| // Copyright 2022 The Chromium Authors |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #ifndef CONTENT_PUBLIC_BROWSER_FEDERATED_IDENTITY_PERMISSION_CONTEXT_DELEGATE_H_ |
| #define CONTENT_PUBLIC_BROWSER_FEDERATED_IDENTITY_PERMISSION_CONTEXT_DELEGATE_H_ |
| |
| #include "url/origin.h" |
| |
| namespace content { |
| |
| // Delegate interface for the FedCM implementation in content to query and |
| // manage permission grants associated with the ability to share identity |
| // information from a given provider to a given relying party. |
| class FederatedIdentityPermissionContextDelegate { |
| public: |
| FederatedIdentityPermissionContextDelegate() = default; |
| virtual ~FederatedIdentityPermissionContextDelegate() = default; |
| |
| // Determine whether the `relying_party_requester` has an existing active |
| // session for the specified `account_identifier` with the |
| // `identity_provider`. |
| virtual bool HasActiveSession(const url::Origin& relying_party_requester, |
| const url::Origin& identity_provider, |
| const std::string& account_identifier) = 0; |
| |
| // Grant active session capabilities between the `relying_party_requester` and |
| // `identity_provider` origins for the specified account. |
| virtual void GrantActiveSession(const url::Origin& relying_party_requester, |
| const url::Origin& identity_provider, |
| const std::string& account_identifier) = 0; |
| |
| // Revoke a previously-provided grant from the `relying_party_requester` to |
| // the `identity_provider` for the specified account. |
| virtual void RevokeActiveSession(const url::Origin& relying_party_requester, |
| const url::Origin& identity_provider, |
| const std::string& account_identifier) = 0; |
| |
| // Determine whether there is an existing permission grant to share identity |
| // information for the given account to the `relying_party_requester` when |
| // embedded in `relying_party_embedder`. |
| virtual bool HasSharingPermission(const url::Origin& relying_party_requester, |
| const url::Origin& relying_party_embedder, |
| const url::Origin& identity_provider, |
| const std::string& account_id) = 0; |
| |
| // Grants permission to share identity information for the given account to |
| // `relying_party_requester` when embedded in `relying_party_embedder`. |
| virtual void GrantSharingPermission( |
| const url::Origin& relying_party_requester, |
| const url::Origin& relying_party_embedder, |
| const url::Origin& identity_provider, |
| const std::string& account_id) = 0; |
| |
| // Returns whether the user is signed in with the IDP. If unknown, return |
| // absl::nullopt. |
| virtual absl::optional<bool> GetIdpSigninStatus( |
| const url::Origin& idp_origin) = 0; |
| |
| // Updates the IDP sign-in status. This could be called by |
| // 1. IdpSigninStatus API |
| // 2. fetching accounts response callback |
| virtual void SetIdpSigninStatus(const url::Origin& idp_origin, |
| bool idp_signin_status) = 0; |
| }; |
| |
| } // namespace content |
| |
| #endif // CONTENT_PUBLIC_BROWSER_FEDERATED_IDENTITY_PERMISSION_CONTEXT_DELEGATE_H_ |
