoringOtherApps:YES];
    114. 

  114. 		NSInteger openPanelButtonPressed = [openPanel runModal];
    115. 

  115. 		if (openPanelButtonPressed == NSFileHandlingPanelOKButton) {
    116. 

  116.             allowedURL = [openPanel URL];
    117. 

  117. 		}
    118. 

  118. 	};
    119. 

  119. 	if ([NSThread isMainThread]) {
    120. 

  120. 		displayOpenPanelBlock();
    121. 

  121. 	} else {
    122. 

  122. 		dispatch_sync(dispatch_get_main_queue(), displayOpenPanelBlock);
    123. 

  123. 	}
    124. 

  124. 

  125. 	return allowedURL;
    126. 

  126. }
    127. 

  127. 

  128. - (NSData *)persistPermissionPath:(NSString *)path {
    129. 

  129. 	NSParameterAssert(path);
    130. 

  130. 	
    131. 

  131. 	return [self persistPermissionURL:[NSURL fileURLWithPath:path]];
    132. 

  132. }
    133. 

  133. 

  134. - (NSData *)persistPermissionURL:(NSURL *)url {
    135. 

  135.     
    136. 

  136.     
    137. 

  137. 	NSParameterAssert(url);
    138. 

  138. 	
    139. 

  139. 	// store the sandbox permissions
    140. 

  140. 	NSData *bookmarkData = [url bookmarkDataWithOptions:NSURLBookmarkCreationWithSecurityScope includingResourceValuesForKeys:nil relativeToURL:nil error:NULL];
    141. 

  141. 	if (bookmarkData) {
    142. 

  142. 		[self.bookmarkPersistanceDelegate setBookmarkData:bookmarkData forURL:url];
    143. 

  143. 	}
    144. 

  144. 	return bookmarkData;
    145. 

  145. }
    146. 

  146. 

  147. - (BOOL)accessFilePath:(NSString *)path withBlock:(AppSandboxFileAccessBlock)block persistPermission:(BOOL)persist {
    148. 

  148. 	// Deprecated. Use 'accessFilePath:persistPermission:withBlock:' instead.
    149. 

  149. 	return [self accessFilePath:path persistPermission:persist withBlock:block];
    150. 

  150. }
    151. 

  151. 

  152. - (BOOL)accessFileURL:(NSURL *)fileURL withBlock:(AppSandboxFileAccessBlock)block persistPermission:(BOOL)persist {
    153. 

  153. 	// Deprecated. Use 'accessFileURL:persistPermission:withBlock:' instead.
    154. 

  154. 	return [self accessFileURL:fileURL persistPermission:persist withBlock:block];
    155. 

  155. }
    156. 

  156. 

  157. - (BOOL)accessFilePath:(NSString *)path persistPermission:(BOOL)persist withBlock:(AppSandboxFileAccessBlock)block {
    158. 

  158. 	return [self accessFileURL:[NSURL fileURLWithPath:path] persistPermission:persist withBlock:block];
    159. 

  159. }
    160. 

  160. 

  161. - (BOOL)accessFileURL:(NSURL *)fileURL persistPermission:(BOOL)persist withBlock:(AppSandboxFileAccessBlock)block {
    162. 

  162. 	NSParameterAssert(fileURL);
    163. 

  163. 	NSParameterAssert(block);
    164. 

  164. 	
    165. 

  165. 	BOOL success = [self requestAccessPermissionsForFileURL:fileURL persistPermission:persist withBlock:^(NSURL *securityScopedFileURL, NSData *bookmarkData) {
    166. 

  166. 		// execute the block with the file access permissions
    167. 

  167. 		@try {
    168. 

  168. 			[securityScopedFileURL startAccessingSecurityScopedResource];
    169. 

  169. 			block();
    170. 

  170. 		} @finally {
    171. 

  171. 			//[securityScopedFileURL stopAccessingSecurityScopedResource];
    172. 

  172. 		}
    173. 

  173. 	}];
    174. 

  174. 	
    175. 

  175. 	return success;
    176. 

  176. }
    177. 

  177. 

  178. - (BOOL)requestAccessPermissionsForFilePath:(NSString *)filePath persistPermission:(BOOL)persist withBlock:(AppSandboxFileSecurityScopeBlock)block {
    179. 

  179. 	NSParameterAssert(filePath);
    180. 

  180. 	
    181. 

  181. 	NSURL *fileURL = [NSURL fileURLWithPath:filePath];
    182. 

  182. 	return [self requestAccessPermissionsForFileURL:fileURL persistPermission:persist withBlock:block];
    183. 

  183. }
    184. 

  184. 

  185. - (BOOL)requestAccessPermissionsForFileURL:(NSURL *)fileURL persistPermission:(BOOL)persist withBlock:(AppSandboxFileSecurityScopeBlock)block {
    186. 

  186. 	NSParameterAssert(fileURL);
    187. 

  187. 	
    188. 

  188. 	NSURL *allowedURL = nil;
    189. 

  189. 	
    190. 

  190. 	// standardize the file url and remove any symlinks so that the url we lookup in bookmark data would match a url given by the askPermissionForURL method
    191. 

  191. 	fileURL = [[fileURL URLByStandardizingPath] URLByResolvingSymlinksInPath];
    192. 

  192. 	
    193. 

  193. 	// lookup bookmark data for this url, this will automatically load bookmark data for a parent path if we have it
    194. 

  194. 	NSData *bookmarkData = [self.bookmarkPersistanceDelegate bookmarkDataForURL:fileURL];
    195. 

  195. 	if (bookmarkData) {
    196. 

  196. 		// resolve the bookmark data into an NSURL object that will allow us to use the file
    197. 

  197. 		BOOL bookmarkDataIsStale;
    198. 

  198. 		allowedURL = [NSURL URLByResolvingBookmarkData:bookmarkData options:NSURLBookmarkResolutionWithSecurityScope|NSURLBookmarkResolutionWithoutUI relativeToURL:nil bookmarkDataIsStale:&bookmarkDataIsStale error:NULL];
    199. 

  199. 		// if the bookmark data is stale we'll attempt to recreate it with the existing url object if possible (not guaranteed)
    200. 

  200. 		if (bookmarkDataIsStale) {
    201. 

  201. 			bookmarkData = nil;
    202. 

  202. 			[self.bookmarkPersistanceDelegate clearBookmarkDataForURL:fileURL];
    203. 

  203. 			if (allowedURL) {
    204. 

  204. 				bookmarkData = [self persistPermissionURL:allowedURL];
    205. 

  205. 				if (!bookmarkData) {
    206. 

  206. 					allowedURL = nil;
    207. 

  207. 				}
    208. 

  208. 			}
    209. 

  209. 		}
    210. 

  210. 	}
    211. 

  211. 	
    212. 

  212. 	// if allowed url is nil, we need to ask the user for permission
    213. 

  213. 	if (!allowedURL) {
    214. 

  214. 		allowedURL = [self askPermissionForURL:fileURL];
    215. 

  215. 		if (!allowedURL) {
    216. 

  216. 			// if the user did not give permission, exit out here
    217. 

  217. 			return NO;
    218. 

  218. 		}
    219. 

  219. 	}
    220. 

  220. 	
    221. 

  221. 	// if we have no bookmark data and we want to persist, we need to create it
    222. 

  222. 	if (persist && !bookmarkData) {
    223. 

  223. 		bookmarkData = [self persistPermissionURL:allowedURL];
    224. 

  224. 	}
    225. 

  225. 	
    226. 

  226. 	if (block) {
    227. 

  227. 		block(allowedURL, bookmarkData);
    228. 

  228. 	}
    229. 

  229. 	
    230. 

  230. 	return YES;
    231. 

  231. }
    232. 

  232. 

  233. - (void)setBookmarkPersistanceDelegate:(NSObject<AppSandboxFileAccessProtocol> *)bookmarkPersistanceDelegate
    234. 

  234. {
    235. 

  235. 	// revert to default delegate object if no delegate provided
    236. 

  236. 	if (bookmarkPersistanceDelegate == nil) {
    237. 

  237. 		_bookmarkPersistanceDelegate = self.defaultDelegate;
    238. 

  238. 	} else {
    239. 

  239. 		_bookmarkPersistanceDelegate = bookmarkPersistanceDelegate;
    240. 

  240. 	}
    241. 

  241. }
    242. 

  242. 

  243. @end
    244.