Setting the Security Level of a Distributed File

The security capabilities vary with devices. For example, small embedded devices provide fewer security capabilities than tablets. The security requirements also vary with data. For example, personal health information and bank card information are not expected to be accessed by devices of lower security levels. OpenHarmony provides a complete set of data and device classification standards and supports customization of data transfer policies for different devices. For details, see Access Control by Device and Data Level.

Available APIs

For details about the APIs, see ohos.file.securityLabel.

Table 1 Security level APIs

NOTE

• In distributed networking, a device can view the files that have a higher security level but cannot access them.

• The default security level of the distributed file system data is S3. Applications can set the security level of files.

Development Example

Obtain the sandbox path of a file and set the data security level. For details about how to obtain the context, see Obtaining the Context of UIAbility.

import securityLabel from '@ohos.file.securityLabel';
import { BusinessError } from '@ohos.base';
import common from '@ohos.app.ability.common';

// Obtain the sandbox path of the file.
let context = getContext(this) as common.UIAbilityContext; // Obtain UIAbilityContext.
let pathDir = context.filesDir;
let filePath = pathDir + '/test.txt';

// Open the file.
let file = fs.openSync(filePath, fs.OpenMode.READ_WRITE | fs.OpenMode.CREATE);
// Set the data level of the file to S0.
securityLabel.setSecurityLabel(filePath, 's0').then(() => {
  console.info('Succeeded in setSecurityLabeling.');
  fs.closeSync(file);
}).catch((err: BusinessError) => {
  console.error(`Failed to setSecurityLabel. Code: ${err.code}, message: ${err.message}`);
});