oauth2_token_service.h revision a1401311d1ab56c4ed0a474bd38c108f75cb0cd9 
1// Copyright 2013 The Chromium Authors. All rights reserved.
2// Use of this source code is governed by a BSD-style license that can be
3// found in the LICENSE file.
4
5#ifndef GOOGLE_APIS_GAIA_OAUTH2_TOKEN_SERVICE_H_
6#define GOOGLE_APIS_GAIA_OAUTH2_TOKEN_SERVICE_H_
7
8#include <map>
9#include <set>
10#include <string>
11
12#include "base/basictypes.h"
13#include "base/gtest_prod_util.h"
14#include "base/memory/scoped_ptr.h"
15#include "base/memory/weak_ptr.h"
16#include "base/observer_list.h"
17#include "base/threading/non_thread_safe.h"
18#include "base/time/time.h"
19#include "base/timer/timer.h"
20#include "google_apis/gaia/google_service_auth_error.h"
21#include "google_apis/gaia/oauth2_access_token_consumer.h"
22#include "google_apis/gaia/oauth2_access_token_fetcher.h"
23
24namespace net {
25class URLRequestContextGetter;
26}
27
28class GoogleServiceAuthError;
29class OAuth2AccessTokenFetcher;
30
31// Abstract base class for a service that fetches and caches OAuth2 access
32// tokens. Concrete subclasses should implement GetRefreshToken to return
33// the appropriate refresh token. Derived services might maintain refresh tokens
34// for multiple accounts.
35//
36// All calls are expected from the UI thread.
37//
38// To use this service, call StartRequest() with a given set of scopes and a
39// consumer of the request results. The consumer is required to outlive the
40// request. The request can be deleted. The consumer may be called back
41// asynchronously with the fetch results.
42//
43// - If the consumer is not called back before the request is deleted, it will
44//   never be called back.
45//   Note in this case, the actual network requests are not canceled and the
46//   cache will be populated with the fetched results; it is just the consumer
47//   callback that is aborted.
48//
49// - Otherwise the consumer will be called back with the request and the fetch
50//   results.
51//
52// The caller of StartRequest() owns the returned request and is responsible to
53// delete the request even once the callback has been invoked.
54class OAuth2TokenService : public base::NonThreadSafe {
55 public:
56  // A set of scopes in OAuth2 authentication.
57  typedef std::set<std::string> ScopeSet;
58
59  // Class representing a request that fetches an OAuth2 access token.
60  class Request {
61   public:
62    virtual ~Request();
63    virtual std::string GetAccountId() const = 0;
64   protected:
65    Request();
66  };
67
68  // Class representing the consumer of a Request passed to |StartRequest|,
69  // which will be called back when the request completes.
70  class Consumer {
71   public:
72    Consumer(const std::string& id);
73    virtual ~Consumer();
74
75    std::string id() const { return id_; }
76
77    // |request| is a Request that is started by this consumer and has
78    // completed.
79    virtual void OnGetTokenSuccess(const Request* request,
80                                   const std::string& access_token,
81                                   const base::Time& expiration_time) = 0;
82    virtual void OnGetTokenFailure(const Request* request,
83                                   const GoogleServiceAuthError& error) = 0;
84   private:
85    std::string id_;
86  };
87
88  // Classes that want to listen for refresh token availability should
89  // implement this interface and register with the AddObserver() call.
90  class Observer {
91   public:
92    // Called whenever a new login-scoped refresh token is available for
93    // account |account_id|. Once available, access tokens can be retrieved for
94    // this account.  This is called during initial startup for each token
95    // loaded.
96    virtual void OnRefreshTokenAvailable(const std::string& account_id) {}
97    // Called whenever the login-scoped refresh token becomes unavailable for
98    // account |account_id|.
99    virtual void OnRefreshTokenRevoked(const std::string& account_id) {}
100    // Called after all refresh tokens are loaded during OAuth2TokenService
101    // startup.
102    virtual void OnRefreshTokensLoaded() {}
103
104   protected:
105    virtual ~Observer() {}
106  };
107
108  // Classes that want to monitor status of access token and access token
109  // request should implement this interface and register with the
110  // AddDiagnosticsObserver() call.
111  class DiagnosticsObserver {
112   public:
113    // Called when receiving request for access token.
114    virtual void OnAccessTokenRequested(const std::string& account_id,
115                                        const std::string& consumer_id,
116                                        const ScopeSet& scopes) = 0;
117    // Called when access token fetching finished successfully or
118    // unsuccessfully. |expiration_time| are only valid with
119    // successful completion.
120    virtual void OnFetchAccessTokenComplete(const std::string& account_id,
121                                            const std::string& consumer_id,
122                                            const ScopeSet& scopes,
123                                            GoogleServiceAuthError error,
124                                            base::Time expiration_time) = 0;
125    virtual void OnTokenRemoved(const std::string& account_id,
126                                const ScopeSet& scopes) = 0;
127  };
128
129  OAuth2TokenService();
130  virtual ~OAuth2TokenService();
131
132  // Add or remove observers of this token service.
133  void AddObserver(Observer* observer);
134  void RemoveObserver(Observer* observer);
135
136  // Add or remove observers of this token service.
137  void AddDiagnosticsObserver(DiagnosticsObserver* observer);
138  void RemoveDiagnosticsObserver(DiagnosticsObserver* observer);
139
140  // Checks in the cache for a valid access token for a specified |account_id|
141  // and |scopes|, and if not found starts a request for an OAuth2 access token
142  // using the OAuth2 refresh token maintained by this instance for that
143  // |account_id|. The caller owns the returned Request.
144  // |scopes| is the set of scopes to get an access token for, |consumer| is
145  // the object that will be called back with results if the returned request
146  // is not deleted.
147  scoped_ptr<Request> StartRequest(const std::string& account_id,
148                                   const ScopeSet& scopes,
149                                   Consumer* consumer);
150
151  // This method does the same as |StartRequest| except it uses |client_id| and
152  // |client_secret| to identify OAuth client app instead of using
153  // Chrome's default values.
154  scoped_ptr<Request> StartRequestForClient(
155      const std::string& account_id,
156      const std::string& client_id,
157      const std::string& client_secret,
158      const ScopeSet& scopes,
159      Consumer* consumer);
160
161  // This method does the same as |StartRequest| except it uses the request
162  // context given by |getter| instead of using the one returned by
163  // |GetRequestContext| implemented by derived classes.
164  scoped_ptr<Request> StartRequestWithContext(
165      const std::string& account_id,
166      net::URLRequestContextGetter* getter,
167      const ScopeSet& scopes,
168      Consumer* consumer);
169
170  // Lists account IDs of all accounts with a refresh token maintained by this
171  // instance.
172  virtual std::vector<std::string> GetAccounts();
173
174  // Returns true if a refresh token exists for |account_id|. If false, calls to
175  // |StartRequest| will result in a Consumer::OnGetTokenFailure callback.
176  virtual bool RefreshTokenIsAvailable(const std::string& account_id) const = 0;
177
178  // Mark an OAuth2 |access_token| issued for |account_id| and |scopes| as
179  // invalid. This should be done if the token was received from this class,
180  // but was not accepted by the server (e.g., the server returned
181  // 401 Unauthorized). The token will be removed from the cache for the given
182  // scopes.
183  void InvalidateToken(const std::string& account_id,
184                       const ScopeSet& scopes,
185                       const std::string& access_token);
186
187  // Like |InvalidateToken| except is uses |client_id| to identity OAuth2 client
188  // app that issued the request instead of Chrome's default values.
189  void InvalidateTokenForClient(const std::string& account_id,
190                                const std::string& client_id,
191                                const ScopeSet& scopes,
192                                const std::string& access_token);
193
194
195  // Return the current number of entries in the cache.
196  int cache_size_for_testing() const;
197  void set_max_authorization_token_fetch_retries_for_testing(int max_retries);
198  // Returns the current number of pending fetchers matching given params.
199  size_t GetNumPendingRequestsForTesting(
200      const std::string& client_id,
201      const std::string& account_id,
202      const ScopeSet& scopes) const;
203
204 protected:
205  // Implements a cancelable |OAuth2TokenService::Request|, which should be
206  // operated on the UI thread.
207  // TODO(davidroche): move this out of header file.
208  class RequestImpl : public base::SupportsWeakPtr<RequestImpl>,
209                      public base::NonThreadSafe,
210                      public Request {
211   public:
212    // |consumer| is required to outlive this.
213    explicit RequestImpl(const std::string& account_id, Consumer* consumer);
214    virtual ~RequestImpl();
215
216    // Overridden from Request:
217    virtual std::string GetAccountId() const OVERRIDE;
218
219    std::string GetConsumerId() const;
220
221    // Informs |consumer_| that this request is completed.
222    void InformConsumer(const GoogleServiceAuthError& error,
223                        const std::string& access_token,
224                        const base::Time& expiration_date);
225
226   private:
227    // |consumer_| to call back when this request completes.
228    const std::string account_id_;
229    Consumer* const consumer_;
230  };
231
232  // Subclasses can override if they want to report errors to the user.
233  virtual void UpdateAuthError(
234      const std::string& account_id,
235      const GoogleServiceAuthError& error);
236
237  // Add a new entry to the cache.
238  // Subclasses can override if there are implementation-specific reasons
239  // that an access token should ever not be cached.
240  virtual void RegisterCacheEntry(const std::string& client_id,
241                                  const std::string& account_id,
242                                  const ScopeSet& scopes,
243                                  const std::string& access_token,
244                                  const base::Time& expiration_date);
245
246  // Clears the internal token cache.
247  void ClearCache();
248
249  // Clears all of the tokens belonging to |account_id| from the internal token
250  // cache. It does not matter what other parameters, like |client_id| were
251  // used to request the tokens.
252  void ClearCacheForAccount(const std::string& account_id);
253
254  // Cancels all requests that are currently in progress.
255  void CancelAllRequests();
256
257  // Cancels all requests related to a given |account_id|.
258  void CancelRequestsForAccount(const std::string& account_id);
259
260  // Called by subclasses to notify observers.
261  virtual void FireRefreshTokenAvailable(const std::string& account_id);
262  virtual void FireRefreshTokenRevoked(const std::string& account_id);
263  virtual void FireRefreshTokensLoaded();
264
265  // Fetches an OAuth token for the specified client/scopes. Virtual so it can
266  // be overridden for tests and for platform-specific behavior on Android.
267  virtual void FetchOAuth2Token(RequestImpl* request,
268                                const std::string& account_id,
269                                net::URLRequestContextGetter* getter,
270                                const std::string& client_id,
271                                const std::string& client_secret,
272                                const ScopeSet& scopes);
273
274  // Creates an access token fetcher for the given account id.
275  //
276  // Subclasses should override to create an access token fetcher for the given
277  // |account_id|. This method is only called if subclasses use the default
278  // implementation of |FetchOAuth2Token|.
279  virtual OAuth2AccessTokenFetcher* CreateAccessTokenFetcher(
280      const std::string& account_id,
281      net::URLRequestContextGetter* getter,
282      OAuth2AccessTokenConsumer* consumer) = 0;
283
284  // Invalidates the |access_token| issued for |account_id|, |client_id| and
285  // |scopes|. Virtual so it can be overriden for tests and for platform-
286  // specifc behavior.
287  virtual void InvalidateOAuth2Token(const std::string& account_id,
288                                     const std::string& client_id,
289                                     const ScopeSet& scopes,
290                                     const std::string& access_token);
291
292 private:
293  class Fetcher;
294  friend class Fetcher;
295
296  // The parameters used to fetch an OAuth2 access token.
297  struct RequestParameters {
298    RequestParameters(const std::string& client_id,
299                      const std::string& account_id,
300                      const ScopeSet& scopes);
301    ~RequestParameters();
302    bool operator<(const RequestParameters& params) const;
303
304    // OAuth2 client id.
305    std::string client_id;
306    // Account id for which the request is made.
307    std::string account_id;
308    // URL scopes for the requested access token.
309    ScopeSet scopes;
310  };
311
312  typedef std::map<RequestParameters, Fetcher*> PendingFetcherMap;
313
314  // Derived classes must provide a request context used for fetching access
315  // tokens with the |StartRequest| method.
316  virtual net::URLRequestContextGetter* GetRequestContext() = 0;
317
318  // Struct that contains the information of an OAuth2 access token.
319  struct CacheEntry {
320    std::string access_token;
321    base::Time expiration_date;
322  };
323
324  // This method does the same as |StartRequestWithContext| except it
325  // uses |client_id| and |client_secret| to identify OAuth
326  // client app instead of using Chrome's default values.
327  scoped_ptr<Request> StartRequestForClientWithContext(
328      const std::string& account_id,
329      net::URLRequestContextGetter* getter,
330      const std::string& client_id,
331      const std::string& client_secret,
332      const ScopeSet& scopes,
333      Consumer* consumer);
334
335  // Returns true if GetCacheEntry would return a valid cache entry for the
336  // given scopes.
337  bool HasCacheEntry(const RequestParameters& client_scopes);
338
339  // Posts a task to fire the Consumer callback with the cached token.  Must
340  // Must only be called if HasCacheEntry() returns true.
341  void StartCacheLookupRequest(RequestImpl* request,
342                               const RequestParameters& client_scopes,
343                               Consumer* consumer);
344
345  // Returns a currently valid OAuth2 access token for the given set of scopes,
346  // or NULL if none have been cached. Note the user of this method should
347  // ensure no entry with the same |client_scopes| is added before the usage of
348  // the returned entry is done.
349  const CacheEntry* GetCacheEntry(const RequestParameters& client_scopes);
350
351  // Removes an access token for the given set of scopes from the cache.
352  // Returns true if the entry was removed, otherwise false.
353  bool RemoveCacheEntry(const RequestParameters& client_scopes,
354                        const std::string& token_to_remove);
355
356  // Called when |fetcher| finishes fetching.
357  void OnFetchComplete(Fetcher* fetcher);
358
359  // Called when a number of fetchers need to be canceled.
360  void CancelFetchers(std::vector<Fetcher*> fetchers_to_cancel);
361
362  // The cache of currently valid tokens.
363  typedef std::map<RequestParameters, CacheEntry> TokenCache;
364  TokenCache token_cache_;
365
366  // A map from fetch parameters to a fetcher that is fetching an OAuth2 access
367  // token using these parameters.
368  PendingFetcherMap pending_fetchers_;
369
370  // List of observers to notify when refresh token availability changes.
371  // Makes sure list is empty on destruction.
372  ObserverList<Observer, true> observer_list_;
373
374  // List of observers to notify when access token status changes.
375  ObserverList<DiagnosticsObserver, true> diagnostics_observer_list_;
376
377  // Maximum number of retries in fetching an OAuth2 access token.
378  static int max_fetch_retry_num_;
379
380  FRIEND_TEST_ALL_PREFIXES(OAuth2TokenServiceTest, RequestParametersOrderTest);
381  FRIEND_TEST_ALL_PREFIXES(OAuth2TokenServiceTest,
382                           SameScopesRequestedForDifferentClients);
383
384  DISALLOW_COPY_AND_ASSIGN(OAuth2TokenService);
385};
386
387#endif  // GOOGLE_APIS_GAIA_OAUTH2_TOKEN_SERVICE_H_
388