KUrlAuthorized
Functions | |
void | allowUrlAction (const QString &action, const QUrl &baseUrl, const QUrl &destUrl) |
bool | authorizeUrlAction (const QString &action, const QUrl &baseUrl, const QUrl &destUrl) |
Detailed Description
The functions in this namespace allow actions to be restricted based on the URL they operate on (see the KAuthorized namespace in KConfig).
As with KAuthorized functions, the relevant settings are read from the application's KSharedConfig instance, so actions can be disabled on a per-application or global basis (by using the kdeglobals file).
URLs can be matched based on protocol, host and path, and the referring URL can be taken into account.
URL-based restrictions are recorded using this syntax:
[KDE URL Restrictions] rule_count=<N> rule_1=<action>,<referingURL_protocol>,<referingURL_host>,<referingURL_path>,<URL_protocol>,<URL_host>,<URL_path>,<enabled> ... rule_N=<action>,<referingURL_protocol>,<referingURL_host>,<referingURL_path>,<URL_protocol>,<URL_host>,<URL_path>,<enabled>
The following standard actions are defined:
- redirect: A common example is a web page redirecting to another web page. By default, internet protocols are not permitted to redirect to the "file" protocol, but you could override this for a specific host, for example:
[KDE URL Restrictions] rule_count=1 rule_1=redirect,http,myhost.example.com,,file,,,true
- list: Determines whether a URL can be browsed, in an "open" or "save" dialog, for example. If a user should only be able to browse files under home directory one could use:
[KDE URL Restrictions] rule_count=2 rule_1=list,,,,file,,,false rule_2=list,,,,file,,$HOME,true
The first rule disables browsing any directories on the local filesystem. The second rule then enables browsing the users home directory. - open: This controls which files can be opened by the user in applications. It also affects where users can save files. To only allow a user to open the files in his own home directory one could use:
[KDE URL Restrictions] rule_count=3 rule_1=open,,,,file,,,false rule_2=open,,,,file,,$HOME,true rule_3=open,,,,file,,$TMP,true
Note that with the above, users would still be able to open files from the internet. Note also that the user is also given access to $TMP in order to ensure correct operation of KDE applications. $TMP is replaced with the temporary directory that KDE uses for this user. - link: Determines whether a URL can be linked to.
Some remarks:
- empty entries match everything
- host names may start with a wildcard, e.g. "*.acme.com"
- a protocol also matches similar protocols that start with the same name, e.g. "http" matches both http and https. You can use "http!" if you only want to match http (and not https)
- specifying a path matches all URLs that start with the same path. For better results you should not include a trailing slash. If you want to specify one specific path, you can add an exclamation mark. E.g. "/srv" matches both "/srv" and "/srv/www" but "/srv!" only matches "/srv" and not "/srv/www".
Function Documentation
◆ allowUrlAction()
KIOCORE_EXPORT void KUrlAuthorized::allowUrlAction | ( | const QString & | action, |
const QUrl & | baseUrl, | ||
const QUrl & | destUrl ) |
Override Kiosk restrictions to allow a given URL action.
This can be useful if your application needs to ensure access to an application-specific directory that may otherwise be subject to Kiosk restrictions.
- Parameters
-
action The name of the action. baseUrl The url where the action originates from. destUrl The object of the action.
- See also
- authorizeUrlAction()
- Since
- 5.0
Definition at line 31 of file kurlauthorized.cpp.
◆ authorizeUrlAction()
KIOCORE_EXPORT bool KUrlAuthorized::authorizeUrlAction | ( | const QString & | action, |
const QUrl & | baseUrl, | ||
const QUrl & | destUrl ) |
Returns whether a certain URL related action is authorized.
- Parameters
-
action The name of the action, typically one of "list", "link", "open" or "redirect". baseUrl The url where the action originates from. destUrl The object of the action.
- Returns
true
if the action is authorized,false
otherwise.
- See also
- allowUrlAction()
- Since
- 5.0
Definition at line 24 of file kurlauthorized.cpp.
Documentation copyright © 1996-2024 The KDE developers.
Generated on Sat Dec 21 2024 16:58:46 by doxygen 1.12.0 written by Dimitri van Heesch, © 1997-2006
KDE's Doxygen guidelines are available online.