运行时权限(Runtime permission)

android的权限系统一直是首要的安全概念，因为这些权限只在安装的时候被询问一次。一旦安装了，app可以在用户毫不知晓的情况下访问权限内的所有东西。
这是极其危险的事情
所以,在Android M 权限请求设计改版了,有点类似iOS的权限请求

1461651981945.jpg

在android6.0棉花糖，app将不会在安装的时候授予权限。取而代之的是，app不得不在运行时一个一个询问用户授予权限。

注意权限询问对话框不会自己弹出来。开发者不得不自己调用。如果开发者要调用的一些函数需要某权限而用户又拒绝授权的话，函数将抛出异常甚至导致程序崩溃.

旧版兼容

为了与旧版本兼容,比如你的 build.gradle 中的 targetSdkVersion 设置为 23 之前,比如22.
也能在Android6.0 的手机上面跑,并且权限请求机制使用6.0之前的 安装时请求 的模式.
吐槽一下: Excuse Me? 这到底是兼容还是漏洞... targetSdkVersion 设置为23以前,不让跑6.0不是更合理?
可能处于市场应用的API版本考虑,不兼容估计大部分应用都不能跑6.0
所以,如果你觉得运行时弹出权限框让用户勾选很不友好,那么就取巧使用targetSdkVersion <23 吧,但这绝对不是长久之计...(丑陋...)

1. android { 

   ---

2. compileSdkVersion 23 

   ---

3. buildToolsVersion "23.0.2" 

   ---

4.  

   ---

5. defaultConfig { 

   ---

6. minSdkVersion 8 

   ---

7. targetSdkVersion 22 

   ---

8. versionCode 1 

   ---

9. versionName "1.0" 

   ---

10. } 

    ---

11. buildTypes { 

    ---

12. release { 

    ---

13. minifyEnabled false 

    ---

14. proguardFiles getDefaultProguardFile('proguard-android.txt'), 'proguard-rules.pro' 

    ---

15. } 

    ---

16. } 

    ---

17. } 

    ---

1461662965441.jpg

6.0权限弹框的两种模式

1.初次请求,弹出对话框叫你勾选

1461654947945.jpg

2,第二次请求之后,弹出对话框,出现不再提醒字样

1461655014689.jpg

当用户点击了不再提醒,你再次请求权限的时候,就不会弹出对话框,所以这时,你需要根据需求另做处理
下面会如何处理

6.0之后的权限分类

分为两类 Normal permissions 和 Dangerous permissions

Normal permissions(普通权限)

只需要在xml中申请就可以了,与6.0之前没什么区别
包括的权限有

1. android.permission.ACCESS_LOCATION_EXTRA_COMMANDS 

   ---

2. android.permission.ACCESS_NETWORK_STATE 

   ---

3. android.permission.ACCESS_NOTIFICATION_POLICY 

   ---

4. android.permission.ACCESS_WIFI_STATE 

   ---

5. android.permission.ACCESS_WIMAX_STATE 

   ---

6. android.permission.BLUETOOTH 

   ---

7. android.permission.BLUETOOTH_ADMIN 

   ---

8. android.permission.BROADCAST_STICKY 

   ---

9. android.permission.CHANGE_NETWORK_STATE 

   ---

10. android.permission.CHANGE_WIFI_MULTICAST_STATE 

    ---

11. android.permission.CHANGE_WIFI_STATE 

    ---

12. android.permission.CHANGE_WIMAX_STATE 

    ---

13. android.permission.DISABLE_KEYGUARD 

    ---

14. android.permission.EXPAND_STATUS_BAR 

    ---

15. android.permission.FLASHLIGHT 

    ---

16. android.permission.GET_ACCOUNTS 

    ---

17. android.permission.GET_PACKAGE_SIZE 

    ---

18. android.permission.INTERNET 

    ---

19. android.permission.KILL_BACKGROUND_PROCESSES 

    ---

20. android.permission.MODIFY_AUDIO_SETTINGS 

    ---

21. android.permission.NFC 

    ---

22. android.permission.READ_SYNC_SETTINGS 

    ---

23. android.permission.READ_SYNC_STATS 

    ---

24. android.permission.RECEIVE_BOOT_COMPLETED 

    ---

25. android.permission.REORDER_TASKS 

    ---

26. android.permission.REQUEST_INSTALL_PACKAGES 

    ---

27. android.permission.SET_TIME_ZONE 

    ---

28. android.permission.SET_WALLPAPER 

    ---

29. android.permission.SET_WALLPAPER_HINTS 

    ---

30. android.permission.SUBSCRIBED_FEEDS_READ 

    ---

31. android.permission.TRANSMIT_IR 

    ---

32. android.permission.USE_FINGERPRINT 

    ---

33. android.permission.VIBRATE 

    ---

34. android.permission.WAKE_LOCK 

    ---

35. android.permission.WRITE_SYNC_SETTINGS 

    ---

36. com.android.alarm.permission.SET_ALARM 

    ---

37. com.android.launcher.permission.INSTALL_SHORTCUT 

    ---

38. com.android.launcher.permission.UNINSTALL_SHORTCUT 

    ---

其实不需要记,记住哪些是危险权限就是了

Dangerous permissions(危险权限)

危险权限,需要在运行时请求.
注意: 危险权限是按组来分的,所以,当你申请了多个同组的危险权限时,运行时只需要申请一个就行
例如:

1.  

   ---

2. <uses-permission android:name="android.permission.READ_CALL_LOG" /> 

   ---

3. <uses-permission android:name="android.permission.READ_PHONE_STATE" /> 

   ---

4. <uses-permission android:name="android.permission.CALL_PHONE" /> 

   ---

5. <uses-permission android:name="android.permission.WRITE_CALL_LOG" /> 

   ---

6. <uses-permission android:name="android.permission.USE_SIP" /> 

   ---

7. <uses-permission android:name="android.permission.PROCESS_OUTGOING_CALLS" /> 

   ---

8. <uses-permission android:name="com.android.voicemail.permission.ADD_VOICEMAIL" /> 

   ---

你申请了关于电话的那么多权限,在动态申请的时候,它只会弹出

1461654947945.jpg

这一个权限框
所以,这是一个权限组的概念,运行时选择你申请的同组权限的一个就行

目前所有的危险权限组集合

1.  

   ---

2.  

   ---

3. <uses-permission android:name="android.permission.WRITE_CONTACTS" /> 

   ---

4. <uses-permission android:name="android.permission.GET_ACCOUNTS" /> 

   ---

5. <uses-permission android:name="android.permission.READ_CONTACTS" /> 

   ---

6.  

   ---

7.  

   ---

8. <uses-permission android:name="android.permission.RECORD_AUDIO" /> 

   ---

9.  

   ---

10.  

    ---

11. <uses-permission android:name="android.permission.READ_CALL_LOG" /> 

    ---

12. <uses-permission android:name="android.permission.READ_PHONE_STATE" /> 

    ---

13. <uses-permission android:name="android.permission.CALL_PHONE" /> 

    ---

14. <uses-permission android:name="android.permission.WRITE_CALL_LOG" /> 

    ---

15. <uses-permission android:name="android.permission.USE_SIP" /> 

    ---

16. <uses-permission android:name="android.permission.PROCESS_OUTGOING_CALLS" /> 

    ---

17. <uses-permission android:name="com.android.voicemail.permission.ADD_VOICEMAIL" /> 

    ---

18.  

    ---

19.  

    ---

20. <uses-permission android:name="android.permission.READ_CALENDAR" /> 

    ---

21. <uses-permission android:name="android.permission.WRITE_CALENDAR" /> 

    ---

22.  

    ---

23.  

    ---

24. <uses-permission android:name="android.permission.CAMERA" /> 

    ---

25.  

    ---

26.  

    ---

27. <uses-permission android:name="android.permission.BODY_SENSORS" /> 

    ---

28.  

    ---

29.  

    ---

30. <uses-permission android:name="android.permission.ACCESS_FINE_LOCATION" /> 

    ---

31. <uses-permission android:name="android.permission.ACCESS_COARSE_LOCATION" /> 

    ---

32.  

    ---

33.  

    ---

34. <uses-permission android:name="android.permission.WRITE_EXTERNAL_STORAGE" /> 

    ---

35. <uses-permission android:name="android.permission.READ_EXTERNAL_STORAGE" /> 

    ---

36.  

    ---

37.  

    ---

38. <uses-permission android:name="android.permission.READ_SMS" /> 

    ---

39. <uses-permission android:name="android.permission.RECEIVE_WAP_PUSH" /> 

    ---

40. <uses-permission android:name="android.permission.RECEIVE_MMS" /> 

    ---

41. <uses-permission android:name="android.permission.RECEIVE_SMS" /> 

    ---

42. <uses-permission android:name="android.permission.SEND_SMS" /> 

    ---

对应的java code

1. // 联系人 

   ---

2. Manifest.permission.WRITE_CONTACTS, 

   ---

3. Manifest.permission.GET_ACCOUNTS, 

   ---

4. Manifest.permission.READ_CONTACTS, 

   ---

5.  

   ---

6. // 电话 

   ---

7. Manifest.permission.READ_CALL_LOG, 

   ---

8. Manifest.permission.READ_PHONE_STATE, 

   ---

9. Manifest.permission.CALL_PHONE, 

   ---

10. Manifest.permission.WRITE_CALL_LOG, 

    ---

11. Manifest.permission.USE_SIP, 

    ---

12. Manifest.permission.PROCESS_OUTGOING_CALLS, 

    ---

13. Manifest.permission.ADD_VOICEMAIL, 

    ---

14.  

    ---

15. // 日历 

    ---

16. Manifest.permission.READ_CALENDAR, 

    ---

17. Manifest.permission.WRITE_CALENDAR, 

    ---

18.  

    ---

19. // 相机 

    ---

20. Manifest.permission.CAMERA, 

    ---

21.  

    ---

22. // 传感器 

    ---

23. Manifest.permission.BODY_SENSORS, 

    ---

24.  

    ---

25. // 定位 

    ---

26. Manifest.permission.ACCESS_FINE_LOCATION, 

    ---

27. Manifest.permission.ACCESS_COARSE_LOCATION, 

    ---

28.  

    ---

29. // 存储 

    ---

30. Manifest.permission.READ_EXTERNAL_STORAGE, 

    ---

31. Manifest.permission.WRITE_EXTERNAL_STORAGE, 

    ---

32.  

    ---

33. // 录音 

    ---

34. Manifest.permission.RECORD_AUDIO, 

    ---

35.  

    ---

36. // 短信 

    ---

37. Manifest.permission.READ_SMS, 

    ---

38. Manifest.permission.RECEIVE_WAP_PUSH, 

    ---

39. Manifest.permission.RECEIVE_MMS, 

    ---

40. Manifest.permission.RECEIVE_SMS, 

    ---

41. Manifest.permission.SEND_SMS, 

    ---

运行时权限请求的基本步骤

1.在xml中注册
2. 运行时请求权限

以下是权限检查的帮助类

1. /** 

   ---

2. * 检查权限是否已请求到 (6.0) 

   ---

3. */ 

   ---

4. public void checkPermissions(String... permissions) { 

   ---

5. // 版本兼容 

   ---

6. if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.M 

   ---

7. // 判断缺失哪些必要权限 

   ---

8. && lacksPermissions(permissions)) { 

   ---

9. // 如果缺失,则申请 

   ---

10. requestPermissions(permissions); 

    ---

11. } 

    ---

12. } 

    ---

13.  

    ---

14. /** 

    ---

15. * 判断是否缺失权限集合中的权限 

    ---

16. */ 

    ---

17. private boolean lacksPermissions(String... permissions) { 

    ---

18. for (String permission : permissions) { 

    ---

19. if (lacksPermission(permission)) { 

    ---

20. return true; 

    ---

21. } 

    ---

22. } 

    ---

23. return false; 

    ---

24. } 

    ---

25.  

    ---

26. /** 

    ---

27. * 判断是否缺少某个权限 

    ---

28. */ 

    ---

29. private boolean lacksPermission(String permission) { 

    ---

30. return ContextCompat.checkSelfPermission(context, permission) == 

    ---

31. PackageManager.PERMISSION_DENIED; 

    ---

32. } 

    ---

33.  

    ---

34. /** 

    ---

35. * 请求权限 

    ---

36. */ 

    ---

37. private void requestPermissions(String... permissions) { 

    ---

38. ActivityCompat.requestPermissions(context, permissions, PERMISSION_REQUEST_CODE); 

    ---

39. } 

    ---

40.  

    ---

41. /** 

    ---

42. * 启动应用的设置,进入手动配置权限页面 

    ---

43. */ 

    ---

44. private void startAppSettings() { 

    ---

45. Intent intent = new Intent(Settings.ACTION_APPLICATION_DETAILS_SETTINGS); 

    ---

46. Uri uri = Uri.fromParts("package", context.getPackageName(), null); 

    ---

47. intent.setData(uri); 

    ---

48. context.startActivity(intent); 

    ---

49. } 

    ---

注意: 其中的 requestPermissions 方法,它会弹出权限提示框( 没有点击不再提醒的话 ),然后调用 public void onRequestPermissionsResult(int requestCode, @NonNull String[] permissions, @NonNull int[] grantResults) 方法,该方法在Activity或者Fragment中回调

3.在onRequestPermissionsResult回调中处理

在 public void onRequestPermissionsResult() 方法中,你可以捕获到用于是点击了 不再提醒 还是 拒绝 ,然后做出不同的操作..

1. @Override 

   ---

2. public void onRequestPermissionsResult(int requestCode, @NonNull String[] permissions, @NonNull int[] grantResults) { 

   ---

3. // 版本兼容 

   ---

4. if (android.os.Build.VERSION.SDK_INT < android.os.Build.VERSION_CODES.M || 

   ---

5. requestCode != PermissionsChecker.PERMISSION_REQUEST_CODE) 

   ---

6. return; 

   ---

7.  

   ---

8. for (int i = 0, len = permissions.length; i < len; i++) { 

   ---

9. String permission = permissions[i]; 

   ---

10. // 缺失的权限 

    ---

11. if (grantResults[i] == PackageManager.PERMISSION_DENIED) { 

    ---

12. boolean showRationale = shouldShowRequestPermissionRationale(permission); 

    ---

13. if (!showRationale) { 

    ---

14. // 用户点击不再提醒 

    ---

15. // TODO 

    ---

16. break; 

    ---

17. } else {  

    ---

18. // 用户点击了取消... 

    ---

19. // possibly check more permissions...  

    ---

20. } 

    ---

21. } 

    ---

22. } 

    ---

23. } 

    ---

权限请求策略

下面提供一种我认为还不错的策略
在需要某权限的Activity的 onStrart() 中去请求权限
在 onRequestPermissionsResult 回调中,如果用户点击了拒绝,则继续请求权限
如果用户点击了不再提醒,则弹出自定义对话框,引导用户手动去开启权限,如果用户不授权,则退出当前页面
注意:适用于没有权限就无法使用该功能的情况

1461661615410.jpg

Activity代码

1. public class BaseActivity extends AppCompatActivity { 

   ---

2. private static final String TAG = "BaseActivity"; 

   ---

3. private PermissionsChecker checker; 

   ---

4.  

   ---

5. @Override 

   ---

6. protected void onCreate(@Nullable Bundle savedInstanceState) { 

   ---

7. super.onCreate(savedInstanceState); 

   ---

8. checker = new PermissionsChecker(this); 

   ---

9. } 

   ---

10.  

    ---

11. public PermissionsChecker getChecker() { 

    ---

12. return checker; 

    ---

13. } 

    ---

14.  

    ---

15. /** 

    ---

16. * 在该声明周期,检查权限申请情况 

    ---

17. */ 

    ---

18. @Override 

    ---

19. protected void onStart() { 

    ---

20. super.onStart(); 

    ---

21. checker.checkPermissions(PermissionsChecker.PERMISSIONS); 

    ---

22. } 

    ---

23.  

    ---

24. /** 

    ---

25. * 请求权限检查完后回调的结果 

    ---

26. * 

    ---

27. * @param requestCode . 

    ---

28. * @param permissions 所请求的权限 

    ---

29. * @param grantResults . 

    ---

30. */ 

    ---

31. @TargetApi(Build.VERSION_CODES.M) 

    ---

32. @Override 

    ---

33. public void onRequestPermissionsResult(int requestCode, @NonNull String[] permissions, @NonNull int[] grantResults) { 

    ---

34. if (Build.VERSION.SDK_INT < Build.VERSION_CODES.M || 

    ---

35. requestCode != PermissionsChecker.PERMISSION_REQUEST_CODE) 

    ---

36. return; 

    ---

37.  

    ---

38.  

    ---

39. for (int i = 0, len = permissions.length; i < len; i++) { 

    ---

40. String permission = permissions[i]; 

    ---

41. if (grantResults[i] == PackageManager.PERMISSION_DENIED) { 

    ---

42. boolean showRationale = shouldShowRequestPermissionRationale(permission); 

    ---

43. if (!showRationale) { 

    ---

44. // 用户点击不再提醒,弹出权限框,引导其手动开启权限 

    ---

45. checker.showMissingPermissionDialog(); 

    ---

46. break; 

    ---

47. } else { 

    ---

48. // 用户点击取消,继续提示 

    ---

49. checker.checkPermissions(PermissionsChecker.PERMISSIONS); 

    ---

50. break; 

    ---

51. } 

    ---

52. } 

    ---

53. } 

    ---

54. } 

    ---

55. } 

    ---

56.  

更多相关文章

1. [置顶] 我的Android进阶之旅------>Android声明和使用权限
2. Android之父Andy Rubin：生而Geek
3. 诺基亚跟微软合作----出乎意料但在情理中
4. Android(安卓)的启动流程
5. Android(安卓)ROM包制作
6. [转]浅谈Android五大布局（一）——LinearLayout、FrameLayout和Abso
7. android 常用adb 和 adb shell 命令 获取root权限
8. 28、compileSdkVersion，minSdkVersion，targetSdkVersion 的区别和
9. Android超精准计步器开发-Dylan计步

随机推荐

1. laravel8+vue2单页面应用
2. 数字货币开发的公共功能模块有哪些？
3. thinkphp6.0 开启多应用
4. 剪切时死机文件丢失了咋恢复
5. 属性0字节. 不知道如何找回呢
6. 如何找到笔记本因为剪切时中断，文件不见了
7. 文件名变乱码. 不知道咋找到呢
8. 基于AI技术的应用开源管理系统，对接AI有关
9. PHP表单验证实例DOME分享
10. 【开源php】 万岳在线教育系统WEB开源版