[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Changed in: trust-store (Ubuntu Utopic) Status: In Progress => Fix Released -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in the base for Ubuntu mobile products: Fix Released Status in trust-store: Fix Released Status in location-service package in Ubuntu: Invalid Status in trust-store package in Ubuntu: Fix Released Status in location-service source package in Utopic: Invalid Status in trust-store source package in Utopic: Fix Released Status in location-service source package in Vivid: Invalid Status in trust-store source package in Vivid: Fix Released Status in trust-store package in Ubuntu RTM: Fix Released Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Changed in: trust-store Status: In Progress => Fix Released -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in the base for Ubuntu mobile products: Fix Released Status in trust-store: Fix Released Status in location-service package in Ubuntu: Invalid Status in trust-store package in Ubuntu: Fix Released Status in location-service source package in Utopic: Invalid Status in trust-store source package in Utopic: In Progress Status in location-service source package in Vivid: Invalid Status in trust-store source package in Vivid: Fix Released Status in trust-store package in Ubuntu RTM: Fix Released Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Changed in: canonical-devices-system-image Status: In Progress => Fix Released -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in the base for Ubuntu mobile products: Fix Released Status in trust-store: In Progress Status in location-service package in Ubuntu: Invalid Status in trust-store package in Ubuntu: Fix Released Status in location-service source package in Utopic: Invalid Status in trust-store source package in Utopic: In Progress Status in location-service source package in Vivid: Invalid Status in trust-store source package in Vivid: Fix Released Status in trust-store package in Ubuntu RTM: Fix Released Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
This bug was fixed in the package trust-store - 1.1.0+15.04.20150123 ~rtm-0ubuntu1 --- trust-store (1.1.0+15.04.20150123~rtm-0ubuntu1) 14.09; urgency=low [ thomas-voss ] * Make sure that cached trust requests are sorted by their timestamp in descending order. Add regression test case. (LP: #1387734) -- Ubuntu daily releaseFri, 23 Jan 2015 09:56:00 + ** Changed in: trust-store (Ubuntu RTM) Status: In Progress => Fix Released -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in the base for Ubuntu mobile products: In Progress Status in trust-store: In Progress Status in location-service package in Ubuntu: Invalid Status in trust-store package in Ubuntu: Fix Released Status in location-service source package in Utopic: Invalid Status in trust-store source package in Utopic: In Progress Status in location-service source package in Vivid: Invalid Status in trust-store source package in Vivid: Fix Released Status in trust-store package in Ubuntu RTM: Fix Released Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Changed in: canonical-devices-system-image Milestone: ww05-2015 => ww07-2015 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in the base for Ubuntu mobile products: In Progress Status in trust-store: In Progress Status in location-service package in Ubuntu: Invalid Status in trust-store package in Ubuntu: Fix Released Status in location-service source package in Utopic: Invalid Status in trust-store source package in Utopic: In Progress Status in location-service source package in Vivid: Invalid Status in trust-store source package in Vivid: Fix Released Status in trust-store package in Ubuntu RTM: In Progress Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Branch linked: lp:~mardy/ubuntu-system-settings/rtm-lp1387734 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in the base for Ubuntu mobile products: In Progress Status in trust-store: In Progress Status in location-service package in Ubuntu: Invalid Status in trust-store package in Ubuntu: Fix Released Status in location-service source package in Utopic: Invalid Status in trust-store source package in Utopic: In Progress Status in location-service source package in Vivid: Invalid Status in trust-store source package in Vivid: Fix Released Status in trust-store package in Ubuntu RTM: In Progress Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Branch linked: lp:~mardy/ubuntu-system-settings/lp1387734 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in the base for Ubuntu mobile products: In Progress Status in trust-store: In Progress Status in location-service package in Ubuntu: Invalid Status in trust-store package in Ubuntu: Fix Released Status in location-service source package in Utopic: Invalid Status in trust-store source package in Utopic: In Progress Status in location-service source package in Vivid: Invalid Status in trust-store source package in Vivid: Fix Released Status in trust-store package in Ubuntu RTM: In Progress Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Branch linked: lp:~dbarth/ubuntu-system-settings/fix-1387734 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in the base for Ubuntu mobile products: In Progress Status in trust-store: In Progress Status in location-service package in Ubuntu: Invalid Status in trust-store package in Ubuntu: Fix Released Status in location-service source package in Utopic: Invalid Status in trust-store source package in Utopic: In Progress Status in location-service source package in Vivid: Invalid Status in trust-store source package in Vivid: Fix Released Status in trust-store package in Ubuntu RTM: In Progress Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
First issue sounds like bug #1387734 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in the base for Ubuntu mobile products: In Progress Status in trust-store: In Progress Status in location-service package in Ubuntu: Invalid Status in trust-store package in Ubuntu: Fix Released Status in location-service source package in Utopic: Invalid Status in trust-store source package in Utopic: In Progress Status in location-service source package in Vivid: Invalid Status in trust-store source package in Vivid: Fix Released Status in trust-store package in Ubuntu RTM: In Progress Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
It's great that users can now disable access... but I see two other issues now: - After disabling access to an app, the app is still shown as being allowed to access location services. Just exit the settings app and re- start it, and the UI shows access as enabled again. - After disabling access to an app, the user cannot re-enable access. It's shown as enabled, but it no longer works. Toggling the checkbox no longer seems to do anything. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in the base for Ubuntu mobile products: In Progress Status in trust-store: In Progress Status in location-service package in Ubuntu: Invalid Status in trust-store package in Ubuntu: Fix Released Status in location-service source package in Utopic: Invalid Status in trust-store source package in Utopic: In Progress Status in location-service source package in Vivid: Invalid Status in trust-store source package in Vivid: Fix Released Status in trust-store package in Ubuntu RTM: In Progress Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
This bug was fixed in the package trust-store - 1.1.0+15.04.20150123-0ubuntu1 --- trust-store (1.1.0+15.04.20150123-0ubuntu1) vivid; urgency=low [ thomas-voss ] * Make sure that cached trust requests are sorted by their timestamp in descending order. Add regression test case. (LP: #1387734) -- Ubuntu daily releaseFri, 23 Jan 2015 09:56:00 + ** Changed in: trust-store (Ubuntu Vivid) Status: In Progress => Fix Released -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in the base for Ubuntu mobile products: In Progress Status in trust-store: In Progress Status in location-service package in Ubuntu: Invalid Status in trust-store package in Ubuntu: Fix Released Status in location-service source package in Utopic: Invalid Status in trust-store source package in Utopic: In Progress Status in location-service source package in Vivid: Invalid Status in trust-store source package in Vivid: Fix Released Status in trust-store package in Ubuntu RTM: In Progress Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Branch linked: lp:ubuntu/vivid-proposed/trust-store -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in the base for Ubuntu mobile products: In Progress Status in trust-store: In Progress Status in location-service package in Ubuntu: Invalid Status in trust-store package in Ubuntu: In Progress Status in location-service source package in Utopic: Invalid Status in trust-store source package in Utopic: In Progress Status in location-service source package in Vivid: Invalid Status in trust-store source package in Vivid: In Progress Status in trust-store package in Ubuntu RTM: In Progress Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Also affects: canonical-devices-system-image Importance: Undecided Status: New ** Changed in: canonical-devices-system-image Importance: Undecided => High ** Changed in: canonical-devices-system-image Status: New => In Progress ** Changed in: canonical-devices-system-image Milestone: None => ww05-2015 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in the base for Ubuntu mobile products: In Progress Status in trust-store: In Progress Status in location-service package in Ubuntu: Invalid Status in trust-store package in Ubuntu: In Progress Status in location-service source package in Utopic: Invalid Status in trust-store source package in Utopic: In Progress Status in location-service source package in Vivid: Invalid Status in trust-store source package in Vivid: In Progress Status in trust-store package in Ubuntu RTM: In Progress Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Changed in: trust-store Status: Confirmed => In Progress ** Changed in: trust-store (Ubuntu Utopic) Status: Confirmed => In Progress ** Changed in: trust-store (Ubuntu Vivid) Status: Confirmed => In Progress ** Changed in: trust-store (Ubuntu RTM) Status: Confirmed => In Progress -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in trust-store: In Progress Status in “location-service” package in Ubuntu: Invalid Status in “trust-store” package in Ubuntu: In Progress Status in “location-service” source package in Utopic: Invalid Status in “trust-store” source package in Utopic: In Progress Status in “location-service” source package in Vivid: Invalid Status in “trust-store” source package in Vivid: In Progress Status in “trust-store” package in Ubuntu RTM: In Progress Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/trust-store/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
This will need an update to utopic-security as well (for when rtm syncs back up). ** Also affects: location-service (Ubuntu Utopic) Importance: Undecided Status: New ** Also affects: trust-store (Ubuntu Utopic) Importance: Undecided Status: New ** Also affects: location-service (Ubuntu Vivid) Importance: Critical Status: Invalid ** Also affects: trust-store (Ubuntu Vivid) Importance: Critical Assignee: Thomas Voß (thomas-voss) Status: Confirmed ** Changed in: location-service (Ubuntu Utopic) Status: New => Invalid ** Changed in: trust-store (Ubuntu Utopic) Status: New => Confirmed ** Changed in: trust-store (Ubuntu Utopic) Importance: Undecided => Critical ** Changed in: trust-store (Ubuntu Utopic) Assignee: (unassigned) => Thomas Voß (thomas-voss) -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in trust-store: Confirmed Status in “location-service” package in Ubuntu: Invalid Status in “trust-store” package in Ubuntu: Confirmed Status in “location-service” source package in Utopic: Invalid Status in “trust-store” source package in Utopic: Confirmed Status in “location-service” source package in Vivid: Invalid Status in “trust-store” source package in Vivid: Confirmed Status in “trust-store” package in Ubuntu RTM: Confirmed Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/trust-store/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Description changed: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 + + From a user's perspective: Despite having explicitly rejected trust to + an application, the app would still be able to access services. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in trust-store: Confirmed Status in “location-service” package in Ubuntu: Invalid Status in “trust-store” package in Ubuntu: Confirmed Status in “location-service” source package in Utopic: Invalid Status in “trust-store” source package in Utopic: Confirmed Status in “location-service” source package in Vivid: Invalid Status in “trust-store” source package in Vivid: Confirmed Status in “trust-store” package in Ubuntu RTM: Confirmed Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 From a user's perspective: Despite having explicitly rejected trust to an application, the app would still be able to access services. To manage notifications about this bug go to: https://bugs.launchpad.net/trust-store/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
This is CVE-2014-1422 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2014-1422 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in trust-store: Confirmed Status in “location-service” package in Ubuntu: Invalid Status in “trust-store” package in Ubuntu: Confirmed Status in “trust-store” package in Ubuntu RTM: Confirmed Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 To manage notifications about this bug go to: https://bugs.launchpad.net/trust-store/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Information type changed from Public to Public Security -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in trust-store: Confirmed Status in “location-service” package in Ubuntu: Invalid Status in “trust-store” package in Ubuntu: Confirmed Status in “trust-store” package in Ubuntu RTM: Confirmed Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 To manage notifications about this bug go to: https://bugs.launchpad.net/trust-store/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Tags added: rtm14 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in trust-store: Confirmed Status in “location-service” package in Ubuntu: Invalid Status in “trust-store” package in Ubuntu: Confirmed Status in “trust-store” package in Ubuntu RTM: Confirmed Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 To manage notifications about this bug go to: https://bugs.launchpad.net/trust-store/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Branch linked: lp:~thomas-voss/trust-store/fix-1387734 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in trust-store: Confirmed Status in “location-service” package in Ubuntu: Invalid Status in “trust-store” package in Ubuntu: Confirmed Status in “trust-store” package in Ubuntu RTM: Confirmed Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 To manage notifications about this bug go to: https://bugs.launchpad.net/trust-store/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Changed in: trust-store (Ubuntu RTM) Assignee: (unassigned) => Thomas Voß (thomas-voss) -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in trust-store: Confirmed Status in “location-service” package in Ubuntu: Invalid Status in “trust-store” package in Ubuntu: Confirmed Status in “trust-store” package in Ubuntu RTM: Confirmed Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 To manage notifications about this bug go to: https://bugs.launchpad.net/trust-store/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Also affects: trust-store (Ubuntu) Importance: Undecided Status: New ** Changed in: trust-store Importance: Undecided => Critical ** Changed in: trust-store Status: New => Confirmed ** Changed in: trust-store (Ubuntu) Status: New => Confirmed ** Changed in: trust-store (Ubuntu) Importance: Undecided => Critical ** Also affects: trust-store (Ubuntu RTM) Importance: Undecided Status: New ** Changed in: trust-store (Ubuntu RTM) Status: New => Confirmed ** Changed in: trust-store (Ubuntu RTM) Importance: Undecided => Critical ** Changed in: trust-store (Ubuntu) Assignee: (unassigned) => Thomas Voß (thomas-voss) ** Changed in: location-service (Ubuntu) Status: Confirmed => Invalid ** Changed in: location-service (Ubuntu) Assignee: Thomas Voß (thomas-voss) => (unassigned) ** Changed in: trust-store Assignee: (unassigned) => Thomas Voß (thomas-voss) -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in trust-store: Confirmed Status in “location-service” package in Ubuntu: Invalid Status in “trust-store” package in Ubuntu: Confirmed Status in “trust-store” package in Ubuntu RTM: Confirmed Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 To manage notifications about this bug go to: https://bugs.launchpad.net/trust-store/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1387734] Re: Location service uses the cached authorization, even if the user denied location access to an app
** Also affects: location-service Importance: Undecided Status: New ** No longer affects: location-service ** Also affects: trust-store Importance: Undecided Status: New ** Changed in: location-service (Ubuntu) Status: New => Confirmed ** Changed in: location-service (Ubuntu) Importance: Undecided => Critical ** Changed in: location-service (Ubuntu) Assignee: (unassigned) => Thomas Voß (thomas-voss) -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to location-service in Ubuntu. https://bugs.launchpad.net/bugs/1387734 Title: Location service uses the cached authorization, even if the user denied location access to an app Status in trust-store: New Status in “location-service” package in Ubuntu: Confirmed Bug description: The bug occurs after removing location access authorization to an application. The location is still available to the application, despite the user having revoked access from within USS > Privacy > Location. To reproduce: 1. Open a map application, like Here map 2. Allow access to location 3. Switch to System Settings > Privacy > Location 4. Disable location access for Maps 5. Kill Here map, and restart it What should happen: you should not have access anymore (and should not see a prompt) What happens instead: the app still has access to your location, as shown in the logs: I1030 16:15:38.167752 3100 cached_agent_glog_reporter.cpp:32] CachedAgent::authenticate_request_with_parameters: Application pid: 27975 Application uid: 32011 Application id: com.nokia.heremaps_here Cached request: Request(from: com.nokia.heremaps_here, feature: 0, when: 1414682114882519283, answer: granted) I confirmed that the trust store had recorded the authorization change as in: phablet@ubuntu-phablet:~$ sqlite3 ~/.local/share/UbuntuLocationService/trust.db "select * from requests" 1|unconfined|0|1414098093331252474|1 2|com.nokia.heremaps_here|0|1414682114882519283|1 3|com.nokia.heremaps_here|0|1414682131206341515|0 To manage notifications about this bug go to: https://bugs.launchpad.net/trust-store/+bug/1387734/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
