I was looking to install handcent sms on my phone and noticed that it needed a ton of permissions! it makes me feel a little uneasy how much access i have to grant it. why does it need so many when it just reads and send texts?
View 1 Replies
We are a team of Android developers and we are facing a serious problem for quite some time. Our app (a game client) is designed in such a way, that once it's installed it can be used to download games from a game server. In order for the downloaded games to work, they have to be installed and launched by the client.The problem is that the client has no write/update rights for the / data/dalvik-cache directory, unless we specifically execute the chmod 777 command for that directory. Setting the android.permission.INSTALL_PACKAGES permission in the client's manifest file also doesn't work. After reading countless forums where other people have complained about the same problem, we would like to know when this issue is going to be resolved. Apparently the code for this feature already exists (the DexFile class of the so called "cupcake" release) but it hasn't been released yet.What's more frustrating is that the Android team points out that all Android apps are equal, that system apps are equal in rights to custom apps. Obviously this is not the case. If the client game app is installed in the /system/app the problem described above is solved. System apps have the right to dynamically install other apps. Regular apps (installed in the /data/data folder) do not.Is this issue going to be resolved anytime soon? Will the "cupcake" DexFile class going to be present in the next release? This is a rather urgent problem since we are waiting for this new functionality in order to continue development.
View 14 Replies View RelatedI want to install a non-native sms app (handcent) as well as Where's My Droid, however both programs have access to communication and contacts, which always worries me, esp on a free program. Does anyone know if there are any known datamining problems with these apps? Any other malicious code, etc? Just want to check before I download.
View 5 Replies View RelatedThe permissions say that you must agree to allow them to delete files from your storage including your SD card; must agree to allow them to extract any information from your phone, etc. In other words they can do any thing they want with your phone and the data in it.
Is there any way to not grant these permissions and still get updates?
Any suggestions?The Apps2SD is greyed out, so I never actively used this. I just updated over from 3 to 4 with no wipe in between (it IS an update after all) and it won't install handcent.I have 214mb internal storage free.hat gives? I am kinda tired of redoing things - I tried a few different setups between last night and today.
View 8 Replies View Relatedwhen the stock Messaging app wasn't cutting it, I installed Handcent.But it started flaking out on me, so I dumped it and went to the more-reliable chompSMS.I liked it a lot.But to be completely honest, I missed some of the features of Handcent. But reliability is Job 1, so I kept chompSMS for a few weeks.Then I heard that Handcent received a major update a few days ago, so I replaced chompSMS with Handcent. So far so good. I got all the features back, and I haven't had one single issue in days of texting. So if you're like me and you left Handcent for chompSMS, you may want to give the new version a spin.
View 49 Replies View RelatedIn android manifest code these permissions are used sometimes.for what these are used?
<uses-permission android:name="android.permission.CAMERA" />
<uses-permission android:name="android.permission.VIBRATE" />
<uses-permission android:name="android.permission.ACCESS_COARSE_LOCATION" />
<uses-permission android:name="android.permission.ACCESS_FINE_LOCATION" />
<uses-permission android:name="android.permission.ACCESS_LOCATION_EXTRA_COMMANDS" />
<uses-permission android:name="android.permission.READ_PHONE_STATE" />
<uses-permission android:name="android.permission.INTERNET" />
<uses-permission android:name="android.permission.RECEIVE_SMS" />
<uses-permission android:name="android.permission.RECORD_AUDIO" />
<uses-permission android:name="android.permission.MODIFY_AUDIO_SETTINGS" />
<uses-permission android:name="android.permission.READ_CONTACTS" />
<uses-permission android:name="android.permission.WRITE_CONTACTS" />
<uses-permission android:name="android.permission.WRITE_EXTERNAL_STORAGE" />
<uses-permission android:name="android.permission.ACCESS_NETWORK_STATE" />
I know where to go to view them, but how can you change them?
View 1 Replies View RelatedI've been following the "Is there a way to request permissions from a user as you need them?" thread with a lot of interest, but even if someone is convinced to make the Android permissions system better, it doesn't do anything for right now.
So, I thought I'd start a thread for coming up with alternative ways to reduce the permissions your app needs.
My app absolutely needs internet access (it's useless without it), and it uses Google Maps extensively (it's the main activity), so I have the following :
CODE:.................
I want to be able to know if I have a network connection, hence the ACCESS_NETWORK_STATE. I also try to use GPS hence the "ACCESS_FINE_LOCATION", and if GPS is not available I try to find the user's location using something else hence "ACCESS_COARSE_LOCATION" and of couse the "INTERNET" permission. I also use the "My Location' feature of Google Maps.
So... the question is : Is there a robust way to use Google Maps, and be able to send requests to my server without all those permissions (in a user friendly way) ?
I'm also experimenting with C2DM, so I have the following:
CODE:................
If I want to use C2DM, it seems I am stuck with those... Anybody know
Now... I also want to use the camera (optional) and vibrate (optional but most users will want it) so I have to add :
<uses-permission android:name="android.permission.CAMERA" /> <uses-permission android:name="android.permission.VIBRATE" />
Total 10 lines of permissions in the manifest.... AND this is AFTER removing 4 other permissions that a small percentage of users would have found very handy, AND not adding a few other features because of the permissions bloat they would have added
CALL_PHONE READ_CONTACTS GET_ACCOUNTS SEND_SMS
So... given all of this, is there a way to reduce the permissions I need any more than I already have? AND why do I need a total of 8 permissions just to ask my server for the data they want, and try to keep them current using C2DM? Surely those permissions could be reduced somehow.
I'm currently reading the specs about Android's Security system and something is not clear on my mind... Can somebody explain me ? About the Permissions, it is possible to set four levels (Normal, Dangerous, Signature and SignatureOrSystem) The documentation is here : http://developer.android.com/reference/android/R.styleable.html#Andro...About the "Dangerous" level, it's written : "For example, any dangerous permissions requested by an application may be displayed to the user and require confirmation before proceeding, or some other approach may be taken to avoid the user automatically allowing the use of such facilities." What does "Some other approach may be taken..." means ? How does that work ? Is there any example?
View 4 Replies View RelatedI have found the solution to this problem, the issue was I was also supposed to add the data tag:<data android:mimeType="application/vnd.wap.mms-message" />.Can someone provide some sample code to access the contents of the MMS message received.
View 2 Replies View RelatedWhen I run any application from Eclipse on my real G1 device (a retail one, this is not a dev phone), I am granted the READ_PHONE_STATE and WRITE_EXTERNAL_STORAGE even if i don't declare them in the AndroidManisfest.xml. I actually can call TelephonyManager.getDeviceID () to retrieve the IMEI and I see these permissions in Settings -> Applications. I don't have this behavior in the emulator. Does anyone have the same "problem"?
View 6 Replies View RelatedI have some well-debugged XML-RPC interfaces on a site that work wonderfully from both PHP and from JAVA. Using Eclipse I am able to write Java apps using either the Redstone or Apache XML-RPC libraries quite simply. These test cases using the 2 libraries utilize JavaSE-1.6 (jre6) libraries as well as one of the 2 xml-rpc libs referenced above.
My problem is making this work on Android. I have added ADT to my Eclipse setup and easily executed the HelloWorld test using a virtual 1.6 or 2.1 Android device - no problems. Whenever I go into the Build Path in Eclipse and add the external jars for either the apache or redstone XML-RPC libs my console goes wacky with a ton of the following:
Ignoring InnerClasses attribute for an anonymous inner class that doesn't come with an associated EnclosingMethod attribute. (This class was probably produced by a broken compiler.)
If I push ahead and debug the code when it actually ships off the XML request I get an exception out of the XML library on permissions of some sort. Why does this only happen in an "Android" project. These libraries seem to have no problem running in Non-Android standard java configs. Once we proof the ability to talk to our server we can proceed down the road of actually porting our app to Android.
I have a service which both downloads a file and saves it, and it seems I can only specify one permission.
<service android:enabled="true"
android:name=".DownloadService" android:permission="android.permission.INTERNET">
</service>
or
<service android:enabled="true"
android:name=".DownloadService" android:permission="android.permission.WRITE_EXTERNAL_STORAGE">
</service>
This seems to be a bit of a vexed issue: see
http://groups.google.com/group/android-developers/browse_thread/threa...
Like the person who started that thread, I need to get a unique ID for a device, without using scary permissions for TelephonyManager. I've tried
id = android.provider.Settings.Secure.getString(getContentResolver(), android.provider.Settings.Secure.ANDROID_ID);
but that just produces "android_id" on my phone. I'm using a Nexus One and Android 2.1.
I created an application that starts a service. This service is expected to run in background. This service has to access the Location. I am currently unable to do so I have given permission to my Manifest file I think the issue is that the application has the permission, but the Service does not ! What happens is that the service keeps running even if the application is stopped .Does the Service need special / different permissions ? How do I assign permissions to Service ( my service class extends : Service).
View 2 Replies View RelatedFor the current application/widget I'm creating I have not set any permissions yet, altough the apk files I have already generated (for example this one: http://code.google.com/p/workregistrationwidget-android/downloads/det...) on install it notifies the users that it requests both SD card access and phone state access. The application source is available here: http://code.google.com/p/workregistrationwidget-android/ Can anyone have a look and tell me what I do wrong or is it just a bug?
View 4 Replies View RelatedI downloaded Unit Converter, and noticed that the market said it needed no permissions, while the manage apps list on the phone said it needed to modify the sd card and read phone state. Not that this was a huge deal, but why would they be different?
Anyways, how does everyone like that unit converter? It seems like it has everything!!
I have an application which has some of it's activities restricted via my own permission. The permission is published in the manifest of the application A and a second application B should request this permission and then be able to call an activity from app A. Both applications belong to me and are signed with the same certificate (they share the same keystore and alias/password from it). Application A gets granted the permission but app B gets never granted the permission! Logcat tells me about this during the installation and the app crashes with an security exception when trying to start the activity from app A. What the heck am I doing wrong? Could it be something with the application signing? Please help me, I'm totally out of ideas.
View 3 Replies View RelatedI'm trying to get rid of the mentioned (READ_PHONE_STATE and WRITE_EXTERNAL_STORAGE) auto-permissions in my signed apk, but I can't. I know it is an issue with targeting 1.5, but this isn't my case. I'm targeting >=1.6. I've checked everything: In my manifest:
<?xml version="1.0" encoding="utf-8"?>
<manifest xmlns:android="http://schemas.android.com/apk/res/android" package="com.aaa.bbb"
android:versionCode="1" android:versionName="1.0.0">
<uses-sdk android:minSdkVersion="4" android:targetSdkVersion="4" />
Eclipse generates the proper value in default.properties: target=android-4
Why do apps always seem to ask for so many permissions when downloading, I wanted to download a news reader but it wanted access to calls too. Is this normal?
View 2 Replies View RelatedIs there a way to 'customize' the permissions that an app can use when installing or using said app? I would like to be able to say that this app can use GPS but not have access to my Contacts, or allow it to use the network but not access my SD card.
I know that this would likely disable different parts of the app but I am okay with that. I would like to be able to control which functions I give it permission to to use without only having the option to choose to install it or not based solely on what the developer set up.
I ask because I have an app that I want to launch with permissions that apply to it at that stage but I am planning to release an update that will need more permissions, but I do not want users to not install the original app because it does not make sense to have a certain permission for it.
View 4 Replies View RelatedI have a doubt
For using Phone contact we have to set permission in manifest file
<uses-permission android:name="android.permission.READ_CONTACTS" /> <uses-permission android:name="android.permission.WRITE_CONTACTS" />
My doubt is where(in which file) it is written in Contact Application that you have to set these permissions. because i want to make a sample application and i want if anyone want to get data from my application, have to get some permission.
Please let me know that where we plan which permission has to get by other application to get data from a application.
I'm using flash cs5 to make an Android game. The problem that I have is that in the moment of "publish", flash give me an error, that is about the "permission". Into the property of the flash program, there are 4 tabs. One of this is "permissions". But into the list there isn't anything to select. So I don't know how to compile the apk file.
It's happen with the last version of extention of Air Android for Flash cs5, because in the prev version of this plugin, the permission tab there wasn't.
I am trying to add permissions to my application manifest, so it can access other apps that the user installs at runtime. I thought the way to do this was to define a permission-tree in the manifest, and then use PackageManager.addPermission() to add permissions under that tree. However, I can't get this to work and the documentation I found wasn't conclusive. Could anybody show me how to do this by means of a simple example?
View 3 Replies View RelatedThere are so many apps in the market and I don't trust all of them. Is there a way to remove some permissions of the already compiled APK? It doesn't matter if I cannot sign it anymore with the original certificate of the developer. And is there also a way to add an error-handler into the .apk-file, so that the errors of the requested permissions will also be suppressed?
View 3 Replies View RelatedIs it possible for an Android app to install a native Linux daemon with root privilege that runs when the system starts up? The purpose of this daemon would be to support and communicate with our Android front-end app.
View 2 Replies View RelatedA WAP PUSH receivers defines permissions & I've seen in some cases, they uses signatures in manifest files. Q: Can a intent-filter use any string as a mime type or the mime types must be pre-register(Accepted) somewhere in system?
Q: What about the permissions? Who is really granting these permissions?
e.g.: <uses-permission android:name="android.permission.RECEIVE_WAP_PUSH"/> <intent-filter> <action android:name="android.provider.Telephony.WAP_PUSH_RECEIVED" /
I am wanting to know if a developer has the ability to choose not to display the permissions needed for an app they create. For an example if there is a note taking app in the market that says no permissions needed, but in reality, it does have "internet access"capabilities not shown to the user/downloader, Is it possible for App permissions to be hidden and not displayed to the user? Can someone explain to me the process on assigning and displaying permissions on android apps?
View 4 Replies View Related