master

分支 (309)

标签 (53)

管理

管理

master

OpenHarmony_feature_Release_20250728

OpenHarmony_feature_20250702

OpenHarmony-6.0-Release

revert-merge-25867-master

weekly_20250908

revert-merge-25271-OpenHarmony_feature_Release_20250728

revert-merge-25147-OpenHarmony_feature_20250702

revert-merge-25507-OpenHarmony_feature_20250702

revert-merge-25444-OpenHarmony_feature_20250702

weekly_20250901

revert-merge-25098-OpenHarmony_feature_20250702

revert-merge-25006-OpenHarmony_feature_20250702

weekly_20250825

ly821

weekly_20250818

revert-merge-23631-OpenHarmony_feature_20250702

revert-merge-23733-OpenHarmony_feature_20250702

revert-merge-24009-OpenHarmony_feature_20250702

revert-merge-24345-OpenHarmony_feature_20250702

OpenHarmony-v6.0-Release

OpenHarmony-v6.0-Beta1

OpenHarmony-v4.1.4-Release

OpenHarmony-v5.1.0-Release

OpenHarmony-v5.0.3-Release

OpenHarmony-v4.1.3-Release

OpenHarmony-v5.0.2-Release

OpenHarmony-v4.1.2-Release

OpenHarmony-v5.0.1-Release

OpenHarmony-v4.0.4-Release

OpenHarmony-v5.0.0-Release

OpenHarmony-v4.0.3-Release

OpenHarmony-v4.0.2-Release

OpenHarmony-v5.0-Beta1

OpenHarmony-v4.1-Release

OpenHarmony-v4.1.1-Release

OpenHarmony-v4.0.1-Release

weekly_20240115-v

master-v

OpenHarmony-v4.1-Beta1

interface_sdk-js
/
api
/
@ohos.userIAM.userAccessCtrl.d.ts

/*
 * Copyright (c) 2024 Huawei Device Co., Ltd.
 * Licensed under the Apache License, Version 2.0 (the "License"),
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

/**
 * @file
 * @kit UserAuthenticationKit
 * @arkts 1.1&1.2
 */

import userAuth from '@ohos.userIAM.userAuth';

/**
 * User access control
 *
 * @namespace userAccessCtrl
 * @syscap SystemCapability.UserIAM.UserAuth.Core
 * @since arkts {'1.1':'18','1.2':'22'}
 * @arkts 1.1&1.2
 */
declare namespace userAccessCtrl {
  /**
   * Verify the authentication token.
   *
   * @permission ohos.permission.USE_USER_ACCESS_MANAGER
   * @param { Uint8Array } authToken - AuthToken to be verified.
   * @param { int } allowableDuration - Allowable time interval from the authToken is issued till now in milliseconds.
   * @returns { Promise<AuthToken> } Returns parsed authToken.
   * @throws { BusinessError } 201 - Permission denied.
   * @throws { BusinessError } 202 - Permission denied. Called by non-system application.
   * @throws { BusinessError } 401 - Parameter error. Possible causes:
   * <br>1. Mandatory parameters are left unspecified.
   * <br>2. Incorrect parameter types.
   * <br>3. Parameter verification failed.
   * @throws { BusinessError } 12500002 - General operation error.
   * @throws { BusinessError } 12500015 - AuthToken integrity check failed.
   * @throws { BusinessError } 12500016 - AuthToken has expired.
   * @syscap SystemCapability.UserIAM.UserAuth.Core
   * @systemapi Hide this for inner system use.
   * @since arkts {'1.1':'18','1.2':'22'}
   * @arkts 1.1&1.2
   */
  function verifyAuthToken(authToken: Uint8Array, allowableDuration: int): Promise<AuthToken>;

  /**
   * Authentication token.
   *
   * @typedef AuthToken
   * @syscap SystemCapability.UserIAM.UserAuth.Core
   * @systemapi Hide this for inner system use.
   * @since arkts {'1.1':'18','1.2':'22'}
   * @arkts 1.1&1.2
   */
  interface AuthToken {
    /**
     * Pass in challenge value.
     *
     * @type { Uint8Array }
     * @syscap SystemCapability.UserIAM.UserAuth.Core
     * @systemapi Hide this for inner system use.
     * @since arkts {'1.1':'18','1.2':'22'}
     * @arkts 1.1&1.2
     */
    challenge: Uint8Array;

    /**
     * Trust level of authentication result.
     *
     * @type { userAuth.AuthTrustLevel }
     * @syscap SystemCapability.UserIAM.UserAuth.Core
     * @systemapi Hide this for inner system use.
     * @since arkts {'1.1':'18','1.2':'22'}
     * @arkts 1.1&1.2
     */
    authTrustLevel: userAuth.AuthTrustLevel;

    /**
     * Credential type for authentication.
     *
     * @type { userAuth.UserAuthType }
     * @syscap SystemCapability.UserIAM.UserAuth.Core
     * @systemapi Hide this for inner system use.
     * @since arkts {'1.1':'18','1.2':'22'}
     * @arkts 1.1&1.2
     */
    authType: userAuth.UserAuthType;

    /**
     * The type of authToken.
     *
     * @type { AuthTokenType }
     * @syscap SystemCapability.UserIAM.UserAuth.Core
     * @systemapi Hide this for inner system use.
     * @since arkts {'1.1':'18','1.2':'22'}
     * @arkts 1.1&1.2
     */
    tokenType: AuthTokenType;

    /**
     * The user id of authToken.
     *
     * @type { int }
     * @syscap SystemCapability.UserIAM.UserAuth.Core
     * @systemapi Hide this for inner system use.
     * @since arkts {'1.1':'18','1.2':'22'}
     * @arkts 1.1&1.2
     */
    userId: int;

    /**
     * The time interval from the authToken is issued till now in milliseconds.
     *
     * @type { bigint }
     * @syscap SystemCapability.UserIAM.UserAuth.Core
     * @systemapi Hide this for inner system use.
     * @since arkts {'1.1':'18','1.2':'22'}
     * @arkts 1.1&1.2
     */
    timeInterval: bigint;

    /**
     * The secure uid of authToken.
     *
     * @type { ?bigint }
     * @syscap SystemCapability.UserIAM.UserAuth.Core
     * @systemapi Hide this for inner system use.
     * @since arkts {'1.1':'18','1.2':'22'}
     * @arkts 1.1&1.2
     */
    secureUid?: bigint;

    /**
     * The enrolled id of authToken.
     *
     * @type { ?bigint }
     * @syscap SystemCapability.UserIAM.UserAuth.Core
     * @systemapi Hide this for inner system use.
     * @since arkts {'1.1':'18','1.2':'22'}
     * @arkts 1.1&1.2
     */
    enrolledId?: bigint;

    /**
     * The credential id of authToken.
     *
     * @type { ?bigint }
     * @syscap SystemCapability.UserIAM.UserAuth.Core
     * @systemapi Hide this for inner system use.
     * @since arkts {'1.1':'18','1.2':'22'}
     * @arkts 1.1&1.2
     */
    credentialId?: bigint;
  }

  /**
   * The issued type for authToken.
   *
   * @enum { int }
   * @syscap SystemCapability.UserIAM.UserAuth.Core
   * @systemapi Hide this for inner system use.
   * @since arkts {'1.1':'18','1.2':'22'}
   * @arkts 1.1&1.2
   */
  enum AuthTokenType {
    /**
     * AuthToken is issued locally.
     *
     * @syscap SystemCapability.UserIAM.UserAuth.Core
     * @systemapi Hide this for inner system use.
     * @since arkts {'1.1':'18','1.2':'22'}
     * @arkts 1.1&1.2
     */
    TOKEN_TYPE_LOCAL_AUTH = 0,

    /**
     * AuthToken is re-issued.
     *
     * @syscap SystemCapability.UserIAM.UserAuth.Core
     * @systemapi Hide this for inner system use.
     * @since arkts {'1.1':'18','1.2':'22'}
     * @arkts 1.1&1.2
     */
    TOKEN_TYPE_LOCAL_RESIGN = 1,

    /**
     * AuthToken is issued remotely.
     *
     * @syscap SystemCapability.UserIAM.UserAuth.Core
     * @systemapi Hide this for inner system use.
     * @since arkts {'1.1':'18','1.2':'22'}
     * @arkts 1.1&1.2
     */
    TOKEN_TYPE_COAUTH = 2
  }
}

export default userAccessCtrl;