policy_oauth2_token_fetcher.h revision c2e0dbddbe15c98d52c4786dac06cb8952a8ae6d
1// Copyright (c) 2013 The Chromium Authors. All rights reserved. 2// Use of this source code is governed by a BSD-style license that can be 3// found in the LICENSE file. 4 5#ifndef CHROME_BROWSER_CHROMEOS_POLICY_POLICY_OAUTH2_TOKEN_FETCHER_H_ 6#define CHROME_BROWSER_CHROMEOS_POLICY_POLICY_OAUTH2_TOKEN_FETCHER_H_ 7 8#include <string> 9 10#include "base/basictypes.h" 11#include "base/callback.h" 12#include "base/compiler_specific.h" 13#include "base/memory/ref_counted.h" 14#include "base/memory/scoped_ptr.h" 15#include "base/memory/weak_ptr.h" 16#include "google_apis/gaia/gaia_auth_consumer.h" 17#include "google_apis/gaia/oauth2_access_token_consumer.h" 18 19class GaiaAuthFetcher; 20class OAuth2AccessTokenFetcher; 21 22namespace net { 23class URLRequestContextGetter; 24} 25 26namespace policy { 27 28// Fetches the OAuth2 token for the device management service. Since Profile 29// creation might be blocking on a user policy fetch, this fetcher must always 30// send a (possibly empty) token to the callback, which will then let the policy 31// subsystem proceed and resume Profile creation. Sending the token even when no 32// Profile is pending is also OK. 33class PolicyOAuth2TokenFetcher 34 : public base::SupportsWeakPtr<PolicyOAuth2TokenFetcher>, 35 public GaiaAuthConsumer, 36 public OAuth2AccessTokenConsumer { 37 public: 38 typedef base::Callback<void(const std::string&)> TokenCallback; 39 40 // Fetches the device management service's OAuth2 token using 41 // |oauth2_tokens.refresh_token|. 42 PolicyOAuth2TokenFetcher(net::URLRequestContextGetter* system_context_getter, 43 const std::string& oauth2_refresh_token, 44 const TokenCallback& callback); 45 46 // Fetches the device management service's oauth2 token, after also retrieving 47 // the OAuth2 refresh tokens. 48 PolicyOAuth2TokenFetcher(net::URLRequestContextGetter* auth_context_getter, 49 net::URLRequestContextGetter* system_context_getter, 50 const TokenCallback& callback); 51 52 virtual ~PolicyOAuth2TokenFetcher(); 53 54 // Starts process of minting device management service OAuth2 access token. 55 void Start(); 56 57 // Returns OAuth2 tokens fetched through an authenticated cookie jar. 58 const GaiaAuthConsumer::ClientOAuthResult& oauth2_tokens() const { 59 return oauth2_tokens_; 60 } 61 62 // True if we have OAuth2 tokens that were fetched through an authenticated 63 // cookie jar. 64 bool has_oauth2_tokens() const { 65 return !oauth2_tokens_.refresh_token.empty(); 66 } 67 68 // Returns true if we have previously attempted to fetch tokens with this 69 // class and failed. 70 bool failed() const { 71 return failed_; 72 } 73 74 private: 75 // GaiaAuthConsumer overrides. 76 virtual void OnClientOAuthSuccess( 77 const GaiaAuthConsumer::ClientOAuthResult& oauth_tokens) OVERRIDE; 78 virtual void OnClientOAuthFailure( 79 const GoogleServiceAuthError& error) OVERRIDE; 80 81 // OAuth2AccessTokenConsumer overrides. 82 virtual void OnGetTokenSuccess(const std::string& access_token, 83 const base::Time& expiration_time) OVERRIDE; 84 virtual void OnGetTokenFailure(const GoogleServiceAuthError& error) OVERRIDE; 85 86 // Starts fetching OAuth2 refresh token. 87 void StartFetchingRefreshToken(); 88 89 // Starts fetching OAuth2 access token for the device management service. 90 void StartFetchingAccessToken(); 91 92 // Decides how to proceed on GAIA |error|. If the error looks temporary, 93 // retries |task| until max retry count is reached. 94 // If retry count runs out, or error condition is unrecoverable, it calls 95 // Delegate::OnOAuth2TokenFetchFailed(). 96 void RetryOnError(const GoogleServiceAuthError& error, 97 const base::Closure& task); 98 99 // Passes |token| to the |callback_|. 100 void ForwardPolicyToken(const std::string& token); 101 102 scoped_refptr<net::URLRequestContextGetter> auth_context_getter_; 103 scoped_refptr<net::URLRequestContextGetter> system_context_getter_; 104 scoped_ptr<GaiaAuthFetcher> refresh_token_fetcher_; 105 scoped_ptr<OAuth2AccessTokenFetcher> access_token_fetcher_; 106 GaiaAuthConsumer::ClientOAuthResult oauth2_tokens_; 107 108 // OAuth2 refresh token. Could come either from the outside or through 109 // refresh token fetching flow within this class. 110 std::string oauth2_refresh_token_; 111 112 // The retry counter. Increment this only when failure happened. 113 int retry_count_; 114 115 // True if we have already failed to fetch the policy. 116 bool failed_; 117 118 // The callback to invoke when done. 119 TokenCallback callback_; 120 121 DISALLOW_COPY_AND_ASSIGN(PolicyOAuth2TokenFetcher); 122}; 123 124} // namespace policy 125 126#endif // CHROME_BROWSER_CHROMEOS_POLICY_POLICY_OAUTH2_TOKEN_FETCHER_H_ 127