Google Git
Sign in
android / platform / external / chromium_org / a3f6a49ab37290eeeb8db0f41ec0f1cb74a68be7 / . / chrome / browser / signin / profile_oauth2_token_service.h
blob: b9a6d53581a4ef9b8c8693f80b0e533d68dec292 [file] [log] [blame]
// Copyright 2013 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef CHROME_BROWSER_SIGNIN_PROFILE_OAUTH2_TOKEN_SERVICE_H_
#define CHROME_BROWSER_SIGNIN_PROFILE_OAUTH2_TOKEN_SERVICE_H_
#include <string>
#include "base/gtest_prod_util.h"
#include "base/memory/linked_ptr.h"
#include "chrome/browser/signin/signin_global_error.h"
#include "components/browser_context_keyed_service/browser_context_keyed_service.h"
#include "google_apis/gaia/oauth2_token_service.h"
namespace net {
class URLRequestContextGetter;
}
class GoogleServiceAuthError;
class Profile;
class SigninGlobalError;
// ProfileOAuth2TokenService is a BrowserContextKeyedService that retrieves
// OAuth2 access tokens for a given set of scopes using the OAuth2 login
// refresh tokens.
//
// See |OAuth2TokenService| for usage details.
//
// Note: after StartRequest returns, in-flight requests will continue
// even if the TokenService refresh token that was used to initiate
// the request changes or is cleared. When the request completes,
// Consumer::OnGetTokenSuccess will be invoked, but the access token
// won't be cached.
//
// Note: requests should be started from the UI thread. To start a
// request from other thread, please use ProfileOAuth2TokenServiceRequest.
class ProfileOAuth2TokenService : public OAuth2TokenService,
public BrowserContextKeyedService {
public:
// Initializes this token service with the profile.
virtual void Initialize(Profile* profile);
// Loads credentials from a backing persistent store to make them available
// after service is used between profile restarts.
// Usually it's not necessary to directly call this method.
// TODO(bauerb): Make this method protected once this class initializes itself
// automatically.
virtual void LoadCredentials();
// BrowserContextKeyedService implementation.
virtual void Shutdown() OVERRIDE;
// Gets an account id of the primary account related to the profile.
std::string GetPrimaryAccountId();
// Lists account IDs of all accounts with a refresh token.
virtual std::vector<std::string> GetAccounts() OVERRIDE;
// Updates a |refresh_token| for an |account_id|. Credentials are persisted,
// and available through |LoadCredentials| after service is restarted.
virtual void UpdateCredentials(const std::string& account_id,
const std::string& refresh_token);
// Revokes credentials related to |account_id|.
void RevokeCredentials(const std::string& account_id);
// Revokes all credentials handled by the object.
void RevokeAllCredentials();
SigninGlobalError* signin_global_error() {
return signin_global_error_.get();
}
const SigninGlobalError* signin_global_error() const {
return signin_global_error_.get();
}
Profile* profile() const { return profile_; }
protected:
class AccountInfo : public SigninGlobalError::AuthStatusProvider {
public:
AccountInfo(ProfileOAuth2TokenService* token_service,
const std::string& account_id,
const std::string& refresh_token);
virtual ~AccountInfo();
const std::string& refresh_token() const { return refresh_token_; }
void set_refresh_token(const std::string& token) {
refresh_token_ = token;
}
void SetLastAuthError(const GoogleServiceAuthError& error);
// SigninGlobalError::AuthStatusProvider implementation.
virtual std::string GetAccountId() const OVERRIDE;
virtual GoogleServiceAuthError GetAuthStatus() const OVERRIDE;
private:
ProfileOAuth2TokenService* token_service_;
std::string account_id_;
std::string refresh_token_;
GoogleServiceAuthError last_auth_error_;
DISALLOW_COPY_AND_ASSIGN(AccountInfo);
};
// Maps the |account_id| of accounts known to ProfileOAuth2TokenService
// to information about the account.
typedef std::map<std::string, linked_ptr<AccountInfo> > AccountInfoMap;
ProfileOAuth2TokenService();
virtual ~ProfileOAuth2TokenService();
// OAuth2TokenService overrides.
virtual std::string GetRefreshToken(const std::string& account_id) OVERRIDE;
// OAuth2TokenService implementation.
virtual net::URLRequestContextGetter* GetRequestContext() OVERRIDE;
// Updates the internal cache of the result from the most-recently-completed
// auth request (used for reporting errors to the user).
virtual void UpdateAuthError(
const std::string& account_id,
const GoogleServiceAuthError& error) OVERRIDE;
// Persists credentials for |account_id|. Enables overriding for
// testing purposes, or other cases, when accessing the DB is not desired.
virtual void PersistCredentials(const std::string& account_id,
const std::string& refresh_token);
// Clears credentials persisted for |account_id|. Enables overriding for
// testing purposes, or other cases, when accessing the DB is not desired.
virtual void ClearPersistedCredentials(const std::string& account_id);
AccountInfoMap& refresh_tokens() { return refresh_tokens_; }
private:
FRIEND_TEST_ALL_PREFIXES(MutableProfileOAuth2TokenServiceTest,
TokenServiceUpdateClearsCache);
FRIEND_TEST_ALL_PREFIXES(MutableProfileOAuth2TokenServiceTest,
PersistenceDBUpgrade);
FRIEND_TEST_ALL_PREFIXES(MutableProfileOAuth2TokenServiceTest,
PersistenceLoadCredentials);
// Revokes the refresh token on the server.
virtual void RevokeCredentialsOnServer(const std::string& refresh_token);
// The profile with which this instance was initialized, or NULL.
Profile* profile_;
// In memory refresh token store mapping account_id to refresh_token.
AccountInfoMap refresh_tokens_;
// Used to show auth errors in the wrench menu. The SigninGlobalError is
// different than most GlobalErrors in that its lifetime is controlled by
// ProfileOAuth2TokenService (so we can expose a reference for use in the
// wrench menu).
scoped_ptr<SigninGlobalError> signin_global_error_;
DISALLOW_COPY_AND_ASSIGN(ProfileOAuth2TokenService);
};
#endif // CHROME_BROWSER_SIGNIN_PROFILE_OAUTH2_TOKEN_SERVICE_H_