Don't allow elevation for CHROME_OS.

chrome/browser/managed_mode/managed_user_service.cc

 // Copyright (c) 2013 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "chrome/browser/managed_mode/managed_user_service.h"
 
 #include "base/memory/ref_counted.h"
 #include "base/prefs/pref_service.h"
 #include "base/sequenced_task_runner.h"
 #include "chrome/browser/extensions/extension_service.h"
@@ skipping 111 matching lines @@
   return observer ? observer->is_elevated() : false;
 }
 
 bool ManagedUserService::IsPassphraseEmpty() const {
   PrefService* pref_service = profile_->GetPrefs();
   return pref_service->GetString(prefs::kManagedModeLocalPassphrase).empty();
 }
 
 bool ManagedUserService::CanSkipPassphraseDialog(
     const content::WebContents* web_contents) const {
+#if defined(OS_CHROMEOS)
+  return false;

[Adrian Kuegel, 2013/04/11 15:56:10]

I could add a DCHECK here, too, if I modify the code in
extension_uninstall_dialog.cc, anyway.

+#endif
   return IsElevatedForWebContents(web_contents) ||
          IsPassphraseEmpty();
 }
 
 void ManagedUserService::RequestAuthorization(
     content::WebContents* web_contents,
     const PassphraseCheckedCallback& callback) {
+#if defined(OS_CHROMEOS)
+  callback.Run(false);

[Bernhard Bauer, 2013/04/11 13:31:18]

Again, should we maybe DCHECK?

[Adrian Kuegel, 2013/04/11 15:56:10]

If I add a DCHECK here, I would have to also change the code in
extension_uninstall_dialog.cc and crx_installer.cc. But maybe I should do that,
anyway.

+  return;
+#endif
+
   if (CanSkipPassphraseDialog(web_contents)) {
     callback.Run(true);
     return;
   }
 
   // Is deleted automatically when the dialog is closed.
   new ManagedUserPassphraseDialog(web_contents, callback);
 }
 
 // static
@@ skipping 257 matching lines @@
       profile_->GetPrefs()->GetDictionary(prefs::kManagedModeManualURLs);
   for (DictionaryValue::Iterator it(*dict); !it.IsAtEnd(); it.Advance()) {
     GURL url(it.key());
     if (url.host() == host)
       urls->push_back(url);
   }
 }
 
 void ManagedUserService::AddElevationForExtension(
     const std::string& extension_id) {
+#if !defined(OS_CHROMEOS)
   elevated_for_extensions_.insert(extension_id);

[Bernhard Bauer, 2013/04/11 13:31:18]

And here

+#endif
 }
 
 void ManagedUserService::RemoveElevationForExtension(
     const std::string& extension_id) {
+#if !defined(OS_CHROMEOS)
   elevated_for_extensions_.erase(extension_id);

[Bernhard Bauer, 2013/04/11 13:31:18]

And here

+#endif
 }
 
 void ManagedUserService::Init() {
   if (!ProfileIsManaged())
     return;
 
   extensions::ExtensionSystem* extension_system =
       extensions::ExtensionSystem::Get(profile_);
   extensions::ManagementPolicy* management_policy =
       extension_system->management_policy();
@@ skipping 47 matching lines @@
       profile_->GetPrefs()->GetDictionary(prefs::kManagedModeManualURLs);
   scoped_ptr<std::map<GURL, bool> > url_map(new std::map<GURL, bool>());
   for (DictionaryValue::Iterator it(*dict); !it.IsAtEnd(); it.Advance()) {
     bool allow = false;
     bool result = it.value().GetAsBoolean(&allow);
     DCHECK(result);
     (*url_map)[GURL(it.key())] = allow;
   }
   url_filter_context_.SetManualURLs(url_map.Pass());
 }