diff options
author | Perberos <[email protected]> | 2011-12-01 23:00:56 -0300 |
---|---|---|
committer | Perberos <[email protected]> | 2011-12-01 23:00:56 -0300 |
commit | 1c69f467452c8f34d099019d463980ad57811192 (patch) | |
tree | 72ab1456032eb3c29f7fe327b5da6ac8e734507a /src/main.c | |
download | mate-polkit-1c69f467452c8f34d099019d463980ad57811192.tar.bz2 mate-polkit-1c69f467452c8f34d099019d463980ad57811192.tar.xz |
moving from https://github.com/perberos/mate-desktop-environment
Diffstat (limited to 'src/main.c')
-rw-r--r-- | src/main.c | 278 |
1 files changed, 278 insertions, 0 deletions
diff --git a/src/main.c b/src/main.c new file mode 100644 index 0000000..a18dc13 --- /dev/null +++ b/src/main.c @@ -0,0 +1,278 @@ +/* + * Copyright (C) 2009 Red Hat, Inc. + * + * This library is free software; you can redistribute it and/or + * modify it under the terms of the GNU Lesser General Public + * License as published by the Free Software Foundation; either + * version 2 of the License, or (at your option) any later version. + * + * This library is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + * Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General + * Public License along with this library; if not, write to the + * Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, + * Boston, MA 02110-1301, USA. + * + * Author: David Zeuthen <[email protected]> + */ + +#ifdef HAVE_CONFIG_H +# include "config.h" +#endif + +#include <string.h> +#include <gtk/gtk.h> +#include <glib/gi18n.h> +#include <polkitagent/polkitagent.h> + +#include "polkitmatelistener.h" + +/* the Authority */ +static PolkitAuthority *authority = NULL; + +/* the session we are servicing */ +static PolkitSubject *session = NULL; + +/* the current set of temporary authorizations */ +static GList *current_temporary_authorizations = NULL; + +static GtkStatusIcon *status_icon = NULL; + +static void +revoke_tmp_authz_cb (GObject *source_object, + GAsyncResult *res, + gpointer user_data) +{ + GError *error; + + error = NULL; + polkit_authority_revoke_temporary_authorizations_finish (POLKIT_AUTHORITY (source_object), + res, + &error); + if (error != NULL) + { + g_warning ("Error revoking temporary authorizations: %s", error->message); + g_error_free (error); + } +} + +static void +revoke_tmp_authz (void) +{ + polkit_authority_revoke_temporary_authorizations (authority, + session, + NULL, + revoke_tmp_authz_cb, + NULL); +} + +static void +on_status_icon_activate (GtkStatusIcon *status_icon, + gpointer user_data) +{ + revoke_tmp_authz (); +} + +static void +on_status_icon_popup_menu (GtkStatusIcon *status_icon, + guint button, + guint activate_time, + gpointer user_data) +{ + revoke_tmp_authz (); +} + +static void +update_temporary_authorization_icon_real (void) +{ + +#if 0 + GList *l; + g_debug ("have %d tmp authorizations", g_list_length (current_temporary_authorizations)); + for (l = current_temporary_authorizations; l != NULL; l = l->next) + { + PolkitTemporaryAuthorization *authz = POLKIT_TEMPORARY_AUTHORIZATION (l->data); + + g_debug ("have tmp authz for action %s (subject %s) with id %s (obtained %d, expires %d)", + polkit_temporary_authorization_get_action_id (authz), + polkit_subject_to_string (polkit_temporary_authorization_get_subject (authz)), + polkit_temporary_authorization_get_id (authz), + (gint) polkit_temporary_authorization_get_time_obtained (authz), + (gint) polkit_temporary_authorization_get_time_expires (authz)); + } +#endif + + /* TODO: + * + * - we could do something fancy like displaying a window with the tmp authz + * when the icon is clicked... + * + * - we could do some work using polkit_subject_exists() to ignore tmp authz + * for subjects that no longer exists.. this is because temporary authorizations + * are only valid for the subject that trigger the authentication dialog. + * + * Maybe the authority could do this, would probably involve some polling, but + * it seems cleaner to do this server side. + */ + + if (current_temporary_authorizations != NULL) + { + /* show icon */ + if (status_icon == NULL) + { + status_icon = gtk_status_icon_new_from_stock (GTK_STOCK_DIALOG_AUTHENTICATION); + gtk_status_icon_set_tooltip_text (status_icon, + _("Click the icon to drop all elevated privileges")); + g_signal_connect (status_icon, + "activate", + G_CALLBACK (on_status_icon_activate), + NULL); + g_signal_connect (status_icon, + "popup-menu", + G_CALLBACK (on_status_icon_popup_menu), + NULL); + } + } + else + { + /* hide icon */ + if (status_icon != NULL) + { + gtk_status_icon_set_visible (status_icon, FALSE); + g_object_unref (status_icon); + status_icon = NULL; + } + } +} + +static void +enumerate_temporary_authorizations_cb (GObject *source_object, + GAsyncResult *res, + gpointer user_data) +{ + PolkitAuthority *authority = POLKIT_AUTHORITY (source_object); + GList *temporary_authorizations; + GError *error; + + temporary_authorizations = NULL; + + error = NULL; + temporary_authorizations = polkit_authority_enumerate_temporary_authorizations_finish (authority, + res, + &error); + if (error != NULL) + { + g_warning ("Error enumerating temporary authorizations: %s", error->message); + g_error_free (error); + goto out; + } + + g_list_foreach (current_temporary_authorizations, (GFunc) g_object_unref, NULL); + g_list_free (current_temporary_authorizations); + + current_temporary_authorizations = temporary_authorizations; + + update_temporary_authorization_icon_real (); + + out: + ; +} + +static void +update_temporary_authorization_icon (PolkitAuthority *authority) +{ + polkit_authority_enumerate_temporary_authorizations (authority, + session, + NULL, + enumerate_temporary_authorizations_cb, + NULL); +} + +static void +on_authority_changed (PolkitAuthority *authority, + gpointer user_data) +{ + update_temporary_authorization_icon (authority); +} + +int +main (int argc, char **argv) +{ + gint ret; + GMainLoop *loop; + PolkitAgentListener *listener; + GError *error; + + g_type_init (); + gtk_init (&argc, &argv); + + loop = NULL; + authority = NULL; + listener = NULL; + session = NULL; + ret = 1; + + bindtextdomain (GETTEXT_PACKAGE, MATELOCALEDIR); +#if HAVE_BIND_TEXTDOMAIN_CODESET + bind_textdomain_codeset (GETTEXT_PACKAGE, "UTF-8"); +#endif + textdomain (GETTEXT_PACKAGE); + + loop = g_main_loop_new (NULL, FALSE); + + error = NULL; + authority = polkit_authority_get_sync (NULL /* GCancellable* */, &error); + if (authority == NULL) + { + g_warning ("Error getting authority: %s", error->message); + g_error_free (error); + goto out; + } + g_signal_connect (authority, + "changed", + G_CALLBACK (on_authority_changed), + NULL); + + listener = polkit_mate_listener_new (); + + error = NULL; + session = polkit_unix_session_new_for_process_sync (getpid (), NULL, &error); + if (error != NULL) + { + g_warning ("Unable to determine the session we are in: %s", error->message); + g_error_free (error); + goto out; + } + + error = NULL; + if (!polkit_agent_register_listener (listener, + session, + "/org/mate/PolicyKit1/AuthenticationAgent", + &error)) + { + g_printerr ("Cannot register authentication agent: %s\n", error->message); + g_error_free (error); + goto out; + } + + update_temporary_authorization_icon (authority); + + g_main_loop_run (loop); + + ret = 0; + + out: + if (authority != NULL) + g_object_unref (authority); + if (session != NULL) + g_object_unref (session); + if (listener != NULL) + g_object_unref (listener); + if (loop != NULL) + g_main_loop_unref (loop); + + return ret; +} |