java - Android-Permission: Backward compatibility. Give access only to apps which are using old version of my app(new version permission enforced) -


how give access applications using updated application(newer version) permissions enforced.

suppose application name abc , version 0.1

there few applications on device uses service(let xz) offered abc application.

now, company thinks should expose permission use our xz service.

according have enforced permission pq in version 0.2. onwards applications using our service xz, should mention pq permission in manifest file.

but problem is,after upgrade, applications using version 0.1 no longer able use our service.

i know applications using xz service.

how can solve backward compatibility issue ?

i have checked enough on net no luck.

if faced same issue , found solution, please me...

any work around solutions welcome.

how can solve backward compatibility issue ?

contact developers of apps, warn them of impending permission requirement, , encourage them update apps ahead of time.

or, not defend app via permission. if there known finite set of client apps, , using compatible communications mechanism (e.g., aidl-based binding), can use getcallinguid() find out client request, , validate against whitelist of known apps. can check see if public signing key matches expected value, defend against hacked editions of clients.

another possibility have 2 separate service entry points same functionality:

  • the 0.1 version works today, without permission

  • the 0.2 version requires not <uses-permission> element, changing identity of service (e.g., different action string intent used service)

this allows start tightening security without breaking older apps. can offer deprecation window, give time 0.1 clients move 0.2, before removing 0.1 entry point entirely (or, @ least, defending same permission).

most likely, there other patterns — these ones off top of head.


Comments

Post a Comment

Popular posts from this blog

javascript - jQuery: Add class depending on URL in the best way -

i have html progress meter: <div class="col-md-3" style="margin-left: -20px;"> <div class="progress-pos active" id="progess-1"> <div class="progress-pos-inner"> login </div> </div> </div> <div class="col-md-3 progress-pos-container"> <div class="progress-pos" id="progess-2"> <div class="progress-pos-inner"> scan items </div> </div> </div> <div class="col-md-3 progress-pos-container"> <div class="progress-pos" id="progess-3"> <div class="progress-pos-inner"> confirm address </div> </div> </div> <div class="col-md-3 progress-pos-container"> <div class="progress-pos" id="progess-4"> <div class="progress-pos-in
Read more

caching - How to check if a url path exists in the service worker cache -

i need check if particular url path exists in service worker cache. example, suppose url is: /myserviceworker/service?a=110&b=70 this url exists in cache, there many of them different values of , b. now, suppose want refresh of these urls, how can that? i want know how access key values service worker cache. if know key, plan follows: var url = new url(key); if(url.pathname === "\/myserviceworker/service") refetch key but not sure how cache key , in format is. mean, string or url? cache api has match() method returns promise resolving in response object if match or undefined if no match exists. second parameter object can specify ignoresearch not take account url parameters. the ignoresearch option supported firefox ( chrome status here ). in other hand, retrieve cache entries, can use keys() method.
Read more

Redirect to a HTTPS version using .htaccess -

i need modify .htaccess file redirect urls https version without "www". http://example.com --> https://example.com http://www.example.com --> https://example.com https://www.example.com --> https://example.com this how .htaccess file looks like: rewriteengine on rewritecond %{request_filename} !-d rewritecond %{request_filename} !-f rewriterule ^(.*)$ redirect.php?id=$1&page=$2 [qsa,l] what modifications need make .htaccess in order forward https without "www"? it depends on doing current code. looks file called redirect trying display php page seo friendly url. think might confusing people. anyway, need , force https without www, need 1 more rule above. also second rule needs two capture groups in rewriterule test string because wanting 2 different values using $1 , $2 references. rewriteengine on #rediect www non www and/or http https --- combinations. rewritecond %{http_host} !^example\.com [nc,or] rewritecond %{https} !^
Read more