Google Git
Sign in
android / platform / cts / fac6c2663add42ac19f80b5861539c9f907f5485 / . / hostsidetests / devicepolicy / app / DeviceOwner / src / com / android / cts / deviceowner / CreateAndManageUserTest.java
blob: 257ac7b952fe9d4ca657a0f6f061ffad780e3d8f [file] [log] [blame]
/*
* Copyright (C) 2016 The Android Open Source Project
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package com.android.cts.deviceowner;
import android.app.Service;
import android.app.admin.DeviceAdminReceiver;
import android.app.admin.DevicePolicyManager;
import android.content.BroadcastReceiver;
import android.content.ComponentName;
import android.content.Context;
import android.content.Intent;
import android.content.IntentFilter;
import android.content.ServiceConnection;
import android.content.pm.PackageManager;
import android.os.IBinder;
import android.os.PersistableBundle;
import android.os.RemoteException;
import android.os.UserHandle;
import android.os.UserManager;
import android.provider.Settings;
import androidx.localbroadcastmanager.content.LocalBroadcastManager;
import android.util.Log;
import java.lang.reflect.InvocationTargetException;
import java.lang.reflect.Method;
import java.util.Collections;
import java.util.List;
import java.util.Set;
import java.util.concurrent.Semaphore;
import java.util.concurrent.LinkedBlockingQueue;
import java.util.concurrent.TimeUnit;
import java.util.function.Predicate;
import java.util.stream.Collectors;
/**
* Test {@link DevicePolicyManager#createAndManageUser}.
*/
public class CreateAndManageUserTest extends BaseDeviceOwnerTest {
private static final String TAG = "CreateAndManageUserTest";
private static final int BROADCAST_TIMEOUT = 30_000;
private static final String AFFILIATION_ID = "affiliation.id";
private static final String EXTRA_AFFILIATION_ID = "affiliationIdExtra";
private static final String EXTRA_METHOD_NAME = "methodName";
private static final long ON_ENABLED_TIMEOUT_SECONDS = 120;
@Override
protected void setUp() throws Exception {
super.setUp();
}
@Override
protected void tearDown() throws Exception {
mDevicePolicyManager.clearUserRestriction(getWho(), UserManager.DISALLOW_ADD_USER);
mDevicePolicyManager.clearUserRestriction(getWho(), UserManager.DISALLOW_REMOVE_USER);
super.tearDown();
}
public void testCreateAndManageUser() {
String testUserName = "TestUser_" + System.currentTimeMillis();
UserHandle userHandle = mDevicePolicyManager.createAndManageUser(
getWho(),
testUserName,
getWho(),
null,
/* flags */ 0);
Log.d(TAG, "User create: " + userHandle);
}
public void testCreateAndManageUser_LowStorage() {
String testUserName = "TestUser_" + System.currentTimeMillis();
try {
mDevicePolicyManager.createAndManageUser(
getWho(),
testUserName,
getWho(),
null,
/* flags */ 0);
fail("createAndManageUser should throw UserOperationException");
} catch (UserManager.UserOperationException e) {
assertEquals(UserManager.USER_OPERATION_ERROR_LOW_STORAGE, e.getUserOperationResult());
}
}
public void testCreateAndManageUser_MaxUsers() {
String testUserName = "TestUser_" + System.currentTimeMillis();
try {
mDevicePolicyManager.createAndManageUser(
getWho(),
testUserName,
getWho(),
null,
/* flags */ 0);
fail("createAndManageUser should throw UserOperationException");
} catch (UserManager.UserOperationException e) {
assertEquals(UserManager.USER_OPERATION_ERROR_MAX_USERS, e.getUserOperationResult());
}
}
@SuppressWarnings("unused")
private static void assertSkipSetupWizard(Context context,
DevicePolicyManager devicePolicyManager, ComponentName componentName) throws Exception {
assertEquals("user setup not completed", 1,
Settings.Secure.getInt(context.getContentResolver(),
Settings.Secure.USER_SETUP_COMPLETE));
}
public void testCreateAndManageUser_SkipSetupWizard() throws Exception {
runCrossUserVerification(DevicePolicyManager.SKIP_SETUP_WIZARD, "assertSkipSetupWizard");
PrimaryUserService.assertCrossUserCallArrived();
}
public void testCreateAndManageUser_GetSecondaryUsers() {
String testUserName = "TestUser_" + System.currentTimeMillis();
UserHandle userHandle = mDevicePolicyManager.createAndManageUser(
getWho(),
testUserName,
getWho(),
null,
/* flags */ 0);
Log.d(TAG, "User create: " + userHandle);
List<UserHandle> secondaryUsers = mDevicePolicyManager.getSecondaryUsers(getWho());
assertEquals(1, secondaryUsers.size());
assertEquals(userHandle, secondaryUsers.get(0));
}
public void testCreateAndManageUser_SwitchUser() throws Exception {
LocalBroadcastManager localBroadcastManager = LocalBroadcastManager.getInstance(
getContext());
String testUserName = "TestUser_" + System.currentTimeMillis();
UserHandle userHandle = mDevicePolicyManager.createAndManageUser(
getWho(),
testUserName,
getWho(),
null,
/* flags */ 0);
Log.d(TAG, "User create: " + userHandle);
LocalBroadcastReceiver broadcastReceiver = new LocalBroadcastReceiver();
localBroadcastManager.registerReceiver(broadcastReceiver,
new IntentFilter(BasicAdminReceiver.ACTION_USER_SWITCHED));
try {
assertTrue(mDevicePolicyManager.switchUser(getWho(), userHandle));
assertEquals(userHandle, broadcastReceiver.waitForBroadcastReceived());
} finally {
localBroadcastManager.unregisterReceiver(broadcastReceiver);
}
}
public void testCreateAndManageUser_CannotStopCurrentUser() throws Exception {
LocalBroadcastManager localBroadcastManager = LocalBroadcastManager.getInstance(
getContext());
String testUserName = "TestUser_" + System.currentTimeMillis();
UserHandle userHandle = mDevicePolicyManager.createAndManageUser(
getWho(),
testUserName,
getWho(),
null,
/* flags */ 0);
Log.d(TAG, "User create: " + userHandle);
LocalBroadcastReceiver broadcastReceiver = new LocalBroadcastReceiver();
localBroadcastManager.registerReceiver(broadcastReceiver,
new IntentFilter(BasicAdminReceiver.ACTION_USER_SWITCHED));
try {
assertTrue(mDevicePolicyManager.switchUser(getWho(), userHandle));
assertEquals(userHandle, broadcastReceiver.waitForBroadcastReceived());
assertEquals(UserManager.USER_OPERATION_ERROR_CURRENT_USER,
mDevicePolicyManager.stopUser(getWho(), userHandle));
} finally {
localBroadcastManager.unregisterReceiver(broadcastReceiver);
}
}
public void testCreateAndManageUser_StartInBackground() throws Exception {
LocalBroadcastManager localBroadcastManager = LocalBroadcastManager.getInstance(
getContext());
String testUserName = "TestUser_" + System.currentTimeMillis();
UserHandle userHandle = mDevicePolicyManager.createAndManageUser(
getWho(),
testUserName,
getWho(),
null,
/* flags */ 0);
Log.d(TAG, "User create: " + userHandle);
LocalBroadcastReceiver broadcastReceiver = new LocalBroadcastReceiver();
localBroadcastManager.registerReceiver(broadcastReceiver,
new IntentFilter(BasicAdminReceiver.ACTION_USER_STARTED));
try {
// Start user in background and wait for onUserStarted
assertEquals(UserManager.USER_OPERATION_SUCCESS,
mDevicePolicyManager.startUserInBackground(getWho(), userHandle));
assertEquals(userHandle, broadcastReceiver.waitForBroadcastReceived());
} finally {
localBroadcastManager.unregisterReceiver(broadcastReceiver);
}
}
public void testCreateAndManageUser_StartInBackground_MaxRunningUsers() {
String testUserName = "TestUser_" + System.currentTimeMillis();
UserHandle userHandle = mDevicePolicyManager.createAndManageUser(
getWho(),
testUserName,
getWho(),
null,
/* flags */ 0);
Log.d(TAG, "User create: " + userHandle);
// Start user in background and should receive max running users error
assertEquals(UserManager.USER_OPERATION_ERROR_MAX_RUNNING_USERS,
mDevicePolicyManager.startUserInBackground(getWho(), userHandle));
}
public void testCreateAndManageUser_StopUser() throws Exception {
LocalBroadcastManager localBroadcastManager = LocalBroadcastManager.getInstance(
getContext());
String testUserName = "TestUser_" + System.currentTimeMillis();
UserHandle userHandle = mDevicePolicyManager.createAndManageUser(
getWho(),
testUserName,
getWho(),
null,
/* flags */ 0);
Log.d(TAG, "User create: " + userHandle);
assertEquals(UserManager.USER_OPERATION_SUCCESS,
mDevicePolicyManager.startUserInBackground(getWho(), userHandle));
LocalBroadcastReceiver broadcastReceiver = new LocalBroadcastReceiver();
localBroadcastManager.registerReceiver(broadcastReceiver,
new IntentFilter(BasicAdminReceiver.ACTION_USER_STOPPED));
try {
assertEquals(UserManager.USER_OPERATION_SUCCESS,
mDevicePolicyManager.stopUser(getWho(), userHandle));
assertEquals(userHandle, broadcastReceiver.waitForBroadcastReceived());
} finally {
localBroadcastManager.unregisterReceiver(broadcastReceiver);
}
}
public void testCreateAndManageUser_StopEphemeralUser_DisallowRemoveUser() throws Exception {
LocalBroadcastManager localBroadcastManager = LocalBroadcastManager.getInstance(
getContext());
String testUserName = "TestUser_" + System.currentTimeMillis();
// Set DISALLOW_REMOVE_USER restriction
mDevicePolicyManager.addUserRestriction(getWho(), UserManager.DISALLOW_REMOVE_USER);
UserHandle userHandle = mDevicePolicyManager.createAndManageUser(
getWho(),
testUserName,
getWho(),
null,
DevicePolicyManager.MAKE_USER_EPHEMERAL);
Log.d(TAG, "User create: " + userHandle);
assertEquals(UserManager.USER_OPERATION_SUCCESS,
mDevicePolicyManager.startUserInBackground(getWho(), userHandle));
LocalBroadcastReceiver broadcastReceiver = new LocalBroadcastReceiver();
localBroadcastManager.registerReceiver(broadcastReceiver,
new IntentFilter(BasicAdminReceiver.ACTION_USER_REMOVED));
try {
assertEquals(UserManager.USER_OPERATION_SUCCESS,
mDevicePolicyManager.stopUser(getWho(), userHandle));
assertEquals(userHandle, broadcastReceiver.waitForBroadcastReceived());
} finally {
localBroadcastManager.unregisterReceiver(broadcastReceiver);
// Clear DISALLOW_REMOVE_USER restriction
mDevicePolicyManager.clearUserRestriction(getWho(), UserManager.DISALLOW_REMOVE_USER);
}
}
@SuppressWarnings("unused")
private static void logoutUser(Context context, DevicePolicyManager devicePolicyManager,
ComponentName componentName) {
assertEquals("cannot logout user", UserManager.USER_OPERATION_SUCCESS,
devicePolicyManager.logoutUser(componentName));
}
public void testCreateAndManageUser_LogoutUser() throws Exception {
LocalBroadcastManager localBroadcastManager = LocalBroadcastManager.getInstance(
getContext());
LocalBroadcastReceiver broadcastReceiver = new LocalBroadcastReceiver();
localBroadcastManager.registerReceiver(broadcastReceiver,
new IntentFilter(BasicAdminReceiver.ACTION_USER_STOPPED));
try {
UserHandle userHandle = runCrossUserVerification(
/* createAndManageUserFlags */ 0, "logoutUser");
assertEquals(userHandle, broadcastReceiver.waitForBroadcastReceived());
} finally {
localBroadcastManager.unregisterReceiver(broadcastReceiver);
}
}
@SuppressWarnings("unused")
private static void assertAffiliatedUser(Context context,
DevicePolicyManager devicePolicyManager, ComponentName componentName) {
assertTrue("not affiliated user", devicePolicyManager.isAffiliatedUser());
}
public void testCreateAndManageUser_Affiliated() throws Exception {
runCrossUserVerification(/* createAndManageUserFlags */ 0, "assertAffiliatedUser");
PrimaryUserService.assertCrossUserCallArrived();
}
@SuppressWarnings("unused")
private static void assertEphemeralUser(Context context,
DevicePolicyManager devicePolicyManager, ComponentName componentName) {
assertTrue("not ephemeral user", devicePolicyManager.isEphemeralUser(componentName));
}
public void testCreateAndManageUser_Ephemeral() throws Exception {
runCrossUserVerification(DevicePolicyManager.MAKE_USER_EPHEMERAL, "assertEphemeralUser");
PrimaryUserService.assertCrossUserCallArrived();
}
@SuppressWarnings("unused")
private static void assertAllSystemAppsInstalled(Context context,
DevicePolicyManager devicePolicyManager, ComponentName componentName) {
PackageManager packageManager = context.getPackageManager();
// First get a set of installed package names
Set<String> installedPackageNames = packageManager
.getInstalledApplications(/* flags */ 0)
.stream()
.map(applicationInfo -> applicationInfo.packageName)
.collect(Collectors.toSet());
// Then filter all package names by those that are not installed
Set<String> uninstalledPackageNames = packageManager
.getInstalledApplications(PackageManager.MATCH_UNINSTALLED_PACKAGES)
.stream()
.map(applicationInfo -> applicationInfo.packageName)
.filter(((Predicate<String>) installedPackageNames::contains).negate())
.collect(Collectors.toSet());
// Assert that all apps are installed
assertTrue("system apps not installed: " + uninstalledPackageNames,
uninstalledPackageNames.isEmpty());
}
public void testCreateAndManageUser_LeaveAllSystemApps() throws Exception {
runCrossUserVerification(
DevicePolicyManager.LEAVE_ALL_SYSTEM_APPS_ENABLED, "assertAllSystemAppsInstalled");
PrimaryUserService.assertCrossUserCallArrived();
}
private UserHandle runCrossUserVerification(int createAndManageUserFlags, String methodName) {
String testUserName = "TestUser_" + System.currentTimeMillis();
// Set affiliation id to allow communication.
mDevicePolicyManager.setAffiliationIds(getWho(), Collections.singleton(AFFILIATION_ID));
// Pack the affiliation id in a bundle so the secondary user can get it.
PersistableBundle bundle = new PersistableBundle();
bundle.putString(EXTRA_AFFILIATION_ID, AFFILIATION_ID);
bundle.putString(EXTRA_METHOD_NAME, methodName);
UserHandle userHandle = mDevicePolicyManager.createAndManageUser(
getWho(),
testUserName,
SecondaryUserAdminReceiver.getComponentName(getContext()),
bundle,
createAndManageUserFlags);
Log.d(TAG, "User create: " + userHandle);
assertEquals(UserManager.USER_OPERATION_SUCCESS,
mDevicePolicyManager.startUserInBackground(getWho(), userHandle));
return userHandle;
}
// createAndManageUser should circumvent the DISALLOW_ADD_USER restriction
public void testCreateAndManageUser_AddRestrictionSet() {
mDevicePolicyManager.addUserRestriction(getWho(), UserManager.DISALLOW_ADD_USER);
UserHandle userHandle = mDevicePolicyManager.createAndManageUser(getWho(), "Test User",
getWho(), null, 0);
assertNotNull(userHandle);
}
public void testCreateAndManageUser_RemoveRestrictionSet() {
mDevicePolicyManager.addUserRestriction(getWho(), UserManager.DISALLOW_REMOVE_USER);
UserHandle userHandle = mDevicePolicyManager.createAndManageUser(getWho(), "Test User",
getWho(), null, 0);
assertNotNull(userHandle);
boolean removed = mDevicePolicyManager.removeUser(getWho(), userHandle);
// When the device owner itself has set the user restriction, it should still be allowed
// to remove a user.
assertTrue(removed);
}
public void testUserAddedOrRemovedBroadcasts() throws InterruptedException {
LocalBroadcastReceiver receiver = new LocalBroadcastReceiver();
LocalBroadcastManager localBroadcastManager = LocalBroadcastManager.getInstance(
getContext());
localBroadcastManager.registerReceiver(receiver,
new IntentFilter(BasicAdminReceiver.ACTION_USER_ADDED));
UserHandle userHandle;
try {
userHandle = mDevicePolicyManager.createAndManageUser(getWho(), "Test User", getWho(),
null, 0);
assertNotNull(userHandle);
assertEquals(userHandle, receiver.waitForBroadcastReceived());
} finally {
localBroadcastManager.unregisterReceiver(receiver);
}
localBroadcastManager.registerReceiver(receiver,
new IntentFilter(BasicAdminReceiver.ACTION_USER_REMOVED));
try {
assertTrue(mDevicePolicyManager.removeUser(getWho(), userHandle));
assertEquals(userHandle, receiver.waitForBroadcastReceived());
} finally {
localBroadcastManager.unregisterReceiver(receiver);
}
}
static class LocalBroadcastReceiver extends BroadcastReceiver {
private LinkedBlockingQueue<UserHandle> mQueue = new LinkedBlockingQueue<>(1);
@Override
public void onReceive(Context context, Intent intent) {
UserHandle userHandle = intent.getParcelableExtra(BasicAdminReceiver.EXTRA_USER_HANDLE);
Log.d(TAG, "broadcast receiver received " + intent + " with userHandle "
+ userHandle);
mQueue.offer(userHandle);
}
UserHandle waitForBroadcastReceived() throws InterruptedException {
return mQueue.poll(BROADCAST_TIMEOUT, TimeUnit.MILLISECONDS);
}
}
public static final class PrimaryUserService extends Service {
private static final Semaphore sSemaphore = new Semaphore(0);
private static String sError = null;
private final ICrossUserService.Stub mBinder = new ICrossUserService.Stub() {
public void onEnabledCalled(String error) {
Log.d(TAG, "onEnabledCalled on primary user");
sError = error;
sSemaphore.release();
}
};
@Override
public IBinder onBind(Intent intent) {
return mBinder;
}
static void assertCrossUserCallArrived() throws Exception {
assertTrue(sSemaphore.tryAcquire(ON_ENABLED_TIMEOUT_SECONDS, TimeUnit.SECONDS));
if (sError != null) {
throw new Exception(sError);
}
}
}
public static final class SecondaryUserAdminReceiver extends DeviceAdminReceiver {
@Override
public void onEnabled(Context context, Intent intent) {
Log.d(TAG, "onEnabled called");
DevicePolicyManager dpm = context.getSystemService(DevicePolicyManager.class);
ComponentName who = getComponentName(context);
// Set affiliation ids
dpm.setAffiliationIds(
who, Collections.singleton(intent.getStringExtra(EXTRA_AFFILIATION_ID)));
String error = null;
try {
Method method = CreateAndManageUserTest.class.getDeclaredMethod(
intent.getStringExtra(EXTRA_METHOD_NAME), Context.class,
DevicePolicyManager.class, ComponentName.class);
method.setAccessible(true);
method.invoke(null, context, dpm, who);
} catch (NoSuchMethodException | IllegalAccessException e) {
error = e.toString();
} catch (InvocationTargetException e) {
error = e.getCause().toString();
}
// Call all affiliated users
final List<UserHandle> targetUsers = dpm.getBindDeviceAdminTargetUsers(who);
assertEquals(1, targetUsers.size());
pingTargetUser(context, dpm, targetUsers.get(0), error);
}
private void pingTargetUser(Context context, DevicePolicyManager dpm, UserHandle target,
String error) {
Log.d(TAG, "Pinging target: " + target);
final ServiceConnection serviceConnection = new ServiceConnection() {
@Override
public void onServiceConnected(ComponentName name, IBinder service) {
Log.d(TAG, "onServiceConnected is called in " + Thread.currentThread().getName());
ICrossUserService crossUserService = ICrossUserService
.Stub.asInterface(service);
try {
crossUserService.onEnabledCalled(error);
} catch (RemoteException re) {
Log.e(TAG, "Error when calling primary user", re);
// Do nothing, primary user will time out
}
}
@Override
public void onServiceDisconnected(ComponentName name) {
Log.d(TAG, "onServiceDisconnected is called");
}
};
final Intent serviceIntent = new Intent(context, PrimaryUserService.class);
assertTrue(dpm.bindDeviceAdminServiceAsUser(
getComponentName(context),
serviceIntent,
serviceConnection,
Context.BIND_AUTO_CREATE,
target));
}
public static ComponentName getComponentName(Context context) {
return new ComponentName(context, SecondaryUserAdminReceiver.class);
}
}
}