Chrome OS multi-profiles backend and UI.

chrome/browser/chromeos/login/login_utils.cc

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "chrome/browser/chromeos/login/login_utils.h"
 
 #include <algorithm>
 #include <vector>
 
 #include "base/chromeos/chromeos_version.h"
@@ skipping 308 matching lines @@
 void LoginUtilsImpl::PrepareProfile(
     const UserContext& user_context,
     const std::string& display_email,
     bool using_oauth,
     bool has_cookies,
     LoginUtils::Delegate* delegate) {
   BootTimesLoader* btl = BootTimesLoader::Get();
 
   VLOG(1) << "Completing login for " << user_context.username;
 
+  // TODO(nkostylev): Eliminate this flag. http://crbug.com/230349
+  bool is_primary_user = !UserManager::Get()->IsUserLoggedIn();
+
   btl->AddLoginTimeMarker("StartSession-Start", false);
   DBusThreadManager::Get()->GetSessionManagerClient()->StartSession(
       user_context.username);
   btl->AddLoginTimeMarker("StartSession-End", false);
 
   btl->AddLoginTimeMarker("UserLoggedIn-Start", false);
   UserManager* user_manager = UserManager::Get();
   user_manager->UserLoggedIn(user_context.username,
                              user_context.username_hash,
                              false);
   btl->AddLoginTimeMarker("UserLoggedIn-End", false);
 
   // Switch log file as soon as possible.
   if (base::chromeos::IsRunningOnChromeOS())
     logging::RedirectChromeLogging(*(CommandLine::ForCurrentProcess()));
 
   // Update user's displayed email.
   if (!display_email.empty())
     user_manager->SaveUserDisplayEmail(user_context.username, display_email);
 
   user_context_ = user_context;
 
   using_oauth_ = using_oauth;
   has_web_auth_cookies_ = has_cookies;
   delegate_ = delegate;
   InitSessionRestoreStrategy();
 
-  policy::BrowserPolicyConnector* connector =
-      g_browser_process->browser_policy_connector();
+  bool wait_for_policy_fetch = false;
 
-  // If this is an enterprise device and the user belongs to the enterprise
-  // domain, then wait for a policy fetch before logging the user in. This
-  // will delay Profile creation until the policy is fetched, so that features
-  // controlled by policy (e.g. Sync, Startup tabs) only start after the
-  // PrefService has the right values.
-  // Profile creation is also resumed if the fetch attempt fails.
-  bool wait_for_policy_fetch =
-      using_oauth_ &&
-      authenticator_.get() &&
-      (connector->GetUserAffiliation(user_context_.username) ==
-           policy::USER_AFFILIATION_MANAGED);
+  // TODO(nkostylev): Figure out implementation for multiple-profiles.
+  if (is_primary_user) {
+    policy::BrowserPolicyConnector* connector =
+        g_browser_process->browser_policy_connector();
 
-  // Initialize user policy before the profile is created so the profile
-  // initialization code sees the cached policy settings.
-  connector->InitializeUserPolicy(user_context_.username,
-                                  user_manager->IsLoggedInAsPublicAccount(),
-                                  wait_for_policy_fetch);
+    // If this is an enterprise device and the user belongs to the enterprise
+    // domain, then wait for a policy fetch before logging the user in. This
+    // will delay Profile creation until the policy is fetched, so that features
+    // controlled by policy (e.g. Sync, Startup tabs) only start after the
+    // PrefService has the right values.
+    // Profile creation is also resumed if the fetch attempt fails.
+    wait_for_policy_fetch =
+        using_oauth_ &&
+        authenticator_.get() &&
+        (connector->GetUserAffiliation(user_context_.username) ==
+             policy::USER_AFFILIATION_MANAGED);
+
+    // Initialize user policy before the profile is created so the profile
+    // initialization code sees the cached policy settings.
+    connector->InitializeUserPolicy(user_context_.username,
+                                    user_manager->IsLoggedInAsPublicAccount(),
+                                    wait_for_policy_fetch);
+  }
 
   // The default profile will have been changed because the ProfileManager
-  // will process the notification that the UserManager sends out.
+  // will process the notification that the UserManager sends out so
+  // username_hash has been already propogated to ProfileManager.
   ProfileManager::CreateDefaultProfileAsync(
       base::Bind(&LoginUtilsImpl::OnProfileCreated, AsWeakPtr()));
 
   if (wait_for_policy_fetch) {
     // Profile creation will block until user policy is fetched, which
     // requires the DeviceManagement token. Try to fetch it now.
     // TODO(atwilson): This is somewhat racy, as we are trying to fetch a
     // DMToken in parallel with loading the cached policy blob (there could
     // already be a DMToken in the cached policy). Once the legacy policy
     // framework is removed, this code can register a
@@ skipping 562 matching lines @@
 bool LoginUtils::IsWhitelisted(const std::string& username) {
   CrosSettings* cros_settings = CrosSettings::Get();
   bool allow_new_user = false;
   cros_settings->GetBoolean(kAccountsPrefAllowNewUser, &allow_new_user);
   if (allow_new_user)
     return true;
   return cros_settings->FindEmailInList(kAccountsPrefUsers, username);
 }
 
 }  // namespace chromeos