// Copyright 2020 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "base/callback.h"
#include "base/memory/weak_ptr.h"
#include "base/observer_list_types.h"
#include "base/optional.h"
#include "base/scoped_observer.h"
#include "base/time/time.h"
#include "chrome/browser/ui/signin_view_controller_delegate.h"
#include "components/signin/public/base/signin_metrics.h"
#include "components/sync/protocol/user_consent_types.pb.h"
#include "google_apis/gaia/core_account_id.h"
class Browser;
namespace {
class ReauthWebContentsObserver;
namespace content {
class WebContents;
namespace signin {
enum class ReauthResult;
class ReauthTabHelper;
} // namespace signin
// A controller class for the Reauth UI flow.
// The reauth flow consists of:
// - Reauth confirmation webUI page. Displayed in a tab-modal dialog.
// - Gaia Reauth page. Loaded from the web. Displayed either in a tab-modal
// dialog or in a new tab if an account requires SAML authentication. May be
// approved automatically. In that case, no UI is displayed to the user.
// The Gaia reauth page is loaded in background and gets shown to the user only
// after the user confirms the reauth confirmation dialog.
class SigninReauthViewController
: public SigninViewControllerDelegate,
public SigninViewControllerDelegate::Observer {
enum class GaiaReauthType;
class Observer : public base::CheckedObserver {
// Called when the controller gets destroyed. The subclass must stop
// observing the controller when this is called.
virtual void OnReauthControllerDestroyed() {}
// Called when |reauth_type| is determined. Usually it happens when the
// Gaia Reauth page navigates.
// |reauth_type| cannot be |GaiaReauthType::kUnknown|.
virtual void OnGaiaReauthTypeDetermined(GaiaReauthType reauth_type) {}
// Called when the WebContents displaying the reauth confirmation UI has
// been swapped with Gaia reauth WebContents.
virtual void OnGaiaReauthPageShown() {}
enum class GaiaReauthPageState {
// The Gaia Reauth page is loading in background.
kStarted = 0,
// The first navigation has been committed in background.
kNavigated = 1,
// The reauth has been completed and the result is available.
kDone = 2
enum class GaiaReauthType {
kUnknown = 0,
kAutoApproved = 1,
kEmbeddedFlow = 2,
kSAMLFlow = 3
enum class UIState {
// Nothing is being displayed.
kNone = 0,
// The Reauth confirmation webUI page is being displayed in a modal dialog.
kConfirmationDialog = 1,
// The Gaia Reauth page is being displayed in a modal dialog.
kGaiaReauthDialog = 2,
// The Gaia Reauth page is being displayed in a tab.
kGaiaReauthTab = 3
// These values are persisted to logs. Entries should not be renumbered and
// numeric values should never be reused.
enum class UserAction {
// The user clicked on the confirm button in the Reauth confirmation dialog.
// The Gaia Reauth was auto-approved and did not show up as a next step.
kClickConfirmButton = 0,
// The user clicked on the next button in the Reauth confirmation dialog.
// The Gaia Reauth showed up as a next step.
kClickNextButton = 1,
// The user clicked on the cancel button in the Reauth confirmation dialog.
kClickCancelButton = 2,
// The user closed the Reauth confirmation dialog without clicking on the
// cancel button.
kCloseConfirmationDialog = 3,
// The user closed the Gaia Reauth page displayed in a dialog.
kCloseGaiaReauthDialog = 4,
// The user closed the Gaia Reauth page displayed in a tab.
kCloseGaiaReauthTab = 5,
// The user successfully authenticated on the Gaia Reauth page.
kPassGaiaReauth = 6,
kMaxValue = kPassGaiaReauth
Browser* browser,
const CoreAccountId& account_id,
signin_metrics::ReauthAccessPoint access_point,
base::OnceCallback<void(signin::ReauthResult)> reauth_callback);
SigninReauthViewController(const SigninReauthViewController&) = delete;
SigninReauthViewController& operator=(const SigninReauthViewController&) =
~SigninReauthViewController() override;
// SigninViewControllerDelegate:
void CloseModalSignin() override;
void ResizeNativeView(int height) override;
content::WebContents* GetWebContents() override;
void SetWebContents(content::WebContents* web_contents) override;
// SigninViewControllerDelegate::Observer:
void OnModalSigninClosed() override;
// Called when the user clicks the confirm button in the reauth confirmation
// dialog.
// This happens before the Gaia reauth page is shown.
void OnReauthConfirmed(
sync_pb::UserConsentTypes::AccountPasswordsConsent consent);
// Called when the user clicks the cancel button in the reauth confirmation
// dialog.
// This happens before the Gaia reauth page is shown.
void OnReauthDismissed();
// Called when the Gaia reauth page has navigated.
void OnGaiaReauthPageNavigated();
// Called when the Gaia reauth has been completed and the result is available.
void OnGaiaReauthPageComplete(signin::ReauthResult result);
void AddObserver(Observer* observer);
void RemoveObserver(Observer* observer);
GaiaReauthType gaia_reauth_type() { return gaia_reauth_type_; }
// Calls |reauth_callback_| with |result| and closes all Reauth UIs.
void CompleteReauth(signin::ReauthResult result);
// Notifies about a change in the reauth flow state. Must be called whenever
// |user_confirmed_reauth_| or |gaia_reauth_page_state_| has changed.
void OnStateChanged();
void OnGaiaReauthTypeDetermined(GaiaReauthType reauth_type);
void RecordClickOnce(UserAction click_action);
void RecordGaiaNavigationDuration();
signin::ReauthTabHelper* GetReauthTabHelper();
void ShowReauthConfirmationDialog();
void ShowGaiaReauthPage();
void ShowGaiaReauthPageInDialog();
void ShowGaiaReauthPageInNewTab();
// Controller inputs.
Browser* const browser_;
const CoreAccountId account_id_;
const signin_metrics::ReauthAccessPoint access_point_;
base::OnceCallback<void(signin::ReauthResult)> reauth_callback_;
GaiaReauthType gaia_reauth_type_ = GaiaReauthType::kUnknown;
// Dialog state useful for recording metrics.
UIState ui_state_ = UIState::kNone;
bool has_recorded_click_ = false;
base::TimeTicks reauth_start_time_{base::TimeTicks::Now()};
base::TimeTicks user_confirmed_reauth_time_{base::TimeTicks::Max()};
// Delegate displaying the dialog.
SigninViewControllerDelegate* dialog_delegate_ = nullptr;
// WebContents of the Gaia reauth page.
std::unique_ptr<content::WebContents> reauth_web_contents_;
std::unique_ptr<ReauthWebContentsObserver> reauth_web_contents_observer_;
// Raw pointer is only set if |reauth_web_contents_| was transferred to a new
// tab for the SAML flow.
content::WebContents* raw_reauth_web_contents_ = nullptr;
// The state of the reauth flow.
bool user_confirmed_reauth_ = false;
base::Optional<sync_pb::UserConsentTypes::AccountPasswordsConsent> consent_;
GaiaReauthPageState gaia_reauth_page_state_ = GaiaReauthPageState::kStarted;
base::Optional<signin::ReauthResult> gaia_reauth_page_result_;
base::ObserverList<Observer, true> observer_list_;
base::WeakPtrFactory<SigninReauthViewController> weak_ptr_factory_{this};