
181 lines
5.8 KiB
Raw Normal View History

2014-04-22 00:27:13 -04:00
using System;
using System.Collections.Generic;
using System.Linq;
using Android.App;
using Android.Content;
using Android.Content.PM;
using Android.Util;
using KeePassLib.Utility;
2014-04-22 00:27:13 -04:00
using Keepass2android.Pluginsdk;
using Org.Json;
2014-04-22 00:27:13 -04:00
namespace keepass2android
/// <summary>
/// Class which manages plugins inside the app
/// </summary>
[IntentFilter(new[] { Strings.ActionRequestAccess })]
public class PluginHost : BroadcastReceiver
2014-04-22 00:27:13 -04:00
2014-04-22 00:27:13 -04:00
private const string _tag = "KP2A_PluginHost";
private static readonly string[] _validScopes = { Strings.ScopeDatabaseActions,
public static IEnumerable<string> GetAllPlugins(Context ctx)
2014-04-22 00:27:13 -04:00
Intent accessIntent = new Intent(Strings.ActionTriggerRequestAccess);
PackageManager packageManager = ctx.PackageManager;
IList<ResolveInfo> dictPacks = packageManager.QueryBroadcastReceivers(
accessIntent, PackageInfoFlags.Receivers);
return dictPacks.Select(ri => ri.ActivityInfo.ApplicationInfo).Select(appInfo => appInfo.PackageName);
/// <summary>
/// Sends a broadcast to all potential plugins prompting them to request access to our app.
/// </summary>
public static void TriggerRequests(Context ctx)
2014-04-22 00:27:13 -04:00
PluginDatabase pluginDatabase = new PluginDatabase(ctx);
foreach (string pkg in GetAllPlugins(ctx))
TriggerRequest(ctx, pkg, pluginDatabase);
2014-04-22 00:27:13 -04:00
public static void TriggerRequest(Context ctx, string pkgName, PluginDatabase pluginDatabase)
Intent triggerIntent = new Intent(Strings.ActionTriggerRequestAccess);
triggerIntent.PutExtra(Strings.ExtraSender, ctx.PackageName);
triggerIntent.PutExtra(Strings.ExtraRequestToken, pluginDatabase.GetRequestToken(pkgName));
catch (Exception e)
2014-04-22 00:27:13 -04:00
public override void OnReceive(Context context, Intent intent)
PluginDatabase pluginDb = new PluginDatabase(context);
if (intent.Action == Strings.ActionRequestAccess)
var senderPackage = intent.GetStringExtra(Strings.ExtraSender);
var requestToken = intent.GetStringExtra(Strings.ExtraRequestToken);
var requestedScopes = intent.GetStringArrayListExtra(Strings.ExtraScopes);
2014-04-22 00:27:13 -04:00
if (!AreScopesValid(requestedScopes))
if (pluginDb.GetRequestToken(senderPackage) != requestToken)
Log.Warn(_tag, "Invalid requestToken!");
string currentAccessToken = pluginDb.GetAccessToken(senderPackage);
if ((currentAccessToken != null)
2014-04-22 00:27:13 -04:00
&& (AccessManager.IsSubset(requestedScopes,
2014-04-22 00:27:13 -04:00
//permission already there.
var i = new Intent(Strings.ActionReceiveAccess);
i.PutExtra(Strings.ExtraSender, context.PackageName);
i.PutExtra(Strings.ExtraAccessToken, currentAccessToken);
//TODO: Plugin should verify requestToken to make sure it doesn't receive accessTokens from malicious apps
i.PutExtra(Strings.ExtraRequestToken, requestToken);
Log.Debug(_tag, "Plugin " + senderPackage + " enabled.");
//store that scope was requested but not yet approved (=> accessToken = null)
pluginDb.StorePlugin(senderPackage, null, requestedScopes);
Log.Debug(_tag, "Plugin " + senderPackage + " not enabled.");
//see if the plugin has an access token
string accessToken = intent.GetStringExtra(Strings.ExtraAccessToken);
if (accessToken != null)
//notify plugin that access token is no longer valid or sufficient
Intent i = new Intent(Strings.ActionRevokeAccess);
i.PutExtra(Strings.ExtraSender, context.PackageName);
i.PutExtra(Strings.ExtraAccessToken, accessToken);
Log.Warn(_tag, "Access token of plugin " + senderPackage + " not (or no more) valid.");
2014-04-22 00:27:13 -04:00
if (OnReceivedRequest != null)
OnReceivedRequest(this, new PluginHostEventArgs() { Package = senderPackage });
2014-04-22 00:27:13 -04:00
private bool AreScopesValid(IList<string> requestedScopes)
foreach (string scope in requestedScopes)
if (!_validScopes.Contains(scope))
Log.Warn(_tag, "invalid scope: " + scope);
return false;
return true;
/// <summary>
/// adds the entry output data to the intent to be sent to a plugin
/// </summary>
public static void AddEntryToIntent(Intent intent, PwEntryOutput entry)
/*//add the entry XML
not yet implemented. What to do with attachments?
MemoryStream memStream = new MemoryStream();
KdbxFile.WriteEntries(memStream, new[] {entry});
string entryData = StrUtil.Utf8.GetString(memStream.ToArray());
intent.PutExtra(Strings.ExtraEntryData, entryData);
//add the output string array (placeholders replaced taking into account the db context)
Dictionary<string, string> outputFields = entry.OutputStrings.ToDictionary(pair => StrUtil.SafeXmlString(pair.Key), pair => pair.Value.ReadString());
JSONObject jsonOutput = new JSONObject(outputFields);
var jsonOutputStr = jsonOutput.ToString();
intent.PutExtra(Strings.ExtraEntryOutputData, jsonOutputStr);
JSONArray jsonProtectedFields = new JSONArray(
.Where(pair => pair.Value.IsProtected)
.Select(pair => pair.Key)
intent.PutExtra(Strings.ExtraProtectedFieldsList, jsonProtectedFields.ToString());
intent.PutExtra(Strings.ExtraEntryId, entry.Uuid.ToHexString());
public class PluginHostEventArgs
public string Package { get; set; }
public static event EventHandler<PluginHostEventArgs> OnReceivedRequest;
2014-04-22 00:27:13 -04:00