Google Git
Sign in
chromium / chromium / src.git / 793bf4990a4d8a6bffb0007e5f47f26e15791632 / . / chrome / browser / ui / webui / settings / chromeos / account_manager_handler.cc
blob: 24a055ec3e5993902325ffb6ec19f51c83ccff6d [file] [log] [blame]
// Copyright 2018 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/ui/webui/settings/chromeos/account_manager_handler.h"
#include <utility>
#include "base/bind.h"
#include "base/bind_helpers.h"
#include "base/logging.h"
#include "base/macros.h"
#include "base/values.h"
#include "chrome/browser/chromeos/profiles/profile_helper.h"
#include "chrome/browser/policy/profile_policy_connector.h"
#include "chrome/browser/profiles/profile.h"
#include "chrome/browser/ui/webui/chromeos/account_manager_welcome_dialog.h"
#include "chrome/browser/ui/webui/settings/settings_page_ui_handler.h"
#include "chrome/browser/ui/webui/signin/inline_login_handler_dialog_chromeos.h"
#include "chromeos/components/account_manager/account_manager_factory.h"
#include "components/user_manager/user.h"
#include "google_apis/gaia/google_service_auth_error.h"
#include "third_party/skia/include/core/SkBitmap.h"
#include "ui/base/resource/resource_bundle.h"
#include "ui/base/webui/web_ui_util.h"
#include "ui/chromeos/resources/grit/ui_chromeos_resources.h"
#include "ui/gfx/image/image_skia.h"
namespace chromeos {
namespace settings {
namespace {
constexpr char kFamilyLink[] = "Family Link";
std::string GetEnterpriseDomainFromUsername(const std::string& username) {
size_t email_separator_pos = username.find('@');
bool is_email = email_separator_pos != std::string::npos &&
email_separator_pos < username.length() - 1;
if (!is_email)
return std::string();
return gaia::ExtractDomainName(username);
}
AccountManager::AccountKey GetAccountKeyFromJsCallback(
const base::DictionaryValue* const dictionary) {
const base::Value* id_value = dictionary->FindKey("id");
DCHECK(id_value);
const std::string id = id_value->GetString();
DCHECK(!id.empty());
const base::Value* account_type_value = dictionary->FindKey("accountType");
DCHECK(account_type_value);
const int account_type_int = account_type_value->GetInt();
DCHECK((account_type_int >=
account_manager::AccountType::ACCOUNT_TYPE_UNSPECIFIED) &&
(account_type_int <=
account_manager::AccountType::ACCOUNT_TYPE_ACTIVE_DIRECTORY));
const account_manager::AccountType account_type =
static_cast<account_manager::AccountType>(account_type_int);
return AccountManager::AccountKey{id, account_type};
}
bool IsSameAccount(const AccountManager::AccountKey& account_key,
const AccountId& account_id) {
switch (account_key.account_type) {
case chromeos::account_manager::AccountType::ACCOUNT_TYPE_GAIA:
return (account_id.GetAccountType() == AccountType::GOOGLE) &&
(account_id.GetGaiaId() == account_key.id);
case chromeos::account_manager::AccountType::ACCOUNT_TYPE_ACTIVE_DIRECTORY:
return (account_id.GetAccountType() == AccountType::ACTIVE_DIRECTORY) &&
(account_id.GetObjGuid() == account_key.id);
case chromeos::account_manager::AccountType::ACCOUNT_TYPE_UNSPECIFIED:
return false;
}
}
} // namespace
AccountManagerUIHandler::AccountManagerUIHandler(
AccountManager* account_manager,
identity::IdentityManager* identity_manager)
: account_manager_(account_manager),
identity_manager_(identity_manager),
account_manager_observer_(this),
identity_manager_observer_(this),
weak_factory_(this) {
DCHECK(account_manager_);
DCHECK(identity_manager_);
}
AccountManagerUIHandler::~AccountManagerUIHandler() = default;
void AccountManagerUIHandler::RegisterMessages() {
web_ui()->RegisterMessageCallback(
"getAccounts",
base::BindRepeating(&AccountManagerUIHandler::HandleGetAccounts,
weak_factory_.GetWeakPtr()));
web_ui()->RegisterMessageCallback(
"addAccount",
base::BindRepeating(&AccountManagerUIHandler::HandleAddAccount,
weak_factory_.GetWeakPtr()));
web_ui()->RegisterMessageCallback(
"reauthenticateAccount",
base::BindRepeating(&AccountManagerUIHandler::HandleReauthenticateAccount,
weak_factory_.GetWeakPtr()));
web_ui()->RegisterMessageCallback(
"removeAccount",
base::BindRepeating(&AccountManagerUIHandler::HandleRemoveAccount,
weak_factory_.GetWeakPtr()));
web_ui()->RegisterMessageCallback(
"showWelcomeDialogIfRequired",
base::BindRepeating(
&AccountManagerUIHandler::HandleShowWelcomeDialogIfRequired,
weak_factory_.GetWeakPtr()));
}
void AccountManagerUIHandler::HandleGetAccounts(const base::ListValue* args) {
AllowJavascript();
CHECK(!args->GetList().empty());
base::Value callback_id = args->GetList()[0].Clone();
account_manager_->GetAccounts(
base::BindOnce(&AccountManagerUIHandler::OnGetAccounts,
weak_factory_.GetWeakPtr(), std::move(callback_id)));
}
void AccountManagerUIHandler::OnGetAccounts(
base::Value callback_id,
const std::vector<AccountManager::Account>& stored_accounts) {
base::ListValue accounts;
const AccountId device_account_id =
ProfileHelper::Get()
->GetUserByProfile(Profile::FromWebUI(web_ui()))
->GetAccountId();
base::DictionaryValue device_account;
for (const auto& stored_account : stored_accounts) {
const AccountManager::AccountKey& account_key = stored_account.key;
// We are only interested in listing GAIA accounts.
if (account_key.account_type !=
account_manager::AccountType::ACCOUNT_TYPE_GAIA) {
continue;
}
base::DictionaryValue account;
account.SetString("id", account_key.id);
account.SetInteger("accountType", account_key.account_type);
account.SetBoolean("isDeviceAccount", false);
base::Optional<AccountInfo> maybe_account_info =
identity_manager_->FindAccountInfoForAccountWithRefreshTokenByGaiaId(
account_key.id);
DCHECK(maybe_account_info.has_value());
account.SetBoolean(
"isSignedIn",
!identity_manager_->HasAccountWithRefreshTokenInPersistentErrorState(
maybe_account_info->account_id));
account.SetString("fullName", maybe_account_info->full_name);
account.SetString("email", stored_account.raw_email);
if (!maybe_account_info->account_image.IsEmpty()) {
account.SetString("pic",
webui::GetBitmapDataUrl(
maybe_account_info->account_image.AsBitmap()));
} else {
gfx::ImageSkia default_icon =
*ui::ResourceBundle::GetSharedInstance().GetImageSkiaNamed(
IDR_LOGIN_DEFAULT_USER);
account.SetString("pic",
webui::GetBitmapDataUrl(
default_icon.GetRepresentation(1.0f).GetBitmap()));
}
account.SetBoolean("unmigrated",
account_manager_->HasDummyGaiaToken(account_key));
if (IsSameAccount(account_key, device_account_id)) {
device_account = std::move(account);
} else {
accounts.GetList().push_back(std::move(account));
}
}
// Device account must show up at the top.
if (!device_account.empty()) {
device_account.SetBoolean("isDeviceAccount", true);
// Check if user is managed.
const Profile* const profile = Profile::FromWebUI(web_ui());
if (profile->IsChild()) {
device_account.SetString("organization", kFamilyLink);
} else if (profile->GetProfilePolicyConnector()->IsManaged()) {
device_account.SetString(
"organization",
GetEnterpriseDomainFromUsername(
identity_manager_->GetPrimaryAccountInfo().email));
}
accounts.GetList().insert(accounts.GetList().begin(),
std::move(device_account));
}
ResolveJavascriptCallback(callback_id, accounts);
}
void AccountManagerUIHandler::HandleAddAccount(const base::ListValue* args) {
AllowJavascript();
InlineLoginHandlerDialogChromeOS::Show();
}
void AccountManagerUIHandler::HandleReauthenticateAccount(
const base::ListValue* args) {
AllowJavascript();
CHECK(!args->GetList().empty());
const std::string& account_email = args->GetList()[0].GetString();
InlineLoginHandlerDialogChromeOS::Show(account_email);
}
void AccountManagerUIHandler::HandleRemoveAccount(const base::ListValue* args) {
AllowJavascript();
const base::DictionaryValue* dictionary = nullptr;
CHECK(!args->GetList().empty());
args->GetList()[0].GetAsDictionary(&dictionary);
CHECK(dictionary);
const AccountId device_account_id =
ProfileHelper::Get()
->GetUserByProfile(Profile::FromWebUI(web_ui()))
->GetAccountId();
const AccountManager::AccountKey account_key =
GetAccountKeyFromJsCallback(dictionary);
if (IsSameAccount(account_key, device_account_id)) {
// It should not be possible to remove a device account.
return;
}
account_manager_->RemoveAccount(account_key);
}
void AccountManagerUIHandler::HandleShowWelcomeDialogIfRequired(
const base::ListValue* args) {
chromeos::AccountManagerWelcomeDialog::ShowIfRequired();
}
void AccountManagerUIHandler::OnJavascriptAllowed() {
account_manager_observer_.Add(account_manager_);
identity_manager_observer_.Add(identity_manager_);
}
void AccountManagerUIHandler::OnJavascriptDisallowed() {
account_manager_observer_.RemoveAll();
identity_manager_observer_.RemoveAll();
}
// |AccountManager::Observer| overrides. Note: We need to listen on
// |AccountManager| in addition to |IdentityManager| because there is no
// guarantee that |AccountManager| (our source of truth) will have a newly added
// account by the time |IdentityManager| has it.
void AccountManagerUIHandler::OnTokenUpserted(
const AccountManager::Account& account) {
RefreshUI();
}
void AccountManagerUIHandler::OnAccountRemoved(
const AccountManager::Account& account) {
RefreshUI();
}
// |identity::IdentityManager::Observer| overrides. For newly added accounts,
// |identity::IdentityManager| may take some time to fetch user's full name and
// account image. Whenever that is completed, we may need to update the UI with
// this new set of information. Note that we may be listening to
// |identity::IdentityManager| but we still consider |AccountManager| to be the
// source of truth for account list.
void AccountManagerUIHandler::OnExtendedAccountInfoUpdated(
const AccountInfo& info) {
RefreshUI();
}
void AccountManagerUIHandler::RefreshUI() {
FireWebUIListener("accounts-changed");
}
} // namespace settings
} // namespace chromeos