policy_oauth2_token_fetcher.h revision 558790d6acca3451cf3a6b497803a5f07d0bec58
1// Copyright (c) 2013 The Chromium Authors. All rights reserved. 2// Use of this source code is governed by a BSD-style license that can be 3// found in the LICENSE file. 4 5#ifndef CHROME_BROWSER_CHROMEOS_POLICY_POLICY_OAUTH2_TOKEN_FETCHER_H_ 6#define CHROME_BROWSER_CHROMEOS_POLICY_POLICY_OAUTH2_TOKEN_FETCHER_H_ 7 8#include <string> 9 10#include "base/basictypes.h" 11#include "base/callback.h" 12#include "base/compiler_specific.h" 13#include "base/memory/ref_counted.h" 14#include "base/memory/scoped_ptr.h" 15#include "base/memory/weak_ptr.h" 16#include "google_apis/gaia/gaia_auth_consumer.h" 17#include "google_apis/gaia/oauth2_access_token_consumer.h" 18 19class GaiaAuthFetcher; 20class OAuth2AccessTokenFetcher; 21 22namespace net { 23class URLRequestContextGetter; 24} 25 26namespace policy { 27 28// Fetches the OAuth2 token for the device management service. Since Profile 29// creation might be blocking on a user policy fetch, this fetcher must always 30// send a (possibly empty) token to the callback, which will then let the policy 31// subsystem proceed and resume Profile creation. Sending the token even when no 32// Profile is pending is also OK. 33class PolicyOAuth2TokenFetcher 34 : public base::SupportsWeakPtr<PolicyOAuth2TokenFetcher>, 35 public GaiaAuthConsumer, 36 public OAuth2AccessTokenConsumer { 37 public: 38 typedef base::Callback<void(const std::string&, 39 const GoogleServiceAuthError&)> TokenCallback; 40 41 // Fetches the device management service's OAuth2 token using 42 // |oauth2_tokens.refresh_token|. 43 PolicyOAuth2TokenFetcher(net::URLRequestContextGetter* system_context_getter, 44 const std::string& oauth2_refresh_token, 45 const TokenCallback& callback); 46 47 // Fetches the device management service's oauth2 token, after also retrieving 48 // the OAuth2 refresh tokens. 49 PolicyOAuth2TokenFetcher(net::URLRequestContextGetter* auth_context_getter, 50 net::URLRequestContextGetter* system_context_getter, 51 const TokenCallback& callback); 52 53 virtual ~PolicyOAuth2TokenFetcher(); 54 55 // Starts process of minting device management service OAuth2 access token. 56 void Start(); 57 58 // Returns OAuth2 tokens fetched through an authenticated cookie jar. 59 const GaiaAuthConsumer::ClientOAuthResult& oauth2_tokens() const { 60 return oauth2_tokens_; 61 } 62 63 // True if we have OAuth2 tokens that were fetched through an authenticated 64 // cookie jar. 65 bool has_oauth2_tokens() const { 66 return !oauth2_tokens_.refresh_token.empty(); 67 } 68 69 // Returns true if we have previously attempted to fetch tokens with this 70 // class and failed. 71 bool failed() const { 72 return failed_; 73 } 74 75 const std::string& oauth2_refresh_token() const { 76 return oauth2_refresh_token_; 77 } 78 const std::string& oauth2_access_token() const { 79 return oauth2_access_token_; 80 } 81 82 private: 83 // GaiaAuthConsumer overrides. 84 virtual void OnClientOAuthSuccess( 85 const GaiaAuthConsumer::ClientOAuthResult& oauth_tokens) OVERRIDE; 86 virtual void OnClientOAuthFailure( 87 const GoogleServiceAuthError& error) OVERRIDE; 88 89 // OAuth2AccessTokenConsumer overrides. 90 virtual void OnGetTokenSuccess(const std::string& access_token, 91 const base::Time& expiration_time) OVERRIDE; 92 virtual void OnGetTokenFailure(const GoogleServiceAuthError& error) OVERRIDE; 93 94 // Starts fetching OAuth2 refresh token. 95 void StartFetchingRefreshToken(); 96 97 // Starts fetching OAuth2 access token for the device management service. 98 void StartFetchingAccessToken(); 99 100 // Decides how to proceed on GAIA |error|. If the error looks temporary, 101 // retries |task| until max retry count is reached. 102 // If retry count runs out, or error condition is unrecoverable, it calls 103 // Delegate::OnOAuth2TokenFetchFailed(). 104 void RetryOnError(const GoogleServiceAuthError& error, 105 const base::Closure& task); 106 107 // Passes |token| and |error| to the |callback_|. 108 void ForwardPolicyToken(const std::string& token, 109 const GoogleServiceAuthError& error); 110 111 scoped_refptr<net::URLRequestContextGetter> auth_context_getter_; 112 scoped_refptr<net::URLRequestContextGetter> system_context_getter_; 113 scoped_ptr<GaiaAuthFetcher> refresh_token_fetcher_; 114 scoped_ptr<OAuth2AccessTokenFetcher> access_token_fetcher_; 115 GaiaAuthConsumer::ClientOAuthResult oauth2_tokens_; 116 117 // OAuth2 refresh token. Could come either from the outside or through 118 // refresh token fetching flow within this class. 119 std::string oauth2_refresh_token_; 120 121 // OAuth2 access token. 122 std::string oauth2_access_token_; 123 124 // The retry counter. Increment this only when failure happened. 125 int retry_count_; 126 127 // True if we have already failed to fetch the policy. 128 bool failed_; 129 130 // The callback to invoke when done. 131 TokenCallback callback_; 132 133 DISALLOW_COPY_AND_ASSIGN(PolicyOAuth2TokenFetcher); 134}; 135 136} // namespace policy 137 138#endif // CHROME_BROWSER_CHROMEOS_POLICY_POLICY_OAUTH2_TOKEN_FETCHER_H_ 139