Better documentation on permission checking in ContentProvider.call(). Change-Id: I4a85fd17362c2a32e2b1365fcc07ef0336521616

commit: 5d122d96a5bf3bbaccaca2765b45716efe7ee2ef [log] [tgz]
author: Dianne Hackborn <hackbod@google.com> Tue Mar 12 18:37:07 2013 -0700
committer: Dianne Hackborn <hackbod@google.com> Wed Mar 13 15:48:12 2013 -0700
tree: 10a8fddc44859f4feb916532c591d4ae24654071
parent: 2530b32de5c609fc6738b292baaf540e4ac10cd7 [diff] [blame]
diff --git a/core/java/android/content/ContentProvider.java b/core/java/android/content/ContentProvider.java
index 8aef405..4968268 100644
--- a/core/java/android/content/ContentProvider.java
+++ b/core/java/android/content/ContentProvider.java

@@ -1256,6 +1256,13 @@
      * interfaces that are cheaper and/or unnatural for a table-like
      * model.
      *
+     * <p class="note"><strong>WARNING:</strong> The framework does no permission checking
+     * on this entry into the content provider besides the basic ability for the application
+     * to get access to the provider at all.  For example, it has no idea whether the call
+     * being executed may read or write data in the provider, so can't enforce those
+     * individual permissions.  Any implementation of this method <strong>must</strong>
+     * do its own permission checks on incoming calls to make sure they are allowed.</p>
+     *
      * @param method method name to call.  Opaque to framework, but should not be {@code null}.
      * @param arg provider-defined String argument.  May be {@code null}.
      * @param extras provider-defined Bundle argument.  May be {@code null}.
commit	5d122d96a5bf3bbaccaca2765b45716efe7ee2ef	[log] [tgz]
author	Dianne Hackborn <hackbod@google.com>	Tue Mar 12 18:37:07 2013 -0700
committer	Dianne Hackborn <hackbod@google.com>	Wed Mar 13 15:48:12 2013 -0700
tree	10a8fddc44859f4feb916532c591d4ae24654071
parent	2530b32de5c609fc6738b292baaf540e4ac10cd7 [diff] [blame]