Reduce shell power over user management. Remove MANAGE_USERS permission from shell and whitelist it for some specific functionality. Bug: 29189712 Change-Id: Ifb37448c091af91991964511e3efb1bb4dea1ff3

commit: f5cea03eb036c05cacc711ff90c97a48ffb2bc17 [log] [tgz]
author: Sudheer Shanka <sudheersai@google.com> Wed Jun 08 17:13:24 2016 -0700
committer: Sudheer Shanka <sudheersai@google.com> Fri Jun 10 13:05:18 2016 -0700
tree: 636ba1bf01a4a6544443be5ee61802a6dec7125c
parent: 142fc425c472eb7a948c0eed37aa7b4b80740a8c [diff] [blame]
diff --git a/packages/Shell/AndroidManifest.xml b/packages/Shell/AndroidManifest.xml
index 9c0aa35..2efefb3 100644
--- a/packages/Shell/AndroidManifest.xml
+++ b/packages/Shell/AndroidManifest.xml

@@ -90,7 +90,7 @@
     <uses-permission android:name="android.permission.WRITE_MEDIA_STORAGE" />
     <uses-permission android:name="android.permission.INTERACT_ACROSS_USERS" />
     <uses-permission android:name="android.permission.INTERACT_ACROSS_USERS_FULL" />
-    <uses-permission android:name="android.permission.MANAGE_USERS" />
+    <uses-permission android:name="android.permission.CREATE_USERS" />
     <uses-permission android:name="android.permission.MANAGE_DEVICE_ADMINS" />
     <uses-permission android:name="android.permission.BLUETOOTH_STACK" />
     <uses-permission android:name="android.permission.GET_ACCOUNTS" />
commit	f5cea03eb036c05cacc711ff90c97a48ffb2bc17	[log] [tgz]
author	Sudheer Shanka <sudheersai@google.com>	Wed Jun 08 17:13:24 2016 -0700
committer	Sudheer Shanka <sudheersai@google.com>	Fri Jun 10 13:05:18 2016 -0700
tree	636ba1bf01a4a6544443be5ee61802a6dec7125c
parent	142fc425c472eb7a948c0eed37aa7b4b80740a8c [diff] [blame]