Apple Script with Admin Parole

App & System Services Automation & Scripting
BochkarevTools OP
Created Jul ’15
Replies 0
Boosts 0
Views 267
Participants 1

So we cant use of Authorization Services to get user parole to for example delete some file that requires entering parole

However we can run applescripts from applescripts special folder :

Finally, your app can use the subclasses of 

NSUserScriptTask
class to run user-provided AppleScript scripts out of a special directory, 
NSApplicationScriptsDirectory
(
~/Library/Application Scripts/
code-signing-identifier
/
). Although your app can read files within this directory, it cannot write files into this directory; the user must manually place scripts here. For details, see the documentation for 
NSUserScriptTask
and WWDC 2012: Secure Automation Techniques in OS X.


So I can run Apple Script from that folder in sanboxed application - it will ask parole and I can delete some file that requires user parole (it works - I checked)

The question is - will application pass review if it has this mechanics:

1) Application asks permission from user to generate and write apple scripts into special scrips folder - so it can run em

2) Application now can generate and run apple scripts that requires user parole (and its not my app who need parole - it's finder who need parole to execute script - so my app doesnt even get user parole or save it somehow)

Replies  0
Boosts  0
Views  267
Participants  1
Apple Script with Admin Parole
First post date Last post date
 
 
Q