| // Copyright 2014 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #ifndef COMPONENTS_PASSWORD_MANAGER_CORE_BROWSER_PASSWORD_MANAGER_CLIENT_H_ |
| #define COMPONENTS_PASSWORD_MANAGER_CORE_BROWSER_PASSWORD_MANAGER_CLIENT_H_ |
| |
| #include <map> |
| #include <memory> |
| #include <string> |
| #include <vector> |
| |
| #include "base/callback.h" |
| #include "base/macros.h" |
| #include "base/memory/scoped_refptr.h" |
| #include "components/autofill/core/common/mojom/autofill_types.mojom.h" |
| #include "components/autofill/core/common/password_form.h" |
| #include "components/password_manager/core/browser/credentials_filter.h" |
| #include "components/password_manager/core/browser/hsts_query.h" |
| #include "components/password_manager/core/browser/http_auth_manager.h" |
| #include "components/password_manager/core/browser/leak_detection_dialog_utils.h" |
| #include "components/password_manager/core/browser/manage_passwords_referrer.h" |
| #include "components/password_manager/core/browser/password_manager_metrics_util.h" |
| #include "components/password_manager/core/browser/password_store.h" |
| #include "components/safe_browsing/buildflags.h" |
| #include "net/cert/cert_status_flags.h" |
| #include "services/metrics/public/cpp/ukm_recorder.h" |
| |
| class PrefService; |
| |
| namespace autofill { |
| class AutofillDownloadManager; |
| class LogManager; |
| } // namespace autofill |
| |
| namespace favicon { |
| class FaviconService; |
| } |
| |
| namespace network { |
| class SharedURLLoaderFactory; |
| } // namespace network |
| |
| namespace signin { |
| class IdentityManager; |
| } // namespace signin |
| |
| class GURL; |
| |
| #if defined(ON_FOCUS_PING_ENABLED) |
| namespace safe_browsing { |
| class PasswordProtectionService; |
| } |
| #endif |
| |
| namespace password_manager { |
| |
| class PasswordFeatureManager; |
| class PasswordFormManagerForUI; |
| class PasswordManager; |
| class PasswordManagerDriver; |
| class PasswordManagerMetricsRecorder; |
| class HttpAuthManager; |
| class PasswordRequirementsService; |
| class PasswordStore; |
| |
| enum SyncState { |
| NOT_SYNCING, |
| SYNCING_NORMAL_ENCRYPTION, |
| SYNCING_WITH_CUSTOM_PASSPHRASE, |
| ACCOUNT_PASSWORDS_ACTIVE_NORMAL_ENCRYPTION |
| }; |
| |
| // An abstraction of operations that depend on the embedders (e.g. Chrome) |
| // environment. |
| class PasswordManagerClient { |
| public: |
| using CredentialsCallback = |
| base::Callback<void(const autofill::PasswordForm*)>; |
| |
| PasswordManagerClient() {} |
| virtual ~PasswordManagerClient() {} |
| |
| // Is saving new data for password autofill and filling of saved data enabled |
| // for the current profile and page? For example, saving is disabled in |
| // Incognito mode. |url| describes the URL to save the password for. It is not |
| // necessary the URL of the current page but can be a URL of a proxy or the |
| // page that hosted the form. |
| virtual bool IsSavingAndFillingEnabled(const GURL& url) const; |
| |
| // Checks if filling is enabled on the current page. Filling is disabled in |
| // the presence of SSL errors on a page. |url| describes the URL to fill the |
| // password for. It is not necessary the URL of the current page but can be a |
| // URL of a proxy or subframe. |
| virtual bool IsFillingEnabled(const GURL& url) const; |
| |
| // Checks if manual filling fallback is enabled for the page that has |url| |
| // address. |
| virtual bool IsFillingFallbackEnabled(const GURL& url) const; |
| |
| // Checks asynchronously whether HTTP Strict Transport Security (HSTS) is |
| // active for the host of the given origin. Notifies |callback| with the |
| // result on the calling thread. |
| virtual void PostHSTSQueryForHost(const GURL& origin, |
| HSTSCallback callback) const; |
| |
| // Checks if the Credential Manager API is allowed to run on the page. It's |
| // not allowed while prerendering and the pre-rendered WebContents will be |
| // destroyed in this case. |
| // Even if the method returns true the API may still be disabled or limited |
| // depending on the method called because IsFillingEnabled() and |
| // IsSavingAndFillingEnabled are respected. |
| virtual bool OnCredentialManagerUsed(); |
| |
| // Informs the embedder of a password form that can be saved or updated in |
| // password store if the user allows it. The embedder is not required to |
| // prompt the user if it decides that this form doesn't need to be saved or |
| // updated. Returns true if the prompt was indeed displayed. |
| // There are 3 different cases when |update_password| == true: |
| // 1.A change password form was submitted and the user has only one stored |
| // credential. Then form_to_save.GetPendingCredentials() should correspond to |
| // the unique element from |form_to_save.best_matches_|. |
| // 2.A change password form was submitted and the user has more than one |
| // stored credential. Then we shouldn't expect anything from |
| // form_to_save.GetPendingCredentials() except correct origin, since we don't |
| // know which credentials should be updated. |
| // 3.A sign-in password form was submitted with a password different from |
| // the stored one. In this case form_to_save.IsPasswordOverridden() == true |
| // and form_to_save.GetPendingCredentials() should correspond to the |
| // credential that was overidden. |
| virtual bool PromptUserToSaveOrUpdatePassword( |
| std::unique_ptr<PasswordFormManagerForUI> form_to_save, |
| bool is_update) = 0; |
| |
| // Informs the embedder that the onboarding experience should be shown. |
| // This will also offer the ability to actually save the password. |
| // Returns true if both the onboarding and the saving prompt were displayed. |
| virtual bool ShowOnboarding( |
| std::unique_ptr<PasswordFormManagerForUI> form_to_save) = 0; |
| |
| // Informs the embedder that the user started typing a password and a password |
| // prompt should be available on click on the omnibox icon. |
| virtual void ShowManualFallbackForSaving( |
| std::unique_ptr<PasswordFormManagerForUI> form_to_save, |
| bool has_generated_password, |
| bool is_update) = 0; |
| |
| // Informs the embedder that the user cleared the password field and the |
| // fallback for password saving should be not available. |
| virtual void HideManualFallbackForSaving() = 0; |
| |
| // Informs the embedder that the focus changed to a different input in the |
| // same frame (e.g. tabbed from email to password field). |
| virtual void FocusedInputChanged( |
| PasswordManagerDriver* driver, |
| autofill::mojom::FocusedFieldType focused_field_type) = 0; |
| |
| // Informs the embedder of a password forms that the user should choose from. |
| // Returns true if the prompt is indeed displayed. If the prompt is not |
| // displayed, returns false and does not call |callback|. |
| // |callback| should be invoked with the chosen form. |
| virtual bool PromptUserToChooseCredentials( |
| std::vector<std::unique_ptr<autofill::PasswordForm>> local_forms, |
| const GURL& origin, |
| const CredentialsCallback& callback) = 0; |
| |
| // Instructs the client to show the Touch To Fill UI. |
| virtual void ShowTouchToFill(PasswordManagerDriver* driver); |
| |
| // Informs the embedder that the user has manually requested to generate a |
| // password in the focused password field. |
| virtual void GeneratePassword(); |
| |
| // Informs the embedder that automatic signing in just happened. The form |
| // returned to the site is |local_forms[0]|. |local_forms| contains all the |
| // local credentials for the site. |origin| is a URL of the site the user was |
| // auto signed in to. |
| virtual void NotifyUserAutoSignin( |
| std::vector<std::unique_ptr<autofill::PasswordForm>> local_forms, |
| const GURL& origin) = 0; |
| |
| // Inform the embedder that automatic signin would have happened if the user |
| // had been through the first-run experience to ensure their opt-in. |form| |
| // contains the PasswordForm that would have been delivered. |
| virtual void NotifyUserCouldBeAutoSignedIn( |
| std::unique_ptr<autofill::PasswordForm> form) = 0; |
| |
| // Inform the embedder that the user signed in with a saved credential. |
| // |form| contains the form used. |
| virtual void NotifySuccessfulLoginWithExistingPassword( |
| const autofill::PasswordForm& form) = 0; |
| |
| // Inform the embedder that the site called 'store()'. |
| virtual void NotifyStorePasswordCalled() = 0; |
| |
| // Called when a password is saved in an automated fashion. Embedder may |
| // inform the user that this save has occured. |
| virtual void AutomaticPasswordSave( |
| std::unique_ptr<PasswordFormManagerForUI> saved_form_manager) = 0; |
| |
| // Called when a password is autofilled. |best_matches| contains the |
| // PasswordForm into which a password was filled: the client may choose to |
| // save this to the PasswordStore, for example. |origin| is the origin of the |
| // form into which a password was filled. |federated_matches| are the stored |
| // federated matches relevant to the filled form, this argument may be null. |
| // They are never filled, but might be needed in the UI, for example. Default |
| // implementation is a noop. |
| virtual void PasswordWasAutofilled( |
| const std::map<base::string16, const autofill::PasswordForm*>& |
| best_matches, |
| const GURL& origin, |
| const std::vector<const autofill::PasswordForm*>* federated_matches); |
| |
| // Sends username/password from |preferred_match| for filling in the http auth |
| // prompt. |
| virtual void AutofillHttpAuth(const autofill::PasswordForm& preferred_match, |
| const PasswordFormManagerForUI* form_manager); |
| |
| // Informs the embedder that user credentials were leaked. |
| virtual void NotifyUserCredentialsWereLeaked(CredentialLeakType leak_type, |
| const GURL& origin); |
| |
| // Gets prefs associated with this embedder. |
| virtual PrefService* GetPrefs() const = 0; |
| |
| // Returns the profile PasswordStore associated with this instance. |
| virtual PasswordStore* GetProfilePasswordStore() const = 0; |
| |
| // Returns the account PasswordStore associated with this instance. |
| virtual PasswordStore* GetAccountPasswordStore() const = 0; |
| |
| // Reports whether and how passwords are synced in the embedder. The default |
| // implementation always returns NOT_SYNCING. |
| virtual SyncState GetPasswordSyncState() const; |
| |
| // Returns true if last navigation page had HTTP error i.e 5XX or 4XX |
| virtual bool WasLastNavigationHTTPError() const; |
| |
| // Obtains the cert status for the main frame. |
| virtual net::CertStatus GetMainFrameCertStatus() const; |
| |
| // If this browsing session should not be persisted. |
| virtual bool IsIncognito() const; |
| |
| // Returns the PasswordManager associated with this client. The non-const |
| // version calls the const one. |
| PasswordManager* GetPasswordManager(); |
| virtual const PasswordManager* GetPasswordManager() const; |
| |
| virtual const PasswordFeatureManager* GetPasswordFeatureManager() const = 0; |
| |
| // Returns the HttpAuthManager associated with this client. |
| virtual HttpAuthManager* GetHttpAuthManager(); |
| |
| // Returns the AutofillDownloadManager for votes uploading. |
| virtual autofill::AutofillDownloadManager* GetAutofillDownloadManager(); |
| |
| // Returns the main frame URL. |
| virtual const GURL& GetMainFrameURL() const; |
| |
| // Returns true if the main frame URL has a secure origin. |
| virtual bool IsMainFrameSecure() const; |
| |
| virtual const GURL& GetLastCommittedEntryURL() const = 0; |
| |
| // Use this to filter credentials before handling them in password manager. |
| virtual const CredentialsFilter* GetStoreResultFilter() const = 0; |
| |
| // Returns a LogManager instance. |
| virtual const autofill::LogManager* GetLogManager() const; |
| |
| // Record that we saw a password field on this page. |
| virtual void AnnotateNavigationEntry(bool has_password_field); |
| |
| // Returns the current best guess as to the page's display language. |
| virtual std::string GetPageLanguage() const; |
| |
| #if defined(ON_FOCUS_PING_ENABLED) |
| // Return the PasswordProtectionService associated with this instance. |
| virtual safe_browsing::PasswordProtectionService* |
| GetPasswordProtectionService() const = 0; |
| |
| // Checks the safe browsing reputation of the webpage when the |
| // user focuses on a username/password field. This is used for reporting |
| // only, and won't trigger a warning. |
| virtual void CheckSafeBrowsingReputation(const GURL& form_action, |
| const GURL& frame_url) = 0; |
| #endif |
| |
| #if defined(SYNC_PASSWORD_REUSE_DETECTION_ENABLED) |
| // Checks the safe browsing reputation of the webpage where password reuse |
| // happens. This is called by the PasswordReuseDetectionManager when a |
| // protected password is typed on the wrong domain. This may trigger a |
| // warning dialog if it looks like the page is phishy. |
| // The |username| is the user name of the reused password. The user name |
| // can be an email or a username for a non-GAIA or saved-password reuse. No |
| // validation has been done on it. |
| virtual void CheckProtectedPasswordEntry( |
| metrics_util::PasswordType reused_password_type, |
| const std::string& username, |
| const std::vector<std::string>& matching_domains, |
| bool password_field_exists) = 0; |
| #endif |
| |
| #if defined(SYNC_PASSWORD_REUSE_WARNING_ENABLED) |
| // Records a Chrome Sync event that GAIA password reuse was detected. |
| virtual void LogPasswordReuseDetectedEvent() = 0; |
| #endif |
| |
| // Gets a ukm::SourceId that is associated with the WebContents object |
| // and its last committed main frame navigation. |
| virtual ukm::SourceId GetUkmSourceId() = 0; |
| |
| // Gets a metrics recorder for the currently committed navigation. |
| // As PasswordManagerMetricsRecorder submits metrics on destruction, a new |
| // instance will be returned for each committed navigation. A caller must not |
| // hold on to the pointer. This method returns a nullptr if the client |
| // does not support metrics recording. |
| virtual PasswordManagerMetricsRecorder* GetMetricsRecorder() = 0; |
| |
| // Gets the PasswordRequirementsService associated with the client. It is |
| // valid that this method returns a nullptr if the PasswordRequirementsService |
| // has not been implemented for a specific platform or the context is an |
| // incognito context. Callers should guard against this. |
| virtual PasswordRequirementsService* GetPasswordRequirementsService(); |
| |
| // Returns the favicon service used to retrieve icons for an origin. |
| virtual favicon::FaviconService* GetFaviconService(); |
| |
| // Returns the identity manager for profile. |
| virtual signin::IdentityManager* GetIdentityManager() = 0; |
| |
| // Returns a pointer to the URLLoaderFactory owned by the storage partition of |
| // the current profile. |
| virtual scoped_refptr<network::SharedURLLoaderFactory> |
| GetURLLoaderFactory() = 0; |
| |
| // Whether the primary account of the current profile is under Advanced |
| // Protection - a type of Google Account that helps protect our most at-risk |
| // users. |
| virtual bool IsUnderAdvancedProtection() const; |
| |
| // Causes all live PasswordFormManager objects to query the password store |
| // again. Results in updating the fill information on the page. |
| virtual void UpdateFormManagers() {} |
| |
| // Causes a navigation to the manage passwords page. |
| virtual void NavigateToManagePasswordsPage(ManagePasswordsReferrer referrer) { |
| } |
| |
| virtual bool IsIsolationForPasswordSitesEnabled() const = 0; |
| |
| // Returns true if the current page is to the new tab page. |
| virtual bool IsNewTabPage() const = 0; |
| |
| private: |
| DISALLOW_COPY_AND_ASSIGN(PasswordManagerClient); |
| }; |
| |
| } // namespace password_manager |
| |
| #endif // COMPONENTS_PASSWORD_MANAGER_CORE_BROWSER_PASSWORD_MANAGER_CLIENT_H_ |
