chrome/browser/resources/gaia_auth_host/gaia_auth_host.js - Issue 136573002: Retrieve the authenticated user's e-mail from GAIA during SAML login

Unified Diff: chrome/browser/resources/gaia_auth_host/gaia_auth_host.js

Issue 136573002: Retrieve the authenticated user's e-mail from GAIA during SAML login (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: Created 6 years, 11 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« chrome/browser/chromeos/login/saml_browsertest.cc ('K') | « chrome/browser/resources/gaia_auth/main.js ('k') | chrome/browser/ui/webui/chromeos/login/signin_screen_handler.h » ('j') | chrome/browser/ui/webui/chromeos/login/signin_screen_handler.cc » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: chrome/browser/resources/gaia_auth_host/gaia_auth_host.js

diff --git a/chrome/browser/resources/gaia_auth_host/gaia_auth_host.js b/chrome/browser/resources/gaia_auth_host/gaia_auth_host.js

index 3138d6d07d525c598a6ea8e0659289ec06bb5c11..c77ea9b84eec5f6ad68f6424b7c869e2ac3c42b3 100644

--- a/chrome/browser/resources/gaia_auth_host/gaia_auth_host.js

+++ b/chrome/browser/resources/gaia_auth_host/gaia_auth_host.js

@@ -150,6 +150,18 @@ cr.define('cr.login', function() {

successCallback_: null,

/**

+ * Invoked when GAIA indicates login success and SAML was used. At this

+ * point, GAIA cookies are present but the identity of the authenticated

+ * user is not known. The embedder of GaiaAuthHost should extract the GAIA

+ * cookies from the cookie jar, query GAIA for the authenticated user's

+ * e-mail address and invoke GaiaAuthHost.setAuthenticatedUserEmail with the

+ * result. The argument is an opaque token that should be passed back to

+ * GaiaAuthHost.setAuthenticatedUserEmail.

+ * @type {function(number)}

+ */

+ retrieveAuthenticatedUserEmailCallback_: null,

+ /**

* Invoked when the auth flow needs a user to confirm his/her passwords.

* This could happen when there are more than one passwords scraped during

* SAML flow. The embedder of GaiaAuthHost should show an UI to collect a

@@ -178,6 +190,14 @@ cr.define('cr.login', function() {

/**

+ * Sets retrieveAuthenticatedUserEmailCallback_.

+ * @type {function()}

+ */

+ set retrieveAuthenticatedUserEmailCallback(callback) {

+ this.retrieveAuthenticatedUserEmailCallback_ = callback;

+ },

+ /**

* Sets confirmPasswordCallback_.

* @type {function()}

@@ -262,6 +282,21 @@ cr.define('cr.login', function() {

/**

+ * Sends the authenticated user's e-mail address to the auth extension.

+ * @param {number} attemptToken The opaque token provided to the

+ * retrieveAuthenticatedUserEmailCallback_.

+ * @param {string} email The authenticated user's e-mail address.

+ */

+ setAuthenticatedUserEmail: function(attemptToken, email) {

+ var msg = {

+ method: 'setAuthenticatedUserEmail',

+ attemptToken: attemptToken,

+ email: email

+ };

+ this.frame_.contentWindow.postMessage(msg, AUTH_URL_BASE);

+ },

+ /**

* Invoked to process authentication success.

* @param {Object} credentials Credential object to pass to success

* callback.

@@ -325,6 +360,16 @@ cr.define('cr.login', function() {

return;

}

+ if (msg.method == 'retrieveAuthenticatedUserEmail') {

+ if (this.retrieveAuthenticatedUserEmailCallback_) {

+ this.retrieveAuthenticatedUserEmailCallback_(msg.attemptToken);

+ } else {

+ console.error(

+ 'GaiaAuthHost: Invalid retrieveAuthenticatedUserEmailCallback_.');

+ }

+ return;

+ }

if (msg.method == 'confirmPassword') {

if (this.confirmPasswordCallback_)

this.confirmPasswordCallback_();