blob: 4df26a41155df7d5623233c7c51ee85d279768fe [file] [log] [blame]
// Copyright 2014 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef CHROMEOS_COMPONENTS_PROXIMITY_AUTH_PROXIMITY_AUTH_SYSTEM_H_
#define CHROMEOS_COMPONENTS_PROXIMITY_AUTH_PROXIMITY_AUTH_SYSTEM_H_
#include <memory>
#include <vector>
#include "base/macros.h"
#include "chromeos/components/multidevice/remote_device_ref.h"
#include "chromeos/components/proximity_auth/remote_device_life_cycle.h"
#include "chromeos/components/proximity_auth/screenlock_bridge.h"
#include "components/account_id/account_id.h"
namespace chromeos {
namespace secure_channel {
class SecureChannelClient;
} // namespace secure_channel
} // namespace chromeos
namespace proximity_auth {
class ProximityAuthClient;
class UnlockManager;
// This is the main entry point to start Proximity Auth, the underlying system
// for the Smart Lock feature. Given a list of remote devices (i.e. a
// phone) for each registered user, the system will handle the connection,
// authentication, and messenging protocol when the screen is locked and the
// registered user is focused.
class ProximityAuthSystem : public RemoteDeviceLifeCycle::Observer,
public ScreenlockBridge::Observer {
public:
enum ScreenlockType { SESSION_LOCK, SIGN_IN };
ProximityAuthSystem(
ScreenlockType screenlock_type,
ProximityAuthClient* proximity_auth_client,
chromeos::secure_channel::SecureChannelClient* secure_channel_client);
~ProximityAuthSystem() override;
// Starts the system to connect and authenticate when a registered user is
// focused on the lock/sign-in screen.
void Start();
// Stops the system.
void Stop();
// Registers a list of |remote_devices| for |account_id| that can be used for
// sign-in/unlock. |local_device| represents this device (i.e. this Chrome OS
// device) for this particular user profile context. If devices were
// previously registered for the user, then they will be replaced.
void SetRemoteDevicesForUser(
const AccountId& account_id,
const chromeos::multidevice::RemoteDeviceRefList& remote_devices,
base::Optional<chromeos::multidevice::RemoteDeviceRef> local_device);
// Returns the RemoteDevices registered for |account_id|. Returns an empty
// list
// if no devices are registered for |account_id|.
chromeos::multidevice::RemoteDeviceRefList GetRemoteDevicesForUser(
const AccountId& account_id) const;
// Called when the user clicks the user pod and attempts to unlock/sign-in.
void OnAuthAttempted(const AccountId& account_id);
// Called when the system suspends.
void OnSuspend();
// Called when the system wakes up from a suspended state.
void OnSuspendDone();
// Called in order to disable attempts to get RemoteStatus from host devices.
void CancelConnectionAttempt();
protected:
// Constructor which allows passing in a custom |unlock_manager_|.
// Exposed for testing.
ProximityAuthSystem(
chromeos::secure_channel::SecureChannelClient* secure_channel_client,
std::unique_ptr<UnlockManager> unlock_manager);
// Creates the RemoteDeviceLifeCycle for |remote_device| and |local_device|.
// |remote_device| is the host intended to be connected to, and |local_device|
// represents this device (i.e. this Chrome OS device) for this particular
// user profile context.
// Exposed for testing.
virtual std::unique_ptr<RemoteDeviceLifeCycle> CreateRemoteDeviceLifeCycle(
chromeos::multidevice::RemoteDeviceRef remote_device,
base::Optional<chromeos::multidevice::RemoteDeviceRef> local_device);
// RemoteDeviceLifeCycle::Observer:
void OnLifeCycleStateChanged(RemoteDeviceLifeCycle::State old_state,
RemoteDeviceLifeCycle::State new_state) override;
// ScreenlockBridge::Observer:
void OnScreenDidLock(
ScreenlockBridge::LockHandler::ScreenType screen_type) override;
void OnScreenDidUnlock(
ScreenlockBridge::LockHandler::ScreenType screen_type) override;
void OnFocusedUserChanged(const AccountId& account_id) override;
private:
// Lists of remote devices, keyed by user account id.
std::map<AccountId, chromeos::multidevice::RemoteDeviceRefList>
remote_devices_map_;
// A mapping from each profile's account ID to the profile-specific
// representation of this device (i.e. this Chrome OS device) for that
// particular user profile.
std::map<AccountId, chromeos::multidevice::RemoteDeviceRef> local_device_map_;
// Entry point to the SecureChannel API.
chromeos::secure_channel::SecureChannelClient* secure_channel_client_;
// Responsible for the life cycle of connecting and authenticating to
// the RemoteDevice of the currently focused user.
std::unique_ptr<RemoteDeviceLifeCycle> remote_device_life_cycle_;
// Handles the interaction with the lock screen UI.
std::unique_ptr<UnlockManager> unlock_manager_;
// True if the system is suspended.
bool suspended_;
// True if the system is started_.
bool started_;
DISALLOW_COPY_AND_ASSIGN(ProximityAuthSystem);
};
} // namespace proximity_auth
#endif // CHROMEOS_COMPONENTS_PROXIMITY_AUTH_PROXIMITY_AUTH_SYSTEM_H_