Chrome proxy refactoring.

chrome/service/cloud_print/cloud_print_auth.cc

+// Copyright (c) 2011 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#include "chrome/service/cloud_print/cloud_print_auth.h"
+
+#include "base/string_util.h"
+#include "chrome/common/net/gaia/gaia_urls.h"
+#include "chrome/service/cloud_print/cloud_print_consts.h"
+#include "chrome/service/cloud_print/cloud_print_helpers.h"
+#include "chrome/service/cloud_print/cloud_print_token_store.h"
+#include "chrome/service/gaia/service_gaia_authenticator.h"
+#include "chrome/service/net/service_url_request_context.h"
+#include "chrome/service/service_process.h"
+
+CloudPrintAuth::CloudPrintAuth(
+    Client* client,
+    const GURL& cloud_print_server_url,
+    const base::DictionaryValue* print_sys_settings,
+    const gaia::OAuthClientInfo& oauth_client_info,
+    const std::string& proxy_id)
+      : client_(client),
+        cloud_print_server_url_(cloud_print_server_url),
+        oauth_client_info_(oauth_client_info),
+        proxy_id_(proxy_id) {
+  DCHECK(client);
+  if (print_sys_settings) {
+    // It is possible to have no print settings specified.
+    print_system_settings_.reset(print_sys_settings->DeepCopy());
+  }
+}
+
+CloudPrintAuth::~CloudPrintAuth() {
+}
+
+void CloudPrintAuth::AuthenticateWithLsid(
+    const std::string& lsid,
+    const std::string& last_robot_refresh_token,
+    const std::string& last_robot_email,
+    const std::string& last_user_email) {
+  VLOG(1) << "CP_AUTH: Authenticating with LSID";
+
+  // Note: The GAIA login is synchronous but that should be OK because we are in
+  // the CloudPrintProxyCoreThread and we cannot really do anything else until
+  // the GAIA signin is successful.
+  std::string user_agent = "ChromiumBrowser";
+  scoped_refptr<ServiceGaiaAuthenticator> gaia_auth_for_print(
+      new ServiceGaiaAuthenticator(
+          user_agent, kCloudPrintGaiaServiceId,
+          GaiaUrls::GetInstance()->client_login_url(),
+          g_service_process->io_thread()->message_loop_proxy()));
+  gaia_auth_for_print->set_message_loop(MessageLoop::current());
+  if (gaia_auth_for_print->AuthenticateWithLsid(lsid)) {
+    // Stash away the user email so we can save it in prefs.
+    user_email_ = gaia_auth_for_print->email();
+    // If the same user is re-enabling Cloud Print and we have stashed robot
+    // credentials, we will use those.
+    if ((0 == base::strcasecmp(user_email_.c_str(), last_user_email.c_str())) &&
+        !last_robot_refresh_token.empty() &&
+        !last_robot_email.empty()) {
+      AuthenticateWithRobotToken(last_robot_refresh_token,
+                                 last_robot_email);
+    }
+    AuthenticateWithToken(gaia_auth_for_print->auth_token());
+  } else {
+    // Notify client about authentication error.
+    client_->OnInvalidCredentials();
+  }
+}
+
+void CloudPrintAuth::AuthenticateWithToken(
+    const std::string cloud_print_token) {
+  VLOG(1) << "CP_AUTH: Authenticating with token";
+
+  client_login_token_ = cloud_print_token;
+
+  // We need to get the credentials of the robot here.
+  GURL get_authcode_url =
+      CloudPrintHelpers::GetUrlForGetAuthCode(cloud_print_server_url_,
+                                              oauth_client_info_.client_id,
+                                              proxy_id_);
+  request_ = new CloudPrintURLFetcher;
+  request_->StartGetRequest(get_authcode_url,
+                            this,
+                            kCloudPrintAuthMaxRetryCount,
+                            std::string());
+}
+
+void CloudPrintAuth::AuthenticateWithRobotToken(
+    const std::string& robot_oauth_refresh_token,
+    const std::string& robot_email) {
+  VLOG(1) << "CP_AUTH: Authenticating with robot token";
+
+  robot_email_ = robot_email;
+  refresh_token_ = robot_oauth_refresh_token;
+  RefreshAccessToken();
+}
+
+void CloudPrintAuth::AuthenticateWithRobotAuthCode(
+    const std::string& robot_oauth_auth_code,
+    const std::string& robot_email) {
+  VLOG(1) << "CP_AUTH: Authenticating with robot auth code";
+
+  robot_email_ = robot_email;
+  // Now that we have an auth code we need to get the refresh and access tokens.
+  oauth_client_.reset(new gaia::GaiaOAuthClient(
+      gaia::kGaiaOAuth2Url,
+      g_service_process->GetServiceURLRequestContextGetter()));
+  oauth_client_->GetTokensFromAuthCode(oauth_client_info_,
+                                       robot_oauth_auth_code,
+                                       kCloudPrintAuthMaxRetryCount,
+                                       this);
+}
+
+void CloudPrintAuth::RefreshAccessToken() {
+  oauth_client_.reset(new gaia::GaiaOAuthClient(
+      gaia::kGaiaOAuth2Url,
+      g_service_process->GetServiceURLRequestContextGetter()));
+  oauth_client_->RefreshToken(oauth_client_info_,
+                              refresh_token_,
+                              kCloudPrintAuthMaxRetryCount,
+                              this);
+}
+
+void CloudPrintAuth::OnGetTokensResponse(const std::string& refresh_token,
+                                         const std::string& access_token,
+                                         int expires_in_seconds) {
+  refresh_token_ = refresh_token;
+  // After saving the refresh token, this is just like having just refreshed
+  // the access token. Just call OnRefreshTokenResponse.
+  OnRefreshTokenResponse(access_token, expires_in_seconds);
+}
+
+void CloudPrintAuth::OnRefreshTokenResponse(const std::string& access_token,
+                                            int expires_in_seconds) {
+  client_->OnAuthenticationComplete(access_token, refresh_token_,
+                                    robot_email_, user_email_);
+
+  // Schedule a task to refresh the access token again when it is about to
+  // expire.
+  DCHECK(expires_in_seconds > kTokenRefreshGracePeriodSecs);
+  int64 refresh_delay =
+      (expires_in_seconds - kTokenRefreshGracePeriodSecs)*1000;
+  MessageLoop::current()->PostDelayedTask(
+      FROM_HERE,
+      NewRunnableMethod(this, &CloudPrintAuth::RefreshAccessToken),
+      refresh_delay);
+}
+
+void CloudPrintAuth::OnOAuthError() {
+  // Notify client about authentication error.
+  client_->OnInvalidCredentials();
+}
+
+void CloudPrintAuth::OnNetworkError(int response_code) {
+  // Since we specify inifinite retries on network errors, this should never
+  // be called.
+  NOTREACHED() <<
+      "OnNetworkError invoked when not expected, response code is " <<
+      response_code;
+}
+
+CloudPrintURLFetcher::ResponseAction CloudPrintAuth::HandleJSONData(
+    const URLFetcher* source,
+    const GURL& url,
+    DictionaryValue* json_data,
+    bool succeeded) {
+  if (!succeeded) {
+    VLOG(1) << "CP_AUTH: Creating robot account failed";
+    client_->OnInvalidCredentials();
+    return CloudPrintURLFetcher::STOP_PROCESSING;
+  }
+
+  std::string auth_code;
+  if (!json_data->GetString(kOAuthCodeValue, &auth_code)) {
+    VLOG(1) << "CP_AUTH: Creating robot account returned invalid json response";
+    client_->OnInvalidCredentials();
+    return CloudPrintURLFetcher::STOP_PROCESSING;
+  }
+
+  json_data->GetString(kXMPPJidValue, &robot_email_);
+  // Now that we have an auth code we need to get the refresh and access tokens.
+  oauth_client_.reset(new gaia::GaiaOAuthClient(
+      gaia::kGaiaOAuth2Url,
+      g_service_process->GetServiceURLRequestContextGetter()));
+  oauth_client_->GetTokensFromAuthCode(oauth_client_info_,
+                                       auth_code,
+                                       kCloudPrintAPIMaxRetryCount,
+                                       this);
+
+  return CloudPrintURLFetcher::STOP_PROCESSING;
+}
+
+CloudPrintURLFetcher::ResponseAction CloudPrintAuth::OnRequestAuthError() {
+  VLOG(1) << "CP_AUTH: Creating robot account authentication error";
+  // Notify client about authentication error.
+  client_->OnInvalidCredentials();
+  return CloudPrintURLFetcher::STOP_PROCESSING;
+}
+
+std::string CloudPrintAuth::GetAuthHeader() {
+  DCHECK(!client_login_token_.empty());
+  std::string header;
+  header = "Authorization: GoogleLogin auth=";
+  header += client_login_token_;
+  return header;
+}
+