The callback methods happen on the main thread of the process. Thus, long-running * operations must be done on another thread. * *
When publishing your {@code PolicyUpdateReceiver} subclass as a receiver, it must * require the {@link android.Manifest.permission#BIND_DEVICE_ADMIN} permission. * *
Admins can implement {@link DeviceAdminService} to ensure they receive all policy updates * (for policies they have set) via {@link #onPolicyChanged} by constantly being bound to by the * system. For more information see {@link DeviceAdminService}. */ public abstract class PolicyUpdateReceiver extends BroadcastReceiver { private static String TAG = "PolicyUpdateReceiver"; /** * Action for a broadcast sent to admins to communicate back the result of setting a policy in * {@link DevicePolicyManager}. * *
Admins wishing to receive these updates (via {@link #onPolicySetResult}) should include * this action in the intent filter for their receiver in the manifest, the receiver * must be protected by {@link android.Manifest.permission#BIND_DEVICE_ADMIN} to ensure that * only the system can send updates. * *
Admins shouldn't implement {@link #onReceive} and should instead implement * {@link #onPolicySetResult}. */ @SdkConstant(SdkConstant.SdkConstantType.BROADCAST_INTENT_ACTION) @BroadcastBehavior(explicitOnly = true) public static final String ACTION_DEVICE_POLICY_SET_RESULT = "android.app.admin.action.DEVICE_POLICY_SET_RESULT"; /** * Action for a broadcast sent to admins to communicate back a change in a policy they have * previously set. * *
Admins wishing to receive these updates should include this action in the intent filter * for their receiver in the manifest, the receiver must be protected by * {@link android.Manifest.permission#BIND_DEVICE_ADMIN} to ensure that only the system can * send updates. * *
Admins shouldn't implement {@link #onReceive} and should instead implement * {@link #onPolicyChanged}. */ @SdkConstant(SdkConstant.SdkConstantType.BROADCAST_INTENT_ACTION) @BroadcastBehavior(explicitOnly = true) public static final String ACTION_DEVICE_POLICY_CHANGED = "android.app.admin.action.DEVICE_POLICY_CHANGED"; /** * A string extra holding the package name the policy applies to, (see * {@link PolicyUpdateReceiver#onPolicyChanged} and * {@link PolicyUpdateReceiver#onPolicySetResult}) */ public static final String EXTRA_PACKAGE_NAME = "android.app.admin.extra.PACKAGE_NAME"; /** * A string extra holding the permission name the policy applies to, (see * {@link PolicyUpdateReceiver#onPolicyChanged} and * {@link PolicyUpdateReceiver#onPolicySetResult}) */ public static final String EXTRA_PERMISSION_NAME = "android.app.admin.extra.PERMISSION_NAME"; /** * An {@link android.content.IntentFilter} extra holding the intent filter the policy relates * to, (see {@link PolicyUpdateReceiver#onPolicyChanged} and * {@link PolicyUpdateReceiver#onPolicySetResult}) */ public static final String EXTRA_INTENT_FILTER = "android.app.admin.extra.INTENT_FILTER"; /** * A string extra holding the account type this policy applies to, (see * {@link PolicyUpdateReceiver#onPolicyChanged} and * {@link PolicyUpdateReceiver#onPolicySetResult}) */ public static final String EXTRA_ACCOUNT_TYPE = "android.app.admin.extra.ACCOUNT_TYPE"; /** * String extra containing the policy identifier. * * @hide */ @TestApi public static final String EXTRA_POLICY_KEY = "android.app.admin.extra.POLICY_KEY"; /** * Bundle extra containing additional information related to a policy. * * @hide */ @TestApi public static final String EXTRA_POLICY_BUNDLE_KEY = "android.app.admin.extra.POLICY_BUNDLE_KEY"; /** * Int extra containing the {@link PolicyUpdateResult} code. * * @hide */ @TestApi public static final String EXTRA_POLICY_UPDATE_RESULT_KEY = "android.app.admin.extra.POLICY_UPDATE_RESULT_KEY"; /** * Int extra containing the target user this policy update applies to. * * @hide */ @TestApi public static final String EXTRA_POLICY_TARGET_USER_ID = "android.app.admin.extra.POLICY_TARGET_USER_ID"; /** * Intercept standard policy update broadcasts. Implementations should not override this * method and rely on the callbacks instead. * * @hide */ @Override public final void onReceive(Context context, Intent intent) { Objects.requireNonNull(intent.getAction()); switch (intent.getAction()) { case ACTION_DEVICE_POLICY_SET_RESULT: Log.i(TAG, "Received ACTION_DEVICE_POLICY_SET_RESULT"); onPolicySetResult(context, getPolicyKey(intent), getPolicyExtraBundle(intent), getTargetUser(intent), getPolicyChangedReason(intent)); break; case ACTION_DEVICE_POLICY_CHANGED: Log.i(TAG, "Received ACTION_DEVICE_POLICY_CHANGED"); onPolicyChanged(context, getPolicyKey(intent), getPolicyExtraBundle(intent), getTargetUser(intent), getPolicyChangedReason(intent)); break; default: Log.e(TAG, "Unknown action received: " + intent.getAction()); } } /** * @hide */ static String getPolicyKey(Intent intent) { if (!intent.hasExtra(EXTRA_POLICY_KEY)) { throw new IllegalArgumentException("PolicyKey has to be provided."); } return intent.getStringExtra(EXTRA_POLICY_KEY); } /** * @hide */ @NonNull static Bundle getPolicyExtraBundle(Intent intent) { Bundle bundle = intent.getBundleExtra(EXTRA_POLICY_BUNDLE_KEY); return bundle == null ? new Bundle() : bundle; } /** * @hide */ @NonNull static PolicyUpdateResult getPolicyChangedReason(Intent intent) { if (!intent.hasExtra(EXTRA_POLICY_UPDATE_RESULT_KEY)) { throw new IllegalArgumentException("PolicyUpdateResult has to be provided."); } int reasonCode = intent.getIntExtra( EXTRA_POLICY_UPDATE_RESULT_KEY, PolicyUpdateResult.RESULT_FAILURE_UNKNOWN); return new PolicyUpdateResult(reasonCode); } /** * @hide */ @NonNull static TargetUser getTargetUser(Intent intent) { if (!intent.hasExtra(EXTRA_POLICY_TARGET_USER_ID)) { throw new IllegalArgumentException("TargetUser has to be provided."); } int targetUserId = intent.getIntExtra( EXTRA_POLICY_TARGET_USER_ID, TargetUser.LOCAL_USER_ID); return new TargetUser(targetUserId); } // TODO(b/260847505): Add javadocs to explain which DPM APIs are supported /** * Callback triggered after an admin has set a policy using one of the APIs in * {@link DevicePolicyManager} to notify the admin whether it has been successful or not. * *
Admins wishing to receive this callback should include * {@link PolicyUpdateReceiver#ACTION_DEVICE_POLICY_SET_RESULT} in the intent filter for their * receiver in the manifest, the receiver must be protected by * {@link android.Manifest.permission#BIND_DEVICE_ADMIN} to ensure that only the system can * send updates. * * @param context the running context as per {@link #onReceive} * @param policyIdentifier Key to identify which policy this callback relates to. * @param additionalPolicyParams Bundle containing additional params that may be required to * identify some of the policy * (e.g. {@link PolicyUpdateReceiver#EXTRA_PACKAGE_NAME} * and {@link PolicyUpdateReceiver#EXTRA_PERMISSION_NAME}). * Each policy will document the required additional params if * needed. * @param targetUser The {@link TargetUser} which this policy relates to. * @param policyUpdateResult Indicates whether the policy has been set successfully * ({@link PolicyUpdateResult#RESULT_POLICY_SET}) or the reason it * failed to apply (e.g. * {@link PolicyUpdateResult#RESULT_FAILURE_CONFLICTING_ADMIN_POLICY}, * etc). */ public void onPolicySetResult( @NonNull Context context, @NonNull String policyIdentifier, @NonNull Bundle additionalPolicyParams, @NonNull TargetUser targetUser, @NonNull PolicyUpdateResult policyUpdateResult) {} // TODO(b/260847505): Add javadocs to explain which DPM APIs are supported // TODO(b/261430877): Add javadocs to explain when will this get triggered /** * Callback triggered when a policy previously set by the admin has changed. * *
Admins wishing to receive this callback should include * {@link PolicyUpdateReceiver#ACTION_DEVICE_POLICY_CHANGED} in the intent filter for their * receiver in the manifest, the receiver must be protected by * {@link android.Manifest.permission#BIND_DEVICE_ADMIN} to ensure that only the system can * send updates. * * @param context the running context as per {@link #onReceive} * @param policyIdentifier Key to identify which policy this callback relates to. * @param additionalPolicyParams Bundle containing additional params that may be required to * identify some of the policy * (e.g. {@link PolicyUpdateReceiver#EXTRA_PACKAGE_NAME} * and {@link PolicyUpdateReceiver#EXTRA_PERMISSION_NAME}). * Each policy will document the required additional params if * needed. * @param targetUser The {@link TargetUser} which this policy relates to. * @param policyUpdateResult Indicates the reason the policy value has changed * (e.g. {@link PolicyUpdateResult#RESULT_POLICY_SET} if the policy * has changed to the value set by the admin, * {@link PolicyUpdateResult#RESULT_FAILURE_CONFLICTING_ADMIN_POLICY} * if the policy has changed because another admin has set a * conflicting policy, etc) */ public void onPolicyChanged( @NonNull Context context, @NonNull String policyIdentifier, @NonNull Bundle additionalPolicyParams, @NonNull TargetUser targetUser, @NonNull PolicyUpdateResult policyUpdateResult) {} }