blob: ddc923392fe633bf9a3c9011bcb939ec1c03450b [file] [log] [blame]
// Copyright 2013 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include <map>
#include <memory>
#include <string>
#include <vector>
#include "base/android/jni_weak_ref.h"
#include "base/android/scoped_java_ref.h"
#include "base/callback.h"
#include "base/macros.h"
#include "base/time/time.h"
#include "components/signin/core/browser/account_tracker_service.h"
#include "components/signin/core/browser/profile_oauth2_token_service.h"
#include "google_apis/gaia/google_service_auth_error.h"
#include "google_apis/gaia/oauth2_token_service_delegate.h"
// A specialization of OAuth2TokenServiceDelegate that will be returned by
// OAuth2TokenServiceDelegateFactory for OS_ANDROID. This instance uses
// native Android features to lookup OAuth2 tokens.
// See |OAuth2TokenServiceDelegate| for usage details.
// Note: requests should be started from the UI thread.
class OAuth2TokenServiceDelegateAndroid : public OAuth2TokenServiceDelegate {
AccountTrackerService* account_tracker_service);
~OAuth2TokenServiceDelegateAndroid() override;
// Creates a new instance of the OAuth2TokenServiceDelegateAndroid.
static OAuth2TokenServiceDelegateAndroid* Create();
// Returns a reference to the corresponding Java OAuth2TokenService object.
base::android::ScopedJavaLocalRef<jobject> GetJavaObject();
// Called by the TestingProfile class to disable account validation in
// tests. This prevents the token service from trying to look up system
// accounts which requires special permission.
static void set_disable_interaction_with_system_accounts() {
disable_interaction_with_system_accounts_ = true;
// OAuth2TokenServiceDelegate overrides:
bool RefreshTokenIsAvailable(const CoreAccountId& account_id) const override;
GoogleServiceAuthError GetAuthError(
const CoreAccountId& account_id) const override;
void UpdateAuthError(const CoreAccountId& account_id,
const GoogleServiceAuthError& error) override;
std::vector<CoreAccountId> GetAccounts() const override;
void UpdateAccountList(
JNIEnv* env,
const base::android::JavaParamRef<jobject>& obj,
const base::android::JavaParamRef<jstring>& current_account);
// Takes a the signed in sync account as well as all the other
// android account ids and check the token status of each.
// NOTE: TokenAvailable notifications will be sent for all accounts, even if
// they were already known. See for details.
void UpdateAccountList(const CoreAccountId& signed_in_account_id,
const std::vector<CoreAccountId>& prev_ids,
const std::vector<CoreAccountId>& curr_ids);
// Overridden from OAuth2TokenService to complete signout of all
// OA2TService aware accounts.
void RevokeAllCredentials() override;
void LoadCredentials(const CoreAccountId& primary_account_id) override;
void ReloadAccountsFromSystem(
const CoreAccountId& primary_account_id) override;
std::unique_ptr<OAuth2AccessTokenFetcher> CreateAccessTokenFetcher(
const CoreAccountId& account_id,
scoped_refptr<network::SharedURLLoaderFactory> url_factory,
OAuth2AccessTokenConsumer* consumer) override;
// Overridden from OAuth2TokenServiceDelegate to intercept token fetch
// requests and redirect them to the Account Manager.
void InvalidateAccessToken(const CoreAccountId& account_id,
const std::string& client_id,
const OAuth2TokenService::ScopeSet& scopes,
const std::string& access_token) override;
// Called to notify observers when refresh tokans have been loaded.
void FireRefreshTokensLoaded() override;
std::string MapAccountIdToAccountName(const CoreAccountId& account_id) const;
CoreAccountId MapAccountNameToAccountId(
const std::string& account_name) const;
enum RefreshTokenLoadStatus {
// Return whether accounts are valid and we have access to all the tokens in
// |curr_ids|.
bool UpdateAccountList(const CoreAccountId& signed_in_id,
const std::vector<CoreAccountId>& prev_ids,
const std::vector<CoreAccountId>& curr_ids,
std::vector<CoreAccountId>* refreshed_ids,
std::vector<CoreAccountId>* revoked_ids);
// Lists account names at the OS level.
std::vector<std::string> GetSystemAccountNames();
// As |GetSystemAccountNames| but returning account IDs.
std::vector<CoreAccountId> GetSystemAccounts();
// As |GetAccounts| but with only validated account IDs.
std::vector<CoreAccountId> GetValidAccounts();
// Set accounts using Java's Oauth2TokenService.setAccounts.
virtual void SetAccounts(const std::vector<CoreAccountId>& accounts);
base::android::ScopedJavaGlobalRef<jobject> java_ref_;
// Maps account_id to the last error for that account.
std::map<CoreAccountId, GoogleServiceAuthError> errors_;
AccountTrackerService* account_tracker_service_;
RefreshTokenLoadStatus fire_refresh_token_loaded_;
base::Time last_update_accounts_time_;
static bool disable_interaction_with_system_accounts_;