Google Git
Sign in
chromium / chromium / src / 9fc418b51a6680a328b090f1af90edb724fbc990 / . / content / public / browser / federated_identity_permission_context_delegate.h
blob: c8669e02810cdd8f6670032f27079ced7132e492 [file] [log] [blame]
// Copyright 2022 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef CONTENT_PUBLIC_BROWSER_FEDERATED_IDENTITY_PERMISSION_CONTEXT_DELEGATE_H_
#define CONTENT_PUBLIC_BROWSER_FEDERATED_IDENTITY_PERMISSION_CONTEXT_DELEGATE_H_
#include <vector>
#include "base/observer_list.h"
#include "url/origin.h"
namespace content {
// Delegate interface for the FedCM implementation in content to query and
// manage permission grants associated with the ability to share identity
// information from a given provider to a given relying party.
class FederatedIdentityPermissionContextDelegate {
public:
// Observes IdP sign-in status changes.
class IdpSigninStatusObserver : public base::CheckedObserver {
public:
virtual void OnIdpSigninStatusChanged(const url::Origin& idp_origin,
bool idp_signin_status) = 0;
protected:
IdpSigninStatusObserver() = default;
~IdpSigninStatusObserver() override = default;
};
FederatedIdentityPermissionContextDelegate() = default;
virtual ~FederatedIdentityPermissionContextDelegate() = default;
// Adds/removes observer for IdP sign-in status.
virtual void AddIdpSigninStatusObserver(
IdpSigninStatusObserver* observer) = 0;
virtual void RemoveIdpSigninStatusObserver(
IdpSigninStatusObserver* observer) = 0;
// Determine whether the `relying_party_requester` has an existing active
// session for the specified `account_identifier` with the
// `identity_provider`.
virtual bool HasActiveSession(const url::Origin& relying_party_requester,
const url::Origin& identity_provider,
const std::string& account_identifier) = 0;
// Grant active session capabilities between the `relying_party_requester` and
// `identity_provider` origins for the specified account.
virtual void GrantActiveSession(const url::Origin& relying_party_requester,
const url::Origin& identity_provider,
const std::string& account_identifier) = 0;
// Revoke a previously-provided grant from the `relying_party_requester` to
// the `identity_provider` for the specified account.
virtual void RevokeActiveSession(const url::Origin& relying_party_requester,
const url::Origin& identity_provider,
const std::string& account_identifier) = 0;
// Determine whether there is an existing permission grant to share identity
// information for the given account to the `relying_party_requester` when
// embedded in `relying_party_embedder`.
virtual bool HasSharingPermission(const url::Origin& relying_party_requester,
const url::Origin& relying_party_embedder,
const url::Origin& identity_provider,
const std::string& account_id) = 0;
// Grants permission to share identity information for the given account to
// `relying_party_requester` when embedded in `relying_party_embedder`.
virtual void GrantSharingPermission(
const url::Origin& relying_party_requester,
const url::Origin& relying_party_embedder,
const url::Origin& identity_provider,
const std::string& account_id) = 0;
// Returns whether the user is signed in with the IDP. If unknown, return
// absl::nullopt.
virtual absl::optional<bool> GetIdpSigninStatus(
const url::Origin& idp_origin) = 0;
// Updates the IDP sign-in status. This could be called by
// 1. IdpSigninStatus API
// 2. fetching accounts response callback
virtual void SetIdpSigninStatus(const url::Origin& idp_origin,
bool idp_signin_status) = 0;
// Returns all origins that are registered as IDP.
virtual std::vector<GURL> GetRegisteredIdPs() = 0;
// Registers an IdP.
virtual void RegisterIdP(const GURL& url) = 0;
// Unregisters an IdP.
virtual void UnregisterIdP(const GURL& url) = 0;
};
} // namespace content
#endif // CONTENT_PUBLIC_BROWSER_FEDERATED_IDENTITY_PERMISSION_CONTEXT_DELEGATE_H_