1 files changed, 204 insertions, 0 deletions

diff --git a/uui/source/secmacrowarnings.cxx b/uui/source/secmacrowarnings.cxx
new file mode 100644
index 000000000..164890efc
--- /dev/null
+++ b/uui/source/secmacrowarnings.cxx
@@ -0,0 +1,204 @@
+/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */
+/*
+ * This file is part of the LibreOffice project.
+ *
+ * This Source Code Form is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * This file incorporates work covered by the following license notice:
+ *
+ *   Licensed to the Apache Software Foundation (ASF) under one or more
+ *   contributor license agreements. See the NOTICE file distributed
+ *   with this work for additional information regarding copyright
+ *   ownership. The ASF licenses this file to you under the Apache
+ *   License, Version 2.0 (the "License"); you may not use this file
+ *   except in compliance with the License. You may obtain a copy of
+ *   the License at http://www.apache.org/licenses/LICENSE-2.0 .
+ */
+
+#include <com/sun/star/xml/crypto/XSecurityEnvironment.hpp>
+#include <com/sun/star/security/DocumentDigitalSignatures.hpp>
+#include <comphelper/processfactory.hxx>
+#include <vcl/svapp.hxx>
+#include <osl/file.hxx>
+#include <rtl/ustrbuf.hxx>
+#include <tools/debug.hxx>
+#include <unotools/securityoptions.hxx>
+#include <tools/urlobj.hxx>
+
+using namespace ::com::sun::star::security;
+
+#include "secmacrowarnings.hxx"
+
+using namespace ::com::sun::star;
+
+
+// HACK!!! copied from xmlsecurity/source/dialog/resourcemanager.cxx
+
+namespace
+{
+    std::u16string_view GetContentPart( std::u16string_view _rRawString, const OUString& _rPartId )
+    {
+        std::u16string_view      s;
+
+        size_t  nContStart = _rRawString.find( _rPartId );
+        if( nContStart != std::u16string_view::npos )
+        {
+            nContStart = nContStart + _rPartId.getLength();
+            ++nContStart;                   // now its start of content, directly after Id
+
+            size_t  nContEnd = _rRawString.find( ',', nContStart );
+
+            if ( nContEnd != std::u16string_view::npos )
+                s = _rRawString.substr( nContStart, nContEnd - nContStart );
+            else
+                s = _rRawString.substr( nContStart );
+        }
+
+        return s;
+    }
+}
+
+MacroWarning::MacroWarning(weld::Window* pParent, bool _bWithSignatures)
+    : MessageDialogController(pParent, "uui/ui/macrowarnmedium.ui", "MacroWarnMedium", "grid")
+    , mxGrid(m_xBuilder->weld_widget("grid"))
+    , mxSignsFI(m_xBuilder->weld_label("signsLabel"))
+    , mxViewSignsBtn(m_xBuilder->weld_button("viewSignsButton"))
+    , mxAlwaysTrustCB(m_xBuilder->weld_check_button("alwaysTrustCheckbutton"))
+    , mxEnableBtn(m_xBuilder->weld_button("ok"))
+    , mxDisableBtn(m_xBuilder->weld_button("cancel"))
+    , mpInfos                ( nullptr )
+    , mbShowSignatures       ( _bWithSignatures )
+    , mnActSecLevel          ( 0 )
+{
+    InitControls();
+
+    mxEnableBtn->connect_clicked(LINK(this, MacroWarning, EnableBtnHdl));
+    mxDisableBtn->connect_clicked(LINK(this, MacroWarning, DisableBtnHdl));
+    mxDisableBtn->grab_focus(); // Default button, but focus is on view button
+    m_xDialog->SetInstallLOKNotifierHdl(LINK(this, MacroWarning, InstallLOKNotifierHdl));
+}
+
+IMPL_STATIC_LINK_NOARG(MacroWarning, InstallLOKNotifierHdl, void*, vcl::ILibreOfficeKitNotifier*)
+{
+    return GetpApp();
+}
+
+void MacroWarning::SetDocumentURL( const OUString& rDocURL )
+{
+    OUString aPath;
+
+    osl::FileBase::getFileURLFromSystemPath(rDocURL, aPath);
+    aPath = INetURLObject(aPath).GetLastName(INetURLObject::DecodeMechanism::Unambiguous);
+    m_xDialog->set_primary_text(aPath);
+}
+
+IMPL_LINK_NOARG(MacroWarning, ViewSignsBtnHdl, weld::Button&, void)
+{
+    DBG_ASSERT( mxCert.is(), "*MacroWarning::ViewSignsBtnHdl(): no certificate set!" );
+
+    uno::Reference< security::XDocumentDigitalSignatures > xD(
+        security::DocumentDigitalSignatures::createWithVersion(comphelper::getProcessComponentContext(), maODFVersion));
+    if( xD.is() )
+    {
+        xD->setParentWindow(m_xDialog->GetXWindow());
+        if( mxCert.is() )
+            xD->showCertificate( mxCert );
+        else if( mxStore.is() )
+            xD->showScriptingContentSignatures( mxStore, uno::Reference< io::XInputStream >() );
+    }
+}
+
+IMPL_LINK_NOARG(MacroWarning, EnableBtnHdl, weld::Button&, void)
+{
+    if (mxAlwaysTrustCB->get_active())
+    {
+        uno::Reference< security::XDocumentDigitalSignatures > xD(
+            security::DocumentDigitalSignatures::createWithVersion(comphelper::getProcessComponentContext(), maODFVersion));
+        xD->setParentWindow(m_xDialog->GetXWindow());
+        if( mxCert.is() )
+            xD->addAuthorToTrustedSources( mxCert );
+        else if( mxStore.is() )
+        {
+            DBG_ASSERT( mpInfos, "-MacroWarning::EnableBtnHdl(): no infos, search in nirvana..." );
+
+            sal_Int32   nCnt = mpInfos->getLength();
+            for( sal_Int32 i = 0 ; i < nCnt ; ++i )
+                xD->addAuthorToTrustedSources( (*mpInfos)[ i ].Signer );
+        }
+    }
+    m_xDialog->response(RET_OK);
+}
+
+IMPL_LINK_NOARG(MacroWarning, DisableBtnHdl, weld::Button&, void)
+{
+    m_xDialog->response(RET_CANCEL);
+}
+
+IMPL_LINK_NOARG(MacroWarning, AlwaysTrustCheckHdl, weld::Toggleable&, void)
+{
+    const bool bEnable = (mnActSecLevel < 2 || mxAlwaysTrustCB->get_active());
+    mxEnableBtn->set_sensitive(bEnable);
+    mxDisableBtn->set_sensitive(!mxAlwaysTrustCB->get_active());
+}
+
+void MacroWarning::InitControls()
+{
+    // show signature controls?
+    if (mbShowSignatures)
+    {
+        mxViewSignsBtn->connect_clicked(LINK(this, MacroWarning, ViewSignsBtnHdl));
+        mxViewSignsBtn->set_sensitive(false);
+
+        if (!SvtSecurityOptions::IsReadOnly(SvtSecurityOptions::EOption::MacroTrustedAuthors))
+            mxAlwaysTrustCB->connect_toggled(LINK(this, MacroWarning, AlwaysTrustCheckHdl));
+        else
+            mxAlwaysTrustCB->set_visible(false);
+
+        mnActSecLevel = SvtSecurityOptions::GetMacroSecurityLevel();
+        if ( mnActSecLevel >= 2 )
+            mxEnableBtn->set_sensitive(false);
+    }
+    else
+    {
+        mxGrid->hide();
+    }
+}
+
+void MacroWarning::SetStorage( const css::uno::Reference < css::embed::XStorage >& rxStore,
+                               const OUString& aODFVersion,
+                               const css::uno::Sequence< security::DocumentSignatureInformation >& rInfos )
+{
+    mxStore = rxStore;
+    maODFVersion = aODFVersion;
+    sal_Int32   nCnt = rInfos.getLength();
+    if( !(mxStore.is() && nCnt > 0) )
+        return;
+
+    mpInfos = &rInfos;
+    OUString aCN_Id("CN");
+    OUStringBuffer s(GetContentPart( rInfos[ 0 ].Signer->getSubjectName(), aCN_Id ));
+
+    for( sal_Int32 i = 1 ; i < nCnt ; ++i )
+    {
+        s.append("\n");
+        s.append(GetContentPart( rInfos[ i ].Signer->getSubjectName(), aCN_Id ));
+    }
+
+    mxSignsFI->set_label(s.makeStringAndClear());
+    mxViewSignsBtn->set_sensitive(true);
+}
+
+void MacroWarning::SetCertificate( const css::uno::Reference< css::security::XCertificate >& _rxCert )
+{
+    mxCert = _rxCert;
+    if( mxCert.is() )
+    {
+        OUString s( GetContentPart( mxCert->getSubjectName(), "CN" ) );
+        mxSignsFI->set_label(s);
+        mxViewSignsBtn->set_sensitive(true);
+    }
+}
+
+/* vim:set shiftwidth=4 softtabstop=4 expandtab: */