Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(6804)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/resources/chromeos/login/oobe_screen_oauth_enrollment.js

Issue 130303004: Retrieve the authenticated user's e-mail from GAIA during SAML enrollment (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src
Patch Set: Fix conflict between enrollment and login message handler.s Created 6 years, 11 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « no previous file | chrome/browser/ui/webui/chromeos/login/enrollment_screen_handler.h » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/resources/chromeos/login/oobe_screen_oauth_enrollment.js
diff --git a/chrome/browser/resources/chromeos/login/oobe_screen_oauth_enrollment.js b/chrome/browser/resources/chromeos/login/oobe_screen_oauth_enrollment.js
index 205b83526e51f0bf17ebbfe5e59266f8f104e330..38492061cc006a8e0d2dbcd9ea7990b89c52e0a9 100644
--- a/chrome/browser/resources/chromeos/login/oobe_screen_oauth_enrollment.js
+++ b/chrome/browser/resources/chromeos/login/oobe_screen_oauth_enrollment.js
@@ -15,6 +15,7 @@ login.createScreen('OAuthEnrollmentScreen', 'oauth-enrollment', function() {
'showStep',
'showError',
'showWorking',
+ 'setAuthenticatedUserEmail',
],
/**
@@ -48,6 +49,12 @@ login.createScreen('OAuthEnrollmentScreen', 'oauth-enrollment', function() {
*/
currentStep_: null,
+ /**
+ * Opaque token used to correlate request and response while retrieving the
+ * authenticated user's e-mail address from GAIA.
+ */
+ attemptToken_: null,
+
/** @override */
decorate: function() {
window.addEventListener('message',
@@ -233,6 +240,19 @@ login.createScreen('OAuthEnrollmentScreen', 'oauth-enrollment', function() {
},
/**
+ * Invoked when the authenticated user's e-mail address has been retrieved.
+ * This completes SAML authentication.
+ * @param {number} attemptToken An opaque token used to correlate this
+ * method invocation with the corresponding request to retrieve the
+ * user's e-mail address.
+ * @param {string} email The authenticated user's e-mail address.
+ */
+ setAuthenticatedUserEmail: function(attemptToken, email) {
+ if (this.attemptToken_ == attemptToken)
+ chrome.send('oauthEnrollCompleteLogin', [email]);
+ },
+
+ /**
* Handler for cancellations of an enforced auto-enrollment.
*/
cancelAutoEnrollment: function() {
@@ -296,12 +316,20 @@ login.createScreen('OAuthEnrollmentScreen', 'oauth-enrollment', function() {
var msg = m.data;
- // 'completeLogin' for full gaia signin flow. For SAML case,
- // 'confirmPassword' is sent after authentication. Since enrollment
- // does not need the actual password, this is treated the same as
- // 'completeLogin'.
- if (msg.method == 'completeLogin' || msg.method == 'confirmPassword')
+ if (msg.method == 'completeLogin') {
+ // A user has successfully authenticated via regular GAIA.
chrome.send('oauthEnrollCompleteLogin', [msg.email]);
+ }
+
+ if (msg.method == 'retrieveAuthenticatedUserEmail') {
+ // A user has successfully authenticated via SAML. However, the user's
+ // identity is not known. Instead of reporting success immediately,
+ // retrieve the user's e-mail address first.
+ this.attemptToken_ = msg.attemptToken;
+ this.showWorking(null);
+ chrome.send('oauthEnrollRetrieveAuthenticatedUserEmail',
+ [msg.attemptToken]);
+ }
}
};
});
« no previous file with comments | « no previous file | chrome/browser/ui/webui/chromeos/login/enrollment_screen_handler.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698