1 /*
2 * Copyright (c) 2024 Huawei Device Co., Ltd.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at
6 *
7 * http://www.apache.org/licenses/LICENSE-2.0
8 *
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
14 */
15
16 #include "password_policy_plugin.h"
17
18 #include "edm_ipc_interface_code.h"
19 #include "iplugin_manager.h"
20 #include "user_auth_client.h"
21
22 namespace OHOS {
23 namespace EDM {
24 const bool REGISTER_RESULT = IPluginManager::GetInstance()->AddPlugin(PasswordPolicyPlugin::GetPlugin());
25
InitPlugin(std::shared_ptr<IPluginTemplate<PasswordPolicyPlugin,PasswordPolicy>> ptr)26 void PasswordPolicyPlugin::InitPlugin(
27 std::shared_ptr<IPluginTemplate<PasswordPolicyPlugin, PasswordPolicy>> ptr)
28 {
29 EDMLOGI("PasswordPolicyPlugin InitPlugin...");
30 ptr->InitAttribute(EdmInterfaceCode::PASSWORD_POLICY,
31 "password_policy", EdmPermission::PERMISSION_ENTERPRISE_MANAGE_SECURITY,
32 IPlugin::PermissionType::SUPER_DEVICE_ADMIN, true);
33 ptr->SetSerializer(PasswordSerializer::GetInstance());
34 ptr->SetOnHandlePolicyListener(&PasswordPolicyPlugin::OnSetPolicy, FuncOperateType::SET);
35 ptr->SetOnAdminRemoveListener(&PasswordPolicyPlugin::OnAdminRemove);
36 }
37
OnSetPolicy(PasswordPolicy & policy,PasswordPolicy & currentData,PasswordPolicy & mergeData,int32_t userId)38 ErrCode PasswordPolicyPlugin::OnSetPolicy(PasswordPolicy &policy, PasswordPolicy ¤tData,
39 PasswordPolicy &mergeData, int32_t userId)
40 {
41 EDMLOGI("PasswordPolicyPlugin OnSetPolicy...");
42 if (!mergeData.complexityReg.empty() || mergeData.validityPeriod != 0 || !mergeData.additionalDescription.empty()) {
43 EDMLOGE("LocationPolicyPlugin set location failed. Other admin has already set policies.");
44 return EdmReturnErrCode::PARAM_ERROR;
45 }
46 UserIam::UserAuth::GlobalConfigParam param;
47 param.type = UserIam::UserAuth::GlobalConfigType::PIN_EXPIRED_PERIOD;
48 param.value.pinExpiredPeriod = policy.validityPeriod;
49 param.authTypes.push_back(UserIam::UserAuth::AuthType::PIN);
50 int32_t ret = UserIam::UserAuth::UserAuthClient::GetInstance().SetGlobalConfigParam(param);
51 if (ret != ERR_OK) {
52 EDMLOGW("PasswordPolicyPlugin SetGlobalConfigParam failed");
53 }
54 currentData = policy;
55 mergeData = policy;
56 return ERR_OK;
57 }
58
OnAdminRemove(const std::string & adminName,PasswordPolicy & data,PasswordPolicy & mergeData,int32_t userId)59 ErrCode PasswordPolicyPlugin::OnAdminRemove(const std::string &adminName, PasswordPolicy &data,
60 PasswordPolicy &mergeData, int32_t userId)
61 {
62 UserIam::UserAuth::GlobalConfigParam param;
63 param.type = UserIam::UserAuth::GlobalConfigType::PIN_EXPIRED_PERIOD;
64 param.value.pinExpiredPeriod = 0;
65 param.authTypes.push_back(UserIam::UserAuth::AuthType::PIN);
66 int32_t ret = UserIam::UserAuth::UserAuthClient::GetInstance().SetGlobalConfigParam(param);
67 if (ret != ERR_OK) {
68 EDMLOGW("PasswordPolicyPlugin SetGlobalConfigParam failed");
69 return EdmReturnErrCode::SYSTEM_ABNORMALLY;
70 }
71 return ERR_OK;
72 }
73 } // namespace EDM
74 } // namespace OHOS