harmony 鸿蒙HUKS Changelog
HUKS Changelog
cl.huks.1 Change of the Permission for Using attestKeyItem
The attestKeyItem interface attests a key using a public key encapsulated based on the device certificate chain. Any arbitrary export of the device certificate increases the risks on user privacy. Therefore, certain permissions are required for using this interface.
Change Impact
Applications without the ohos.permission.ACCESS_IDS permission or the system_basic or system_core permission cannot call attestKeyItem().
Key API/Component Changes
- Involved APIs:
attestKeyItem(keyAlias: string, options: HuksOptions, callback: AsyncCallback<HuksReturnResult>): void; attestKeyItem(keyAlias: string, options: HuksOptions): Promise<HuksReturnResult>;
- Before change:
The AccessToken permission is verified only for the applications that pass in a tag related to ATTESTATION_ID.
- After change:
attestKeyItem() can be called only by a system application with the system_basic or system_core permission or an application with the ohos.permission.ACCESS_IDS permission.
Adaptation Guide
Applications with the system_basic or system_core permission can call attestKeyItem(). If an application with the normal permission needs to call attestKeyItem(), it must have the ohos.permission.ACCESS_IDS permission. For details about how to apply for the permission, see ACL.
你可能感兴趣的鸿蒙文章
- 所属分类: 后端技术
- 本文标签:
热门推荐
-
2、 - 优质文章
-
3、 gate.io
-
8、 golang
-
9、 openharmony
-
10、 Vue中input框自动聚焦