Chromium Code Reviews Chromium Code Reviews
Issue 24153012:
Fix cyclic dependency between ProfilePolicyConnector and PrefService. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src| OLD | NEW |
|---|---|
| 1 // Copyright (c) 2013 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2013 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #include "chrome/browser/policy/profile_policy_connector.h" | 5 #include "chrome/browser/policy/profile_policy_connector.h" |
| 6 | 6 |
| 7 #include <vector> | 7 #include <vector> |
| 8 | 8 |
| 9 #include "base/logging.h" | 9 #include "base/logging.h" |
| 10 #include "chrome/browser/browser_process.h" | 10 #include "chrome/browser/browser_process.h" |
| 11 #include "chrome/browser/policy/browser_policy_connector.h" | 11 #include "chrome/browser/policy/browser_policy_connector.h" |
| 12 #include "chrome/browser/policy/configuration_policy_provider.h" | 12 #include "chrome/browser/policy/configuration_policy_provider.h" |
| 13 #include "chrome/browser/policy/policy_service_impl.h" | 13 #include "chrome/browser/policy/policy_service_impl.h" |
|
Joao da Silva
2013/10/16 12:44:58
include policy_service.h instead
pneubeck (no reviews)
2013/10/22 18:47:41
Done.
| |
| 14 | 14 |
| 15 #if defined(OS_CHROMEOS) | 15 #if defined(OS_CHROMEOS) |
| 16 #include "base/bind.h" | |
| 17 #include "base/prefs/pref_service.h" | |
| 18 #include "chrome/browser/chromeos/login/user.h" | 16 #include "chrome/browser/chromeos/login/user.h" |
| 19 #include "chrome/browser/chromeos/login/user_manager.h" | 17 #include "chrome/browser/chromeos/login/user_manager.h" |
| 20 #include "chrome/browser/chromeos/policy/device_local_account_policy_provider.h" | 18 #include "chrome/browser/chromeos/policy/device_local_account_policy_provider.h" |
| 21 #include "chrome/browser/chromeos/policy/login_profile_policy_provider.h" | 19 #include "chrome/browser/chromeos/policy/login_profile_policy_provider.h" |
| 22 #include "chrome/browser/chromeos/policy/user_cloud_policy_manager_chromeos.h" | 20 #include "chrome/browser/chromeos/policy/user_cloud_policy_manager_chromeos.h" |
| 23 #include "chrome/browser/chromeos/policy/user_cloud_policy_manager_factory_chrom eos.h" | 21 #include "chrome/browser/chromeos/policy/user_cloud_policy_manager_factory_chrom eos.h" |
|
Joao da Silva
2013/10/16 12:44:58
not used
pneubeck (no reviews)
2013/10/22 18:47:41
Done.
| |
| 24 #include "chrome/browser/chromeos/policy/user_network_configuration_updater.h" | |
| 25 #include "chrome/browser/chromeos/profiles/profile_helper.h" | |
| 26 #include "chrome/browser/policy/policy_service.h" | 22 #include "chrome/browser/policy/policy_service.h" |
|
Joao da Silva
2013/10/16 12:44:58
already included above, after the 1st comment chan
pneubeck (no reviews)
2013/10/22 18:47:41
Done.
| |
| 27 #include "chrome/common/pref_names.h" | |
| 28 #include "chromeos/network/network_handler.h" | |
| 29 #include "chromeos/network/onc/onc_certificate_importer_impl.h" | |
| 30 #else | 23 #else |
| 31 #include "chrome/browser/policy/cloud/user_cloud_policy_manager.h" | 24 #include "chrome/browser/policy/cloud/user_cloud_policy_manager.h" |
| 32 #include "chrome/browser/policy/cloud/user_cloud_policy_manager_factory.h" | 25 #include "chrome/browser/policy/cloud/user_cloud_policy_manager_factory.h" |
|
Joao da Silva
2013/10/16 12:44:58
not used
pneubeck (no reviews)
2013/10/22 18:47:41
Done.
| |
| 33 #endif | 26 #endif |
| 34 | 27 |
| 35 namespace policy { | 28 namespace policy { |
| 36 | 29 |
| 37 ProfilePolicyConnector::ProfilePolicyConnector(Profile* profile) | 30 ProfilePolicyConnector::ProfilePolicyConnector() |
| 38 : | |
| 39 #if defined(OS_CHROMEOS) | 31 #if defined(OS_CHROMEOS) |
| 40 is_primary_user_(false), | 32 : is_primary_user_(false) |
| 41 weak_ptr_factory_(this), | |
| 42 #endif | 33 #endif |
| 43 profile_(profile) {} | 34 {} |
| 44 | 35 |
| 45 ProfilePolicyConnector::~ProfilePolicyConnector() {} | 36 ProfilePolicyConnector::~ProfilePolicyConnector() {} |
| 46 | 37 |
| 47 void ProfilePolicyConnector::Init( | 38 void ProfilePolicyConnector::Init( |
| 48 bool force_immediate_load, | 39 bool force_immediate_load, |
| 40 #if defined(OS_CHROMEOS) | |
| 41 const chromeos::User* user, | |
| 42 #endif | |
| 43 CloudPolicyManager* user_cloud_policy_manager, | |
| 49 base::SequencedTaskRunner* sequenced_task_runner) { | 44 base::SequencedTaskRunner* sequenced_task_runner) { |
| 50 BrowserPolicyConnector* connector = | 45 BrowserPolicyConnector* connector = |
| 51 g_browser_process->browser_policy_connector(); | 46 g_browser_process->browser_policy_connector(); |
| 52 // |providers| contains a list of the policy providers available for the | 47 // |providers| contains a list of the policy providers available for the |
| 53 // PolicyService of this connector. | 48 // PolicyService of this connector. |
| 54 std::vector<ConfigurationPolicyProvider*> providers; | 49 std::vector<ConfigurationPolicyProvider*> providers; |
| 55 | 50 |
| 51 if (user_cloud_policy_manager) | |
| 52 providers.push_back(user_cloud_policy_manager); | |
| 53 | |
| 56 #if defined(OS_CHROMEOS) | 54 #if defined(OS_CHROMEOS) |
| 57 UserCloudPolicyManagerChromeOS* cloud_policy_manager = | 55 if (!user) { |
| 58 UserCloudPolicyManagerFactoryChromeOS::GetForProfile(profile_); | 56 // For Signin profile |
|
Joao da Silva
2013/10/16 12:44:58
terminate sentence with a .
pneubeck (no reviews)
2013/10/22 18:47:41
it was not a sentence though.
| |
| 59 if (cloud_policy_manager) | |
| 60 providers.push_back(cloud_policy_manager); | |
| 61 | |
| 62 bool allow_trusted_certs_from_policy = false; | |
| 63 chromeos::User* user = NULL; | |
| 64 if (chromeos::ProfileHelper::IsSigninProfile(profile_)) { | |
| 65 special_user_policy_provider_.reset(new LoginProfilePolicyProvider( | 57 special_user_policy_provider_.reset(new LoginProfilePolicyProvider( |
| 66 connector->GetPolicyService())); | 58 connector->GetPolicyService())); |
| 67 special_user_policy_provider_->Init(); | 59 special_user_policy_provider_->Init(); |
| 68 } else { | 60 } else { |
| 69 // |user| should never be NULL except for the signin profile. | 61 // |user| should never be NULL except for the signin profile. |
| 70 chromeos::UserManager* user_manager = chromeos::UserManager::Get(); | |
| 71 user = user_manager->GetUserByProfile(profile_); | |
| 72 CHECK(user); | |
| 73 std::string username = user->email(); | 62 std::string username = user->email(); |
| 74 is_primary_user_ = | 63 is_primary_user_ = |
| 75 chromeos::UserManager::Get()->GetLoggedInUsers().size() == 1; | 64 chromeos::UserManager::Get()->GetLoggedInUsers().size() == 1; |
|
Joao da Silva
2013/10/16 12:44:58
is_primary_user_ = user == UserManager::Get()->Get
pneubeck (no reviews)
2013/10/22 18:47:41
Done.
| |
| 76 if (user->GetType() == chromeos::User::USER_TYPE_PUBLIC_ACCOUNT) | 65 if (user->GetType() == chromeos::User::USER_TYPE_PUBLIC_ACCOUNT) |
| 77 InitializeDeviceLocalAccountPolicyProvider(username); | 66 InitializeDeviceLocalAccountPolicyProvider(username); |
| 78 // Allow trusted certs from policy only for managed regular accounts. | |
| 79 const bool is_managed = | |
| 80 connector->GetUserAffiliation(username) == USER_AFFILIATION_MANAGED; | |
| 81 if (is_managed && user->GetType() == chromeos::User::USER_TYPE_REGULAR) | |
| 82 allow_trusted_certs_from_policy = true; | |
| 83 } | 67 } |
| 84 if (special_user_policy_provider_) | 68 if (special_user_policy_provider_) |
| 85 providers.push_back(special_user_policy_provider_.get()); | 69 providers.push_back(special_user_policy_provider_.get()); |
| 86 | |
| 87 #else | |
| 88 UserCloudPolicyManager* cloud_policy_manager = | |
| 89 UserCloudPolicyManagerFactory::GetForProfile(profile_); | |
| 90 if (cloud_policy_manager) | |
| 91 providers.push_back(cloud_policy_manager); | |
| 92 #endif | 70 #endif |
| 93 | 71 |
| 94 policy_service_ = connector->CreatePolicyService(providers); | 72 policy_service_ = connector->CreatePolicyService(providers); |
| 95 | 73 |
| 96 #if defined(OS_CHROMEOS) | 74 #if defined(OS_CHROMEOS) |
| 97 if (is_primary_user_) { | 75 if (is_primary_user_) { |
| 98 if (cloud_policy_manager) | 76 if (user_cloud_policy_manager) |
| 99 connector->SetUserPolicyDelegate(cloud_policy_manager); | 77 connector->SetUserPolicyDelegate(user_cloud_policy_manager); |
| 100 else if (special_user_policy_provider_) | 78 else if (special_user_policy_provider_) |
| 101 connector->SetUserPolicyDelegate(special_user_policy_provider_.get()); | 79 connector->SetUserPolicyDelegate(special_user_policy_provider_.get()); |
| 102 | |
| 103 // A reference to |user| is stored by the NetworkConfigurationUpdater until | |
| 104 // the Updater is destructed during Shutdown. | |
| 105 network_configuration_updater_ = | |
| 106 UserNetworkConfigurationUpdater::CreateForUserPolicy( | |
| 107 allow_trusted_certs_from_policy, | |
| 108 *user, | |
| 109 scoped_ptr<chromeos::onc::CertificateImporter>( | |
| 110 new chromeos::onc::CertificateImporterImpl), | |
| 111 policy_service(), | |
| 112 chromeos::NetworkHandler::Get() | |
| 113 ->managed_network_configuration_handler()); | |
| 114 } | 80 } |
| 115 #endif | 81 #endif |
| 116 } | 82 } |
| 117 | 83 |
| 118 void ProfilePolicyConnector::InitForTesting(scoped_ptr<PolicyService> service) { | 84 void ProfilePolicyConnector::InitForTesting(scoped_ptr<PolicyService> service) { |
| 119 policy_service_ = service.Pass(); | 85 policy_service_ = service.Pass(); |
| 120 } | 86 } |
| 121 | 87 |
| 122 void ProfilePolicyConnector::Shutdown() { | 88 void ProfilePolicyConnector::Shutdown() { |
| 123 #if defined(OS_CHROMEOS) | 89 #if defined(OS_CHROMEOS) |
| 124 if (is_primary_user_) | 90 if (is_primary_user_) |
| 125 g_browser_process->browser_policy_connector()->SetUserPolicyDelegate(NULL); | 91 g_browser_process->browser_policy_connector()->SetUserPolicyDelegate(NULL); |
| 126 network_configuration_updater_.reset(); | |
| 127 if (special_user_policy_provider_) | 92 if (special_user_policy_provider_) |
| 128 special_user_policy_provider_->Shutdown(); | 93 special_user_policy_provider_->Shutdown(); |
| 129 #endif | 94 #endif |
| 130 } | 95 } |
| 131 | 96 |
| 132 #if defined(OS_CHROMEOS) | 97 #if defined(OS_CHROMEOS) |
| 133 void ProfilePolicyConnector::SetPolicyCertVerifier( | |
| 134 PolicyCertVerifier* cert_verifier) { | |
| 135 if (network_configuration_updater_) | |
| 136 network_configuration_updater_->SetPolicyCertVerifier(cert_verifier); | |
| 137 } | |
| 138 | |
| 139 base::Closure ProfilePolicyConnector::GetPolicyCertTrustedCallback() { | |
| 140 return base::Bind(&ProfilePolicyConnector::SetUsedPolicyCertificatesOnce, | |
| 141 weak_ptr_factory_.GetWeakPtr()); | |
| 142 } | |
| 143 | |
| 144 void ProfilePolicyConnector::GetWebTrustedCertificates( | |
| 145 net::CertificateList* certs) const { | |
| 146 certs->clear(); | |
| 147 if (network_configuration_updater_) | |
| 148 network_configuration_updater_->GetWebTrustedCertificates(certs); | |
| 149 } | |
| 150 #endif | |
| 151 | |
| 152 bool ProfilePolicyConnector::UsedPolicyCertificates() { | |
| 153 #if defined(OS_CHROMEOS) | |
| 154 return profile_->GetPrefs()->GetBoolean(prefs::kUsedPolicyCertificatesOnce); | |
| 155 #else | |
| 156 return false; | |
| 157 #endif | |
| 158 } | |
| 159 | |
| 160 #if defined(OS_CHROMEOS) | |
| 161 void ProfilePolicyConnector::SetUsedPolicyCertificatesOnce() { | |
| 162 profile_->GetPrefs()->SetBoolean(prefs::kUsedPolicyCertificatesOnce, true); | |
| 163 } | |
| 164 | |
| 165 void ProfilePolicyConnector::InitializeDeviceLocalAccountPolicyProvider( | 98 void ProfilePolicyConnector::InitializeDeviceLocalAccountPolicyProvider( |
| 166 const std::string& username) { | 99 const std::string& username) { |
| 167 BrowserPolicyConnector* connector = | 100 BrowserPolicyConnector* connector = |
| 168 g_browser_process->browser_policy_connector(); | 101 g_browser_process->browser_policy_connector(); |
| 169 DeviceLocalAccountPolicyService* device_local_account_policy_service = | 102 DeviceLocalAccountPolicyService* device_local_account_policy_service = |
| 170 connector->GetDeviceLocalAccountPolicyService(); | 103 connector->GetDeviceLocalAccountPolicyService(); |
| 171 if (!device_local_account_policy_service) | 104 if (!device_local_account_policy_service) |
| 172 return; | 105 return; |
| 173 special_user_policy_provider_.reset(new DeviceLocalAccountPolicyProvider( | 106 special_user_policy_provider_.reset(new DeviceLocalAccountPolicyProvider( |
| 174 username, device_local_account_policy_service)); | 107 username, device_local_account_policy_service)); |
| 175 special_user_policy_provider_->Init(); | 108 special_user_policy_provider_->Init(); |
| 176 } | 109 } |
| 177 #endif | 110 #endif |
| 178 | 111 |
| 179 } // namespace policy | 112 } // namespace policy |
| OLD | NEW |
