Google Git
Sign in
chromium / chromium / src / 9063d39ba858baea94a6f9f638a56475a113eeed / . / components / signin / public / identity_manager
tree: 4adbaf98b0c95680dfbe3dae72303b9fc92f3f17 [path history] [tgz]
  1. android/
  2. ios/
  3. objc/
  4. access_token_fetcher.cc
  5. access_token_fetcher.h
  6. access_token_fetcher_unittest.cc
  7. access_token_info.cc
  8. access_token_info.h
  9. account_info.cc
  10. account_info.h
  11. account_info_unittest.cc
  12. accounts_cookie_mutator.h
  13. accounts_cookie_mutator_unittest.cc
  14. accounts_in_cookie_jar_info.cc
  15. accounts_in_cookie_jar_info.h
  16. accounts_mutator.h
  17. accounts_mutator_unittest.cc
  18. BUILD.gn
  19. DEPS
  20. device_accounts_synchronizer.h
  21. diagnostics_provider.h
  22. diagnostics_provider_unittest.cc
  23. identity_manager.cc
  24. identity_manager.h
  25. identity_manager_builder.cc
  26. identity_manager_builder.h
  27. identity_manager_unittest.cc
  28. identity_test_environment.cc
  29. identity_test_environment.h
  30. identity_test_environment_unittest.cc
  31. identity_test_utils.cc
  32. identity_test_utils.h
  33. identity_utils.cc
  34. identity_utils.h
  35. identity_utils_unittest.cc
  36. load_credentials_state.h
  37. primary_account_access_token_fetcher.cc
  38. primary_account_access_token_fetcher.h
  39. primary_account_access_token_fetcher_unittest.cc
  40. primary_account_mutator.cc
  41. primary_account_mutator.h
  42. primary_account_mutator_unittest.cc
  43. README.md
  44. set_accounts_in_cookie_result.h
  45. test_identity_manager_observer.cc
  46. test_identity_manager_observer.h
  47. ubertoken_fetcher.cc
  48. ubertoken_fetcher.h
components/signin/public/identity_manager/README.md

The core public API surfaces for interacting with Google identity. Header files in this directory are allowed to depend only on the following other parts of the signin component:

//components/signin/public/base //components/signin/public/webdata

Implementation files in this directory, however, are additionally allowed to depend on //components/signin/internal/identity_manager.

Here we take a quick guide through the core concepts (note: Documentation on specific IdentityManager and IdentityManager::Observer methods can be found as method-level comments in identity_manager.h; this guide defines the core concepts themselves and gives a high-level mapping between these core concepts and the relevant IdentityManager(::Observer) API surfaces).

Accounts

  • “Account” always refers to a Gaia account.
  • An account has three core pieces of information, which are collected together in the CoreAccountInfo struct and are available for the duration of the account being visible to IdentityManager:
    • The email address.
    • The Gaia ID.
    • The account ID. This is an opaque Chrome-specific identifier for the account.
  • The AccountInfo struct contains extra “extended” information about the account that may become available only asynchronously after the account is first added to Chrome. To interact with the extended account info, use the IdentityManager methods with “ExtendedAccountInfo” in their names. To observe changes in the state of the extended account info for one or more accounts, observe IdentityManager and override one or more of the IdentityManager::Observer methods with “ExtendedAccountInfo” in their names.

The Primary Account

  • “Primary account” in IdentityManager refers to the account that has been blessed for sync by the user (what in Chromium historically was often referred to as the “authenticated account”).
  • “Unconsented primary account” is intuitively the browsing identity of the user that we display to the user; the user may or may not have blessed this account for sync. In particular, whenever a primary account exists, the unconsented primary account equals to the primary account. On desktop platforms (excl. ChromeOS), if no primary account exists and there exist any content-area accounts, the unconsented primary account equals to the first signed-in content- area account. In all other cases there is no unconsented primary account. NOTE: This name is still subject to finalization. The problem with “unconsented” in this context is that it means “did not consent”; really, this account is the “possibly unconsented, possibly primary, default account”, which is a mouthful :).
  • To interact with the primary account and/or unconsented primary account, use the IdentityManager methods with “PrimaryAccount” in their names. To observe changes in the presence of either of these accounts, observe IdentityManager and override one or more of the methods with “PrimaryAccount” in their names as desired.
  • PrimaryAccountTokenFetcher is the primary client-side interface for obtaining OAuth2 access tokens for the primary account (see the next section for the discussion of OAuth2 tokens). In particular, it can handle the common use case of “wait until the primary account is available and then fetch an access token for it” transparently on behalf of the client. See primary_account_access_token_fetcher.h for usage explanation and examples.

OAuth2 Access and Refresh Tokens

  • “OAuth2 tokens” are tokens related to the OAuth2 client-server authorization protocol. “OAuth2 refresh tokens” or just “refresh tokens” are long-lived tokens that the browser obtains via the user explicitly adding an account. Clients of IdentityManager do not explicitly see refresh tokens, but rather use IdentityManager to obtain “OAuth2 access tokens” or just “access tokens”. Access tokens are short-lived tokens with given scopes that can be used to make authorized requests to Gaia endpoints.
  • “The accounts with refresh tokens” refer to the accounts that are visible to IdentityManager with OAuth2 refresh tokens present (e.g., because the user has signed in to the browser and embedder-level code then added the account to IdentityManager, or because the user has added an account at the system level that embedder-level code then made visible to IdentityManager). To interact with these accounts, use the IdentityManager methods with “RefreshToken” in their name. To observe changes in the state of one or more of these accounts, observe IdentityManager and override one or more of the IdentityManager::Observer methods with “RefreshToken” in their name.
  • AccessTokenFetcher is the client-side interface for obtaining access tokens for arbitrary accounts; see access_token_fetcher.h for usage explanation and examples.

The Gaia Cookie

  • “The Gaia cookie” refers to the cookie that contains the information of the user's Gaia accounts that are available on the web.
  • “The accounts in the Gaia cookie” and “the accounts in the cookie jar” refer to the set of accounts in this cookie. To interact with these accounts, use the IdentityManager methods with “Cookie” in their name. To observe changes in the state of one or more of these accounts, observe IdentityManager and override one or more of the IdentityManager::Observer methods with “Cookie” in their name. Note that as the information that Chrome has about these accounts is fundamentally different than that which Chrome has about the user's accounts with OAuth2 refresh tokens, the struct encoding this information is also distinct: see accounts_in_cookie_jar_info.h.

Interacting with IdentityManager and Friends in Tests

  • IdentityTestEnvironment is the preferred test infrastructure for unittests of production code that interacts with IdentityManager. It is suitable for use in cases where neither the production code nor the unittest is interacting with Profile.
  • identity_test_utils.h provides lower-level test facilities for interacting explicitly with IdentityManager. These facilities are the way to interact with IdentityManager in testing contexts where the production code and/or the unittest are interacting with Profile (in particular, where the IdentityManager instance with which the test is interacting must be IdentityManagerFactory::GetForProfile(profile)). Examples include integration tests and Profile-based unittests (in the latter case, consider migrating the test and production code away from using Profile directly and using IdentityTestEnvironment).

Mutation of Account State

  • Various mutators of account state are available through IdentityManager (e.g., PrimaryAccountMutator). These should in general be used only as part of larger embedder-specific flows for mutating the user's account state in ways that are in line with product specifications. If you are a consumer of //components/identity/public/identity_manager and you believe that you have a new use case for one of these API surfaces, you should first contact the OWNERS of //components/signin to discuss this use case and how best to realize it.

Mental Mapping from Chromium's Historical API Surfaces for Signin

Documentation on the mapping between usage of legacy signin classes (notably PrimaryAccountManager and ProfileOAuth2TokenService) and usage of IdentityManager is available here:

https://docs.google.com/document/d/14f3qqkDM9IE4Ff_l6wuXvCMeHfSC9TxKezXTCyeaPUY/edit#