Remove authenticated_ fields from stubs.

remoting/host/client_session.cc

 // Copyright (c) 2011 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "remoting/host/client_session.h"
 
 #include "base/memory/scoped_ptr.h"
 #include "base/task.h"
+#include "media/base/callback.h"
 #include "remoting/host/user_authenticator.h"
 #include "remoting/proto/auth.pb.h"
 
 namespace remoting {
 
 ClientSession::ClientSession(
     EventHandler* event_handler,
-    scoped_refptr<protocol::ConnectionToClient> connection)
+    const base::Callback<UserAuthenticatorFactory>& auth_factory,
+    scoped_refptr<protocol::ConnectionToClient> connection,
+    protocol::InputStub* input_stub)
     : event_handler_(event_handler),
-      connection_(connection) {
+      auth_factory_(auth_factory),
+      connection_(connection),
+      input_stub_(input_stub),
+      authenticated_(false) {
 }
 
 ClientSession::~ClientSession() {
 }
 
 void ClientSession::SuggestResolution(
     const protocol::SuggestResolutionRequest* msg, Task* done) {
-  done->Run();
-  delete done;
+  media::AutoTaskRunner task_runner(done);
+
+  if (!authenticated_) {
+    LOG(WARNING) << "Invalid control message received "
+                 << "(client not authenticated).";
+    return;
+  }

[Wez, 2011/03/30 20:24:57]

If the client sends unexpected messages before having authenticated, we should
really abort the connection.

[simonmorris, 2011/03/31 11:14:00]

Could be good, in another CL.

 }
 
 void ClientSession::BeginSessionRequest(
     const protocol::LocalLoginCredentials* credentials, Task* done) {
   DCHECK(event_handler_);
 
   bool success = false;
-  scoped_ptr<UserAuthenticator> authenticator(UserAuthenticator::Create());
+  scoped_ptr<UserAuthenticator> authenticator(auth_factory_.Run());
   switch (credentials->type()) {
     case protocol::PASSWORD:
       success = authenticator->Authenticate(credentials->username(),
                                             credentials->credential());
       break;
 
     default:
       LOG(ERROR) << "Invalid credentials type " << credentials->type();
       break;
   }
 
   if (success) {
+    authenticated_ = true;
     event_handler_->LocalLoginSucceeded(connection_.get());
   } else {
     LOG(WARNING) << "Login failed for user " << credentials->username();
     event_handler_->LocalLoginFailed(connection_.get());
   }
 
   done->Run();
   delete done;
 }
 
+void ClientSession::InjectKeyEvent(const protocol::KeyEvent* event,
+                                   Task* done) {
+  if (authenticated_) {
+    input_stub_->InjectKeyEvent(event, done);
+    return;
+  }
+  done->Run();

[garykac, 2011/03/30 20:04:03]

nit: The
  media::AutoTaskRunner task_runner(done);
pattern is nicer and consistent with what you did earlier.

[simonmorris, 2011/03/31 11:14:00]

Done.

+  delete done;
+}
+
+void ClientSession::InjectMouseEvent(const protocol::MouseEvent* event,
+                                     Task* done) {
+  if (authenticated_) {
+    input_stub_->InjectMouseEvent(event, done);
+    return;
+  }
+  done->Run();

[garykac, 2011/03/30 20:04:03]

nit: AutoTaskRunner

[Wez, 2011/03/30 20:24:57]

As above, it's not valid for the client to send input before it has successfully
authenticated.

[simonmorris, 2011/03/31 11:14:00]

Done.

[simonmorris, 2011/03/31 11:14:00]

Could be good, in another CL.

+  delete done;
+}
+
 void ClientSession::Disconnect() {
   connection_->Disconnect();
-}
-
-protocol::ConnectionToClient* ClientSession::connection() const {
-  return connection_.get();
+  authenticated_ = false;
 }
 
 }  // namespace remoting