Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(5835)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/io_thread.cc

Issue 1414313002: Allow dynamic updating of authentication policies (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master
Patch Set: Fix IOS compile problem - attempt 3 Created 5 years, 1 month ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « chrome/browser/io_thread.h ('k') | chrome/browser/io_thread_unittest.cc » ('j') | chrome/browser/io_thread_unittest.cc » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/io_thread.cc
diff --git a/chrome/browser/io_thread.cc b/chrome/browser/io_thread.cc
index 1f0d5f968cac8c98f32c1e198fc9a3b21f898815..fb55a4d783c57c71d9b314e12f022cb98e38898a 100644
--- a/chrome/browser/io_thread.cc
+++ b/chrome/browser/io_thread.cc
@@ -76,6 +76,7 @@
#include "net/ftp/ftp_network_layer.h"
#include "net/http/http_auth_filter.h"
#include "net/http/http_auth_handler_factory.h"
+#include "net/http/http_auth_preferences.h"
#include "net/http/http_network_layer.h"
#include "net/http/http_network_session.h"
#include "net/http/http_server_properties_impl.h"
@@ -467,17 +468,36 @@ IOThread::IOThread(
is_quic_allowed_by_policy_(true),
creation_time_(base::TimeTicks::Now()),
weak_factory_(this) {
+ scoped_refptr<base::SingleThreadTaskRunner> io_thread_proxy =
+ BrowserThread::GetMessageLoopProxyForThread(BrowserThread::IO);
auth_schemes_ = local_state->GetString(prefs::kAuthSchemes);
- negotiate_disable_cname_lookup_ = local_state->GetBoolean(
- prefs::kDisableAuthNegotiateCnameLookup);
- negotiate_enable_port_ = local_state->GetBoolean(
- prefs::kEnableAuthNegotiatePort);
- auth_server_whitelist_ = local_state->GetString(prefs::kAuthServerWhitelist);
- auth_delegate_whitelist_ = local_state->GetString(
- prefs::kAuthNegotiateDelegateWhitelist);
+ negotiate_disable_cname_lookup_.Init(
+ prefs::kDisableAuthNegotiateCnameLookup, local_state,
+ base::Bind(&IOThread::UpdateNegotiateDisableCnameLookup,
+ base::Unretained(this)));
+ negotiate_disable_cname_lookup_.MoveToThread(io_thread_proxy);
+ negotiate_enable_port_.Init(
+ prefs::kEnableAuthNegotiatePort, local_state,
+ base::Bind(&IOThread::UpdateNegotiateEnablePort, base::Unretained(this)));
+ negotiate_enable_port_.MoveToThread(io_thread_proxy);
+ auth_server_whitelist_.Init(
+ prefs::kAuthServerWhitelist, local_state,
+ base::Bind(&IOThread::UpdateServerWhitelist, base::Unretained(this)));
+ auth_server_whitelist_.MoveToThread(io_thread_proxy);
+ auth_delegate_whitelist_.Init(
+ prefs::kAuthNegotiateDelegateWhitelist, local_state,
+ base::Bind(&IOThread::UpdateDelegateWhitelist, base::Unretained(this)));
+ auth_delegate_whitelist_.MoveToThread(io_thread_proxy);
+#if defined(OS_ANDROID)
+ auth_android_negotiate_account_type_.Init(
+ prefs::kAuthAndroidNegotiateAccountType, local_state,
+ base::Bind(&IOThread::UpdateAndroidAuthNegotiateAccountType,
+ base::Unretained(this)));
+ auth_android_negotiate_account_type_.MoveToThread(io_thread_proxy);
+#endif
+#if defined(OS_POSIX) && !defined(OS_ANDROID)
gssapi_library_name_ = local_state->GetString(prefs::kGSSAPILibraryName);
- auth_android_negotiate_account_type_ =
- local_state->GetString(prefs::kAuthAndroidNegotiateAccountType);
+#endif
pref_proxy_config_tracker_.reset(
ProxyServiceFactory::CreatePrefProxyConfigTrackerOfLocalState(
local_state));
@@ -503,13 +523,11 @@ IOThread::IOThread(
local_state,
base::Bind(&IOThread::UpdateDnsClientEnabled,
base::Unretained(this)));
- dns_client_enabled_.MoveToThread(
- BrowserThread::GetMessageLoopProxyForThread(BrowserThread::IO));
+ dns_client_enabled_.MoveToThread(io_thread_proxy);
quick_check_enabled_.Init(prefs::kQuickCheckEnabled,
local_state);
- quick_check_enabled_.MoveToThread(
- BrowserThread::GetMessageLoopProxyForThread(BrowserThread::IO));
+ quick_check_enabled_.MoveToThread(io_thread_proxy);
#if defined(ENABLE_CONFIGURATION_POLICY)
is_spdy_disabled_by_policy_ = policy_service->GetPolicies(
@@ -742,8 +760,7 @@ void IOThread::Init() {
globals_->ssl_config_service = GetSSLConfigService();
- globals_->http_auth_handler_factory.reset(CreateDefaultAuthHandlerFactory(
- globals_->host_resolver.get()));
+ CreateDefaultAuthHandlerFactory();
globals_->http_server_properties.reset(new net::HttpServerPropertiesImpl());
// For the ProxyScriptFetcher, we use a direct ProxyService.
globals_->proxy_script_fetcher_proxy_service =
@@ -881,7 +898,6 @@ void IOThread::CleanUp() {
network_change_observer_.reset();
system_proxy_config_service_.reset();
-
delete globals_;
globals_ = NULL;
@@ -1019,30 +1035,53 @@ void IOThread::RegisterPrefs(PrefRegistrySimple* registry) {
registry->RegisterBooleanPref(prefs::kQuickCheckEnabled, true);
}
-net::HttpAuthHandlerFactory* IOThread::CreateDefaultAuthHandlerFactory(
- net::HostResolver* resolver) {
- net::HttpAuthFilterWhitelist* auth_filter_default_credentials = NULL;
- if (!auth_server_whitelist_.empty()) {
- auth_filter_default_credentials =
- new net::HttpAuthFilterWhitelist(auth_server_whitelist_);
- }
- net::HttpAuthFilterWhitelist* auth_filter_delegate = NULL;
- if (!auth_delegate_whitelist_.empty()) {
- auth_filter_delegate =
- new net::HttpAuthFilterWhitelist(auth_delegate_whitelist_);
- }
- globals_->url_security_manager.reset(
- net::URLSecurityManager::Create(auth_filter_default_credentials,
- auth_filter_delegate));
- std::vector<std::string> supported_schemes = base::SplitString(
- auth_schemes_, ",", base::TRIM_WHITESPACE, base::SPLIT_WANT_ALL);
+void IOThread::UpdateServerWhitelist() {
+ globals_->http_auth_preferences->set_server_whitelist(
+ auth_server_whitelist_.GetValue());
+}
+
+void IOThread::UpdateDelegateWhitelist() {
+ globals_->http_auth_preferences->set_delegate_whitelist(
+ auth_delegate_whitelist_.GetValue());
+}
- scoped_ptr<net::HttpAuthHandlerRegistryFactory> registry_factory(
+#if defined(OS_ANDROID)
+void IOThread::UpdateAndroidAuthNegotiateAccountType() {
+ globals_->http_auth_preferences->set_auth_android_negotiate_account_type(
+ auth_android_negotiate_account_type_.GetValue());
+}
+#endif
+
+void IOThread::UpdateNegotiateDisableCnameLookup() {
+ globals_->http_auth_preferences->set_negotiate_disable_cname_lookup(
+ negotiate_disable_cname_lookup_.GetValue());
+}
+
+void IOThread::UpdateNegotiateEnablePort() {
+ globals_->http_auth_preferences->set_negotiate_enable_port(
+ negotiate_enable_port_.GetValue());
+}
+void IOThread::CreateDefaultAuthHandlerFactory() {
asanka 2015/11/25 19:00:09 Nit: add new line.
aberent 2015/11/26 15:58:00 Done.
+ std::vector<std::string> supported_schemes = base::SplitString(
+ auth_schemes_, ",", base::TRIM_WHITESPACE, base::SPLIT_WANT_NONEMPTY);
+ globals_->http_auth_preferences.reset(new net::HttpAuthPreferences(
+ supported_schemes
+#if defined(OS_POSIX) && !defined(OS_ANDROID)
+ ,
+ gssapi_library_name_
+#endif
+ ));
+ UpdateServerWhitelist();
+ UpdateDelegateWhitelist();
+ UpdateNegotiateDisableCnameLookup();
+ UpdateNegotiateEnablePort();
+#if defined(OS_ANDROID)
+ UpdateAndroidAuthNegotiateAccountType();
+#endif
+ globals_->http_auth_handler_factory =
net::HttpAuthHandlerRegistryFactory::Create(
- supported_schemes, globals_->url_security_manager.get(), resolver,
- gssapi_library_name_, auth_android_negotiate_account_type_,
- negotiate_disable_cname_lookup_, negotiate_enable_port_));
- return registry_factory.release();
+ globals_->http_auth_preferences.get(), globals_->host_resolver.get())
+ .Pass();
}
void IOThread::ClearHostCache() {
« no previous file with comments | « chrome/browser/io_thread.h ('k') | chrome/browser/io_thread_unittest.cc » ('j') | chrome/browser/io_thread_unittest.cc » ('J')

Powered by Google App Engine
This is Rietveld 408576698