Android :: Permissions With Application Signing?

Sep 3, 2010

I have an application which has some of it's activities restricted via my own permission. The permission is published in the manifest of the application A and a second application B should request this permission and then be able to call an activity from app A. Both applications belong to me and are signed with the same certificate (they share the same keystore and alias/password from it). Application A gets granted the permission but app B gets never granted the permission! Logcat tells me about this during the installation and the app crashes with an security exception when trying to start the activity from app A. What the heck am I doing wrong? Could it be something with the application signing? Please help me, I'm totally out of ideas.

Android :: Permissions with application signing?


Android : Signing Key Got Corrupted - Getting Invalid Keystore Format In Eclipse Signing Wizard

Aug 25, 2010

I have a paid application, that I recently published.

For one reason or another, I didn't make a backup copy of the key signature.

After fixing some bugs, I tried to sign the application again as an update, through Eclipse's export as a signed app wizard.

On the screen where the alias is usually selected, i get a message saying "Invalid Keystore Format."

My real issue is how to handle publishing the update as a new, separate application, with regard to the users who have already purchased the application.

Would I issue refunds for the original purchase for users that purchase the new, separate application?

View 4 Replies View Related

Android :: Signing The Application

Feb 2, 2009

I got the screens and code all worked out, I want to export and sign the application for public distribution but the documentation on this is overwhelming. Any hints on signing the app and all that jazz?

View 4 Replies View Related

Android :: Signing An Application On Linux

Feb 20, 2009

I've got a problem! I don`t know how to sign an application on Linux. Can you please help me?

View 9 Replies View Related

Android :: Application Signing Required?

Dec 16, 2009

I would like to know about Android application signing. IFAIK, blackberry and iphone application must be signed to work on the real device.For the Android, does application need to sign ?If so, how to sign the application?

View 2 Replies View Related

Android :: Signing Application With System Key

Sep 27, 2010

I have written video renderer application which is using surface flinger APIs to get access of it. I am developing and building application on eclipse. So when i build it , it is already signed default. But when i run it on emulator, i am getting access permission failure of surfaceflinger.On the some portal i have read that if i want to access surfaceflinger i need to signed my application with system key. Is it correct ? If it is correct, can anyone guide me how can i signed my application with system key to get access surfaceflinger.

View 4 Replies View Related

Android :: Signing And Publishing Application

Aug 26, 2010

I have my application run on development environment (eclipse - testing using device), then i do right click on my project folder - android tools - export signed application package, then i create new key store and add my information there, then it'll produce the .apk then i put it up on my own webserver (I intend to put it on my own web server and android market place as well) but then, once i try to download my .apk from my testing handset - it said:

"cannot download. the content the content is not supported on this phone"

this is weird, since i do my testing on this same handset as well. so my question are:

- what is the proper way to sign my app so it can be downloaded all the way through my own web server?
but I still can put it up on android market as well? - I have my android market account.

-is there any walk-through for it?

Well Hope someone can give me the answer, I really appreciate your help!

View 1 Replies View Related

Android :: Getting Ready To Publish - Signing / Aligning Of Application

Nov 10, 2010

I'm just about ready to Publish my application. I have a question about the Signing/Aligning of the application. In looking at the Android documentation they say to run "ant release" to compile the application in release mode. Then to sign and align the apk run "jarsigner" and "zipalign". I had used "android create project" to create my build.xml.

I modified it to run proguard. I find that when I run "ant release" it appears that signing is done as part of the process (I'm prompted for my keystore password) and the apk is zipaligned. I guess I'm confused that the documentation makes it 3 steps, "run ant release" then jarsign, then zipalign. BUT, my "ant release" seems to do everything. Is the documentation not upto date? Is it safe/acceptable to just run "ant release"?

View 2 Replies View Related

General :: Application Not Installed When Signing With Private APK

May 10, 2012

I have 2 tools - 1 : APK Manager - 2: Signare (both have their official posts on xda)

I also have jdk 1.6 update 32 installed on my windows 7 x64 bit.

I have created a private key signature manually using the -keytool -v -keystore command and also have created a private key signature using signare.exe app

I am able to sucessfully decompile and recompile apk files (non system apk - example an adw theme) . Now when i am signing the .apk file, the following takes place.

-when i sign it with a test key uaing apk manager, i am able to put it in my sd card and install it and it works fine.

- now when i sign it with a private key signature ( any of the two that i have created), it gets signed successfully but when i put it in my sd card and install it , i get an error message "Application Not Installed".

I really need to know how to ressolve this issue so that i can sign it with a private key .

View 3 Replies View Related

Android :: Permissions To Be Set For An MMS Receiver Application

Jun 28, 2009

I have found the solution to this problem, the issue was I was also supposed to add the data tag:<data android:mimeType="application/vnd.wap.mms-message" />.Can someone provide some sample code to access the contents of the MMS message received.

View 2 Replies View Related

Android :: Possible To Hide Application Permissions From User?

Jul 11, 2010

I am wanting to know if a developer has the ability to choose not to display the permissions needed for an app they create. For an example if there is a note taking app in the market that says no permissions needed, but in reality, it does have "internet access"capabilities not shown to the user/downloader, Is it possible for App permissions to be hidden and not displayed to the user? Can someone explain to me the process on assigning and displaying permissions on android apps?

View 4 Replies View Related

Android :: Application Requires Permissions To Set Internet

Oct 15, 2010

I have a question about a simple application, the only permission that i have set is Internet, because it's a simple application that reads something on the net. Anyway, the app requires to me (when i install it) three permissions, Internet, SD Storage and Phone usage.

Anyone knows why happens this?

View 2 Replies View Related

Android :: Adjusting Application Permissions Real Time

Feb 25, 2010

I know you can apply Permissions for Applications on it's manifest.xml file. What I want to know is, can those Permissions be adjusted by the Applications on the fly?Here's my reason: say I have an application that is allowed to do "x", "y", and "z" (SMS, sockets, etc) Permissions. Now lets say I have a logical "user" that connects to this Application, and I want that user to only be able to do "x" and "y", but not "z" Permissions. It would be nice to have the Android Framework handle that instead of having a bunch of "if's" in the App code.

View 1 Replies View Related

Android :: Compile Droid Application With System Permissions?

Aug 30, 2010

I need to compile an application with system permissions in order to use target application com.android.settings. For now while I try to run my apk I get the error message

Test run failed: Permission Denial:
starting instrumentation
ComponentInfo{com.jayway.test/android.test.InstrumentationTestRunner}
from pid=354, uid=354 not allowed
because package com.jayway.test does
not have a signature matching the
target com.android.settings

How can I compile my application with system permissions?

View 1 Replies View Related

Android :: Any Way To Hide Certain Application Permissions / Inbuilt File Manager?

Jul 3, 2010

I was wondering, is there anyway a developer can hide or exclude a certain app permissions from being seen by Android market users? And are the permissions for an app controlled or regulated by Google? Another question I have - Is there anyway to restrict PDF files from opening in the default browser? This is a problem when I am on a search engine and accidentally click a link that's a pdf file- I don't want pdf's downloaded without asking me permission atleast. And my last question, is there a way to view current extensions that are installed in the browser.? Where is androids inbuilt file manager? Does uninstalling an application completely take off everything related to that app from your phone?

View 2 Replies View Related

Android :: Application Compatible With System Assigned Permissions Automatically

Apr 7, 2010

I've noticed a troubling issue with app permissions. It seems that after installing, some apps that didn't ask for these two permissions:
Storage: modify/delete SD card contents
Phone calls: read phone state and identity
will magically acquire them after install! These apps do not ask for these permissions during install, nor do their Market pages disclose that they need them. After looking through many logcat messages during an install, I found this:
04-07 03:23:08.973,I,PackageParser,1016,com.some.app.nam e.here: compat added android.permission.WRITE_EXTERNAL_STORAGE android.permission.READ_PHONE_STATE

Digging around, I found this online:
Android permissions: Phone Calls: read phone state and identity - Stack Overflow. It seems that an app that is compatible with systems earlier than 1.6 will automatically be assigned those two permissions. If a developer is willing to make their app compatible only with 1.6+ systems, they can change their app's manifest:
<uses-sdk android:minSdkVersion="4" android:targetSdkVersion="4" />
and when users on 1.6+ devices install the app, those two extra permissions won't show up.

I bet a lot of app developers don't know this, and therefore their apps will seems to acquire those two permissions magically. Users will install those apps, see the two extra permissions when they inspect the app security setting and be very puzzled. They'll probably think the app is malware and uninstall it. I've contacted some app developer about this issue, so that they can (hopefully) fix their app so it doesn't look like malware. Unfortunately, until all legit apps are fixed, it'll be hard to distinguish amongst apps that have those permissions, which app actually needs those permissions, which apps need fixing, and which apps are malware.

View 2 Replies View Related

Android :: Can Custom Read - Write Permissions Effect User Acceptance Of An Application

Apr 29, 2010

I have two published apps that are pretty targeted to the user collecting their personal medical data (like Blood Pressure, etc.) and then, eventually sending it somewhere, if they choose.

I decided to put Read/Write permission on my ContentProvider, so if another app comes along that wants to the access that content, the user will be warned. The permission that is required is declared in my apps.

When the user installs my apps, they are also given a warning that the app requires that permission (even though it's the one that declares it), and it shows up in the Marketplace also.

The question is: Is it possible that the permission acceptance part of installing my app could be putting customers off? I don't know what other's acceptance rate is, but mine is around 50% of customers who download it have active installs.

View 5 Replies View Related

General :: Find File Permissions Of Application?

Jan 31, 2014

how to find permissions a given application has. Each app is run as a certain user, so wouldn't finding the file permissions of an app be the same as finding the file permissions of a user? On Linux/Unix there is the find command but I don't know of any alternative command that is available on android. I am running KitKat 4.4.2 kernal 3.40-gadb2201.

View 3 Replies View Related

General :: App Update Permissions - Any Way To Restrict Permissions?

Jul 23, 2012

The permissions say that you must agree to allow them to delete files from your storage including your SD card; must agree to allow them to extract any information from your phone, etc. In other words they can do any thing they want with your phone and the data in it.

Is there any way to not grant these permissions and still get updates?

View 2 Replies View Related

Android :: Backing Up App Signing Key

Nov 17, 2009

I followed the instructions to create an application signing key and have signed my application and submitted it to the Android Market. Now I am trying to backup my key to make sure it doesn't get lost, but I can't figure out how to do this on Windows Vista.When I look in the directory where I ran keytool to create the keystore I can't find the keystore file. When I use eclipse to sign the application and browse to that directory it shows me that the file <my_company_name>.keystore is there and lets me select it as the keystore for signing my application. But when I look in the directory using windows explorer or a command prompt the file is not there (I do have it set to show me hidden and system files). I also tried looking in places like C:Users<my_user_name> and C:Users<my_user_name> Documents but could not see the keystore anywhere.

I ran the keytool command with "keytool -list -keystore <my_company_name>.keystore" and is does list the keystore and shows that it contains the alias <my_app_name>. However I tried running "keytool -keyclone -keystore <my_company_name>.keystore -alias <my_app_name> -destkeystore <my_usb_thumb_drive> <my_company_name>.keystore -dest <my_app_name> -keypass <the_alias_password>" and keytool tells me that "alias <my_app_name> does not exist. I tried different combinations for several hours but was unable to figure out how to get it to make a backup of my signing keystore on my usb thumb drive.I would greatly appreciate any help in pointing me in the right direction. After reading the warnings about not losing your signing key, I feel that making a backup is critical, but I can't figure out how to find the keystore or get keytool to make the backup. I searched but have not been able to find any instructions that work to do this. It seems like an issue that every developer needs to be concerned about.

View 8 Replies View Related

Android :: Aptana ADT Signing App

Oct 21, 2010

Got a little problem with Signing my Application.I'm Using Aptana (for those that don't know its Eclipse with some add- ons) I have the app working and just trying to add it to the market place but for some reason i'm hitting the wall,So here's a run though of what i do.

Right click on project

Hover over Android and click on Export Signed Application Package

Click Next

Select Use Existing KeyStone

Location is set to "C:/Program Files/java/jer6/bin/keytool.exe"

I set my password

Click Next

Select Create New Key

I fill out the form and click next

I browse to my desktop to save the *.apk to

Then i click Finish and GET

"Keytool Error: java.io.IOException: Invalid keystore format"

Can any one help please

View 2 Replies View Related

Android :: Error With Signing Apk

Aug 8, 2009

I created a little app and uploded it to the Market, it is online, its the "Locale Http Request Plug-in". I signed it with Eclipse using the build in creation of the key file, gave it 35 years lifetime. But when I install it with the Market on my phone, it downloads it and then gives the Error that it was not signed correctly.Is there anything besides whats in the Dev Guide what I could have made wrong?

View 6 Replies View Related

Android :: App Signing And Market

Jan 29, 2010

I have two paid apps in the Android market.My first app was selling a few units per day, I recently uploaded my second app.Both apps were signed with the same private key, both have different packages.
Since uploading the second app I haven't had a single transaction on the first app (as reported by Google checkout).Is that coincidence,or does the market report all transactions for apps that have the same private key as a single app? The market doesn't let a developer by his/her own apps, so I can't test my theory. Anyone else seeing this behavior?

View 2 Replies View Related

Android :: App Ad-hoc Distribution And Code Signing

Jul 16, 2010

Is there a way to code-sign (to allow it to open only on a device with specific ID) your Android app when using ad-hoc distribution (sending app to testers or clients as a subcontractor)?I know I can share apk file pretty easily, but what if I don't want other people to redistribute the app before it is ready? I don't want testers to be able to distribute not finished and buggy version of my app for example. Or I would like to show my client the final version of the app, but not allow them to distribute it until the payment is made.

View 1 Replies View Related

Android :: Shared User ID And Signing

Nov 5, 2010

I am trying to have 2 applications which can access each other's data.I have a two test applications which I am experimenting with.I set the 'Shared user id' for each to 'com.gabysoft.sharedfiles'.However, when I sign the first app and try and install it, I get the error:

11-05 16:50:33.422: ERROR/PackageManager(61): Package com.gabysoft.sharedfiles1 has no signatures that match those in shared user com.gabysoft.sharedfiles; ignoring!

Clearly, I am not signing it correctly (I am using Eclipse's "Export signed application package" function).How do I properly sign the .apk file so that I don't have this problem?

View 7 Replies View Related

Android : Signing Out Of Google Maps

Jan 10, 2010

I got my phone a couple of days ago and i was wondering if i could sign out of google maps. the lady at verizon was setting up an account she spelt my name wrong. so i created a new name but i cant sign out on my phone to use the new account.

View 6 Replies View Related

Android : Signing Error When Installing SDK Into Eclipse

Oct 19, 2009

I was installing the SDK today and it warned me that the package contained unsigned software.I followed installation instructions.is this normal?

View 2 Replies View Related

Android :: Advantage To Signing Up To Website - Downloading App Brain?

Jun 15, 2010

So far I go to the website, look up a few apps and then search for them on the market. Is there an advantage to signing up to the website, downloading the appbrain app etc?

View 9 Replies View Related

Android :: Accessing APK Signing Certificate From Inside Program

Oct 7, 2010

I've posted this on Android Security as well, but that group does not appear to have as much activity. Actually I guess my question belongs in this group anyway, even though it touches on some of the security aspects of android packages. My goal is to access the certificate that was used to sign the apk package; and ordinarily, I would do that from inside the program like this

Certificates[] signingCertificates = getClass().getProtectionDomain().getCodeSource().getCertificates();
Unfortunately it appears that getProtectionDomain() returns null on android - according to the specs
http://developer.android.com/reference/java/lang/Class.html#getProtec...

This method might return null (to converse space?) but only for system classes. Since I'm calling this from one of my own classes, I would expect to get a non-null value, but unfortunately not. I have tried from the emulator, and from an application deployed on my phone using adb through a USB cable. I'm using the latest SDK (2.2) and targeting android 1.6. So I guess I have two questions, the first being: why does getProtectionDomain return null, and have anyone had any success using this method from inside an android application. And the second: Is there some other way to access the certificate that a given apk package was signed with (I can live with the restriction that only a given package can know its own certificate).

View 2 Replies View Related

Android :: Handle APK Signing For Droid In An FOSS Project?

Oct 29, 2010

I'm working on an open source project for android and am wondering whether there are any best practices (or at least well-argued hints) on how to manage the private key for signing the APKs.

On the one hand, the key should be secured, on the other hand, at least the members of the core team should be able to create "official" releases.

My first suggestion was to just distribute the encrypted private key in the source repository and give out the passphrase to committers, but the trust (from the community to the individual) cannot be revoked.

Is there any other way to share the signing rights (e.g. by setting up a private CA and creating keys for each committer) among the members?

View 1 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved