| // Copyright (c) 2012 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include "chrome/browser/ui/ash/network/enrollment_dialog_view.h" |
| |
| #include "base/bind.h" |
| #include "base/callback.h" |
| #include "base/macros.h" |
| #include "base/strings/utf_string_conversions.h" |
| #include "chrome/browser/chromeos/profiles/profile_helper.h" |
| #include "chrome/browser/profiles/profile.h" |
| #include "chrome/browser/profiles/profile_manager.h" |
| #include "chrome/browser/ui/ash/system_tray_client.h" |
| #include "chrome/browser/ui/browser_dialogs.h" |
| #include "chrome/browser/ui/browser_finder.h" |
| #include "chrome/browser/ui/browser_navigator.h" |
| #include "chrome/browser/ui/browser_navigator_params.h" |
| #include "chrome/browser/ui/views/harmony/chrome_layout_provider.h" |
| #include "chrome/grit/generated_resources.h" |
| #include "chromeos/login/login_state.h" |
| #include "chromeos/network/client_cert_util.h" |
| #include "chromeos/network/managed_network_configuration_handler.h" |
| #include "chromeos/network/network_event_log.h" |
| #include "chromeos/network/network_state.h" |
| #include "chromeos/network/network_state_handler.h" |
| #include "extensions/browser/extension_host.h" |
| #include "extensions/common/constants.h" |
| #include "ui/base/l10n/l10n_util.h" |
| #include "ui/base/page_transition_types.h" |
| #include "ui/views/controls/label.h" |
| #include "ui/views/layout/grid_layout.h" |
| #include "ui/views/widget/widget.h" |
| #include "ui/views/window/dialog_delegate.h" |
| |
| namespace chromeos { |
| |
| namespace { |
| |
| // Default width/height of the dialog. |
| const int kDefaultWidth = 350; |
| const int kDefaultHeight = 100; |
| |
| //////////////////////////////////////////////////////////////////////////////// |
| // Dialog for certificate enrollment. This displays the content from the |
| // certificate enrollment URI. |
| class EnrollmentDialogView : public views::DialogDelegateView { |
| public: |
| ~EnrollmentDialogView() override; |
| |
| static void ShowDialog(gfx::NativeWindow owning_window, |
| const std::string& network_name, |
| Profile* profile, |
| const GURL& target_uri, |
| const base::Closure& connect); |
| |
| // views::DialogDelegateView overrides |
| bool Accept() override; |
| base::string16 GetDialogButtonLabel(ui::DialogButton button) const override; |
| |
| // views::WidgetDelegate overrides |
| ui::ModalType GetModalType() const override; |
| base::string16 GetWindowTitle() const override; |
| void WindowClosing() override; |
| |
| // views::View overrides |
| gfx::Size CalculatePreferredSize() const override; |
| |
| private: |
| EnrollmentDialogView(const std::string& network_name, |
| Profile* profile, |
| const GURL& target_uri, |
| const base::Closure& connect); |
| void InitDialog(); |
| |
| bool accepted_; |
| std::string network_name_; |
| Profile* profile_; |
| GURL target_uri_; |
| base::Closure connect_; |
| bool added_cert_; |
| }; |
| |
| //////////////////////////////////////////////////////////////////////////////// |
| // EnrollmentDialogView implementation. |
| |
| EnrollmentDialogView::EnrollmentDialogView(const std::string& network_name, |
| Profile* profile, |
| const GURL& target_uri, |
| const base::Closure& connect) |
| : accepted_(false), |
| network_name_(network_name), |
| profile_(profile), |
| target_uri_(target_uri), |
| connect_(connect), |
| added_cert_(false) { |
| set_margins(ChromeLayoutProvider::Get()->GetDialogInsetsForContentType( |
| views::TEXT, views::TEXT)); |
| chrome::RecordDialogCreation(chrome::DialogIdentifier::ENROLLMENT); |
| } |
| |
| EnrollmentDialogView::~EnrollmentDialogView() {} |
| |
| // static |
| void EnrollmentDialogView::ShowDialog(gfx::NativeWindow owning_window, |
| const std::string& network_name, |
| Profile* profile, |
| const GURL& target_uri, |
| const base::Closure& connect) { |
| EnrollmentDialogView* dialog_view = |
| new EnrollmentDialogView(network_name, profile, target_uri, connect); |
| if (owning_window) { |
| views::DialogDelegate::CreateDialogWidget(dialog_view, nullptr, |
| owning_window); |
| } else { |
| SystemTrayClient::CreateUnownedDialogWidget(dialog_view); |
| } |
| dialog_view->InitDialog(); |
| views::Widget* widget = dialog_view->GetWidget(); |
| DCHECK(widget); |
| widget->Show(); |
| } |
| |
| bool EnrollmentDialogView::Accept() { |
| accepted_ = true; |
| return true; |
| } |
| |
| base::string16 EnrollmentDialogView::GetDialogButtonLabel( |
| ui::DialogButton button) const { |
| if (button == ui::DIALOG_BUTTON_OK) |
| return l10n_util::GetStringUTF16(IDS_NETWORK_ENROLLMENT_HANDLER_BUTTON); |
| return views::DialogDelegateView::GetDialogButtonLabel(button); |
| } |
| |
| ui::ModalType EnrollmentDialogView::GetModalType() const { |
| return ui::MODAL_TYPE_SYSTEM; |
| } |
| |
| base::string16 EnrollmentDialogView::GetWindowTitle() const { |
| return l10n_util::GetStringUTF16(IDS_NETWORK_ENROLLMENT_HANDLER_TITLE); |
| } |
| |
| void EnrollmentDialogView::WindowClosing() { |
| if (!accepted_) |
| return; |
| NavigateParams params(profile_, GURL(target_uri_), ui::PAGE_TRANSITION_LINK); |
| params.disposition = WindowOpenDisposition::NEW_FOREGROUND_TAB; |
| params.window_action = NavigateParams::SHOW_WINDOW; |
| Navigate(¶ms); |
| } |
| |
| gfx::Size EnrollmentDialogView::CalculatePreferredSize() const { |
| return gfx::Size(kDefaultWidth, kDefaultHeight); |
| } |
| |
| void EnrollmentDialogView::InitDialog() { |
| added_cert_ = false; |
| // Create the views and layout manager and set them up. |
| views::Label* label = new views::Label( |
| l10n_util::GetStringFUTF16(IDS_NETWORK_ENROLLMENT_HANDLER_INSTRUCTIONS, |
| base::UTF8ToUTF16(network_name_))); |
| label->SetHorizontalAlignment(gfx::ALIGN_LEFT); |
| label->SetMultiLine(true); |
| label->SetAllowCharacterBreak(true); |
| |
| views::GridLayout* grid_layout = |
| SetLayoutManager(std::make_unique<views::GridLayout>(this)); |
| |
| views::ColumnSet* columns = grid_layout->AddColumnSet(0); |
| columns->AddColumn(views::GridLayout::FILL, // Horizontal resize. |
| views::GridLayout::FILL, // Vertical resize. |
| 1, // Resize weight. |
| views::GridLayout::USE_PREF, // Size type. |
| 0, // Ignored for USE_PREF. |
| 0); // Minimum size. |
| columns = grid_layout->AddColumnSet(1); |
| |
| ChromeLayoutProvider* provider = ChromeLayoutProvider::Get(); |
| |
| columns->AddPaddingColumn( |
| 0, provider->GetDistanceMetric(DISTANCE_UNRELATED_CONTROL_HORIZONTAL)); |
| columns->AddColumn(views::GridLayout::LEADING, // Horizontal leading. |
| views::GridLayout::FILL, // Vertical resize. |
| 1, // Resize weight. |
| views::GridLayout::USE_PREF, // Size type. |
| 0, // Ignored for USE_PREF. |
| 0); // Minimum size. |
| |
| grid_layout->StartRow(0, 0); |
| grid_layout->AddView(label); |
| grid_layout->AddPaddingRow( |
| 0, |
| provider->GetDistanceMetric(views::DISTANCE_UNRELATED_CONTROL_VERTICAL)); |
| grid_layout->Layout(this); |
| } |
| |
| //////////////////////////////////////////////////////////////////////////////// |
| // Handler for certificate enrollment. |
| |
| class DialogEnrollmentDelegate { |
| public: |
| // |owning_window| is the window that will own the dialog. |
| DialogEnrollmentDelegate(gfx::NativeWindow owning_window, |
| const std::string& network_name, |
| Profile* profile); |
| ~DialogEnrollmentDelegate(); |
| |
| // EnrollmentDelegate overrides |
| bool Enroll(const std::vector<std::string>& uri_list, |
| const base::Closure& connect); |
| |
| private: |
| gfx::NativeWindow owning_window_; |
| std::string network_name_; |
| Profile* profile_; |
| |
| DISALLOW_COPY_AND_ASSIGN(DialogEnrollmentDelegate); |
| }; |
| |
| DialogEnrollmentDelegate::DialogEnrollmentDelegate( |
| gfx::NativeWindow owning_window, |
| const std::string& network_name, |
| Profile* profile) |
| : owning_window_(owning_window), |
| network_name_(network_name), |
| profile_(profile) {} |
| |
| DialogEnrollmentDelegate::~DialogEnrollmentDelegate() {} |
| |
| bool DialogEnrollmentDelegate::Enroll(const std::vector<std::string>& uri_list, |
| const base::Closure& post_action) { |
| // Keep the closure for later activation if we notice that |
| // a certificate has been added. |
| |
| // TODO(gspencer): Do something smart with the closure. At the moment it is |
| // being ignored because we don't know when the enrollment tab is closed. |
| // http://crosbug.com/30422 |
| for (std::vector<std::string>::const_iterator iter = uri_list.begin(); |
| iter != uri_list.end(); ++iter) { |
| GURL uri(*iter); |
| if (uri.IsStandard() || uri.scheme() == extensions::kExtensionScheme) { |
| // If this is a "standard" scheme, like http, ftp, etc., then open that in |
| // the enrollment dialog. |
| NET_LOG_EVENT("Showing enrollment dialog", network_name_); |
| EnrollmentDialogView::ShowDialog(owning_window_, network_name_, profile_, |
| uri, post_action); |
| return true; |
| } |
| NET_LOG_DEBUG("Nonstandard URI: " + uri.spec(), network_name_); |
| } |
| |
| // No appropriate scheme was found. |
| NET_LOG_ERROR("No usable enrollment URI", network_name_); |
| return false; |
| } |
| |
| void EnrollmentComplete(const std::string& network_id) { |
| NET_LOG_USER("Enrollment Complete", network_id); |
| } |
| |
| // Decides if the enrollment dialog is allowed in the current login state. |
| bool EnrollmentDialogAllowed(Profile* profile) { |
| // Enrollment dialog is currently not supported on the sign-in profile. |
| // This also applies to lock screen, |
| if (ProfileHelper::IsSigninProfile(profile)) |
| return false; |
| |
| chromeos::LoginState::LoggedInUserType user_type = |
| LoginState::Get()->GetLoggedInUserType(); |
| switch (user_type) { |
| case LoginState::LOGGED_IN_USER_NONE: |
| return false; |
| case LoginState::LOGGED_IN_USER_REGULAR: |
| return true; |
| case LoginState::LOGGED_IN_USER_OWNER: |
| return true; |
| case LoginState::LOGGED_IN_USER_GUEST: |
| return true; |
| case LoginState::LOGGED_IN_USER_PUBLIC_ACCOUNT: |
| return false; |
| case LoginState::LOGGED_IN_USER_SUPERVISED: |
| return true; |
| case LoginState::LOGGED_IN_USER_KIOSK_APP: |
| return false; |
| case LoginState::LOGGED_IN_USER_ARC_KIOSK_APP: |
| return false; |
| } |
| NOTREACHED(); |
| return false; |
| } |
| |
| } // namespace |
| |
| //////////////////////////////////////////////////////////////////////////////// |
| // Factory function. |
| |
| namespace enrollment { |
| |
| bool CreateEnrollmentDialog(const std::string& network_id, |
| gfx::NativeWindow owning_window) { |
| const NetworkState* network = |
| NetworkHandler::Get()->network_state_handler()->GetNetworkStateFromGuid( |
| network_id); |
| if (!network) { |
| NET_LOG_ERROR("Enrolling Unknown network", network_id); |
| return false; |
| } |
| Browser* browser = chrome::FindBrowserWithWindow(owning_window); |
| Profile* profile = |
| browser ? browser->profile() : ProfileManager::GetPrimaryUserProfile(); |
| if (!EnrollmentDialogAllowed(profile)) |
| return false; |
| std::string username_hash = ProfileHelper::GetUserIdHashFromProfile(profile); |
| |
| onc::ONCSource onc_source = onc::ONC_SOURCE_NONE; |
| const base::DictionaryValue* policy = |
| NetworkHandler::Get() |
| ->managed_network_configuration_handler() |
| ->FindPolicyByGUID(username_hash, network_id, &onc_source); |
| |
| if (!policy) |
| return false; |
| |
| client_cert::ClientCertConfig cert_config; |
| OncToClientCertConfig(onc_source, *policy, &cert_config); |
| |
| if (cert_config.client_cert_type != onc::client_cert::kPattern) |
| return false; |
| |
| if (cert_config.pattern.Empty()) |
| NET_LOG_ERROR("Certificate pattern is empty", network_id); |
| |
| if (cert_config.pattern.enrollment_uri_list().empty()) { |
| NET_LOG_EVENT("No enrollment URIs", network_id); |
| return false; |
| } |
| |
| NET_LOG_USER("Enrolling", network_id); |
| |
| DialogEnrollmentDelegate* enrollment = |
| new DialogEnrollmentDelegate(owning_window, network->name(), profile); |
| return enrollment->Enroll(cert_config.pattern.enrollment_uri_list(), |
| base::Bind(&EnrollmentComplete, network_id)); |
| } |
| |
| } // namespace enrollment |
| |
| } // namespace chromeos |
