Chromium Code Reviews Chromium Code Reviews
Issue 10928036:
Implement Chrome OS device enrollment on the new cloud policy stack. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src| Index: chrome/browser/policy/enrollment_handler_chromeos.h |
| diff --git a/chrome/browser/policy/enrollment_handler_chromeos.h b/chrome/browser/policy/enrollment_handler_chromeos.h |
| new file mode 100644 |
| index 0000000000000000000000000000000000000000..48bfb81ec595508edd560e3505ec9da56da2677f |
| --- /dev/null |
| +++ b/chrome/browser/policy/enrollment_handler_chromeos.h |
| @@ -0,0 +1,127 @@ |
| +// Copyright (c) 2012 The Chromium Authors. All rights reserved. |
| +// Use of this source code is governed by a BSD-style license that can be |
| +// found in the LICENSE file. |
| + |
| +#ifndef CHROME_BROWSER_POLICY_ENROLLMENT_HANDLER_CHROMEOS_H_ |
| +#define CHROME_BROWSER_POLICY_ENROLLMENT_HANDLER_CHROMEOS_H_ |
| + |
| +#include <string> |
| + |
| +#include "base/basictypes.h" |
| +#include "base/callback_forward.h" |
|
Joao da Silva
2012/09/07 14:01:42
nit: not used
Mattias Nissler (ping if slow)
2012/10/23 15:30:41
Done.
|
| +#include "base/compiler_specific.h" |
| +#include "base/memory/scoped_ptr.h" |
| +#include "chrome/browser/policy/cloud_policy_client.h" |
| +#include "chrome/browser/policy/cloud_policy_store.h" |
| +#include "chrome/browser/policy/cloud_policy_validator.h" |
| +#include "chrome/browser/policy/device_cloud_policy_manager_chromeos.h" |
| + |
| +namespace enterprise_management { |
| +class PolicyFetchResponse; |
| +} |
| + |
| +namespace policy { |
| + |
| +class EnterpriseInstallAttributes; |
| + |
| +// Implements the logic that establishes enterprise enrollment for Chromium OS |
| +// devices. The process is as follows: |
| +// 1. Given an auth token, register with the policy service. |
| +// 2. Download the initial policy blob from the service. |
| +// 3. Verify the policy blob. Everything up to this point doesn't touch device |
| +// state. |
| +// 4. Establish the device lock in installation-time attributes. |
| +// 5. Store the policy blob. |
| +class EnrollmentHandlerChromeOS : public CloudPolicyClient::Observer, |
| + public CloudPolicyStore::Observer { |
| + public: |
| + typedef DeviceCloudPolicyManagerChromeOS::EnrollmentCallback |
| + CompletionCallback; |
| + |
| + // |store| and |install_attributes| must remain valid for the life time of the |
| + // enrollment handler. |
| + EnrollmentHandlerChromeOS(DeviceCloudPolicyStoreChromeOS* store, |
| + EnterpriseInstallAttributes* install_attributes, |
| + scoped_ptr<CloudPolicyClient> client, |
| + const std::string& auth_token, |
| + const CompletionCallback& completion_callback); |
| + ~EnrollmentHandlerChromeOS(); |
| + |
| + // Starts the enrollment process and reports the result to |
| + // |completion_callback|. |
| + void StartEnrollment(); |
| + |
| + // Releases the client. |
| + scoped_ptr<CloudPolicyClient> ReleaseClient(); |
| + |
| + // CloudPolicyClient::Observer: |
| + virtual void OnPolicyFetched(CloudPolicyClient* client) OVERRIDE; |
| + virtual void OnRegistrationStateChanged(CloudPolicyClient* client) OVERRIDE; |
| + virtual void OnClientError(CloudPolicyClient* client) OVERRIDE; |
| + |
| + // CloudPolicyStore::Observer: |
| + virtual void OnStoreLoaded(CloudPolicyStore* store) OVERRIDE; |
| + virtual void OnStoreError(CloudPolicyStore* store) OVERRIDE; |
| + |
| + private: |
| + // Indicates what step of the process is currently pending. |
| + enum EnrollmentStep { |
| + STEP_IDLE, // Not started yet. |
| + STEP_REGISTRATION, // Currently registering the client. |
| + STEP_POLICY_FETCH, // Fetching policy. |
| + STEP_VALIDATION, // Policy validation. |
| + STEP_LOCK_DEVICE, // Writing installation-time attributes. |
| + STEP_STORE_POLICY, // Storing policy. |
| + STEP_DONE, // All done. |
| + }; |
| + |
| + // Starts registration if the store is initialized. |
| + void AttemptRegistration(); |
| + |
| + // Handles the policy validation result, proceeding with installation-time |
| + // attributes locking if successful. |
| + void PolicyValidated(DeviceCloudPolicyValidator* validator); |
| + |
| + // Writes install attributes and proceeds to policy installation. If |
| + // unsuccessful, reports the result. |
| + void WriteInstallAttributes(const std::string& user, |
| + DeviceMode device_mode, |
| + const std::string& device_id); |
| + |
| + // Resets all transient state, disregarding any pending actions. |
| + void Reset(); |
| + |
| + // Reports the result of the enrollment process to the initiator. |
| + void ReportResult(EnrollmentStatus status, |
| + DeviceManagementStatus dm_status, |
| + CloudPolicyValidatorBase::Status validator_status, |
| + CloudPolicyStore::Status store_status); |
| + |
| + DeviceCloudPolicyStoreChromeOS* store_; |
| + EnterpriseInstallAttributes* install_attributes_; |
| + scoped_ptr<CloudPolicyClient> client_; |
| + |
| + std::string auth_token_; |
| + CompletionCallback completion_callback_; |
| + |
| + // The device mode as received in the registration request. |
| + DeviceMode device_mode_; |
| + |
| + // The validated policy response to be installed in the store. |
| + scoped_ptr<enterprise_management::PolicyFetchResponse> policy_; |
| + |
| + // Current enrollment step. |
| + EnrollmentStep enrollment_step_; |
| + |
| + // Total amount of time in milliseconds spent waiting for lockbox |
| + // initialization. |
| + int lockbox_init_duration_; |
| + |
| + base::WeakPtrFactory<EnrollmentHandlerChromeOS> weak_factory_; |
|
Joao da Silva
2012/09/07 14:01:42
#include "base/memory/weak_ptr.h"
Mattias Nissler (ping if slow)
2012/10/23 15:30:41
Done.
|
| + |
| + DISALLOW_COPY_AND_ASSIGN(EnrollmentHandlerChromeOS); |
| +}; |
| + |
| +} // namespace policy |
| + |
| +#endif // CHROME_BROWSER_POLICY_ENROLLMENT_HANDLER_CHROMEOS_H_ |
