Chromium Code Reviews Chromium Code Reviews
Issue 2888053003:
Network traffic annotation added to OAuth2ApiCallFlow and its subclasses. (Closed)
| OLD | NEW |
|---|---|
| 1 // Copyright 2017 The Chromium Authors. All rights reserved. | 1 // Copyright 2017 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #include "chrome/browser/extensions/api/identity/identity_get_auth_token_functio n.h" | 5 #include "chrome/browser/extensions/api/identity/identity_get_auth_token_functio n.h" |
| 6 | 6 |
| 7 #include "base/strings/string_number_conversions.h" | 7 #include "base/strings/string_number_conversions.h" |
| 8 #include "chrome/browser/extensions/api/identity/identity_api.h" | 8 #include "chrome/browser/extensions/api/identity/identity_api.h" |
| 9 #include "chrome/browser/extensions/api/identity/identity_constants.h" | 9 #include "chrome/browser/extensions/api/identity/identity_constants.h" |
| 10 #include "chrome/browser/profiles/profile.h" | 10 #include "chrome/browser/profiles/profile.h" |
| 11 #include "chrome/browser/signin/chrome_signin_client_factory.h" | 11 #include "chrome/browser/signin/chrome_signin_client_factory.h" |
| 12 #include "chrome/browser/signin/profile_oauth2_token_service_factory.h" | 12 #include "chrome/browser/signin/profile_oauth2_token_service_factory.h" |
| 13 #include "chrome/browser/signin/signin_manager_factory.h" | 13 #include "chrome/browser/signin/signin_manager_factory.h" |
| 14 #include "chrome/common/extensions/api/identity.h" | 14 #include "chrome/common/extensions/api/identity.h" |
| 15 #include "components/signin/core/browser/profile_oauth2_token_service.h" | 15 #include "components/signin/core/browser/profile_oauth2_token_service.h" |
| 16 #include "components/signin/core/browser/signin_manager.h" | 16 #include "components/signin/core/browser/signin_manager.h" |
| 17 #include "components/signin/core/common/profile_management_switches.h" | 17 #include "components/signin/core/common/profile_management_switches.h" |
| 18 #include "extensions/common/extension_l10n_util.h" | 18 #include "extensions/common/extension_l10n_util.h" |
| 19 #include "google_apis/gaia/gaia_urls.h" | 19 #include "google_apis/gaia/gaia_urls.h" |
| 20 #include "net/traffic_annotation/network_traffic_annotation.h" | |
| 20 | 21 |
| 21 #if defined(OS_CHROMEOS) | 22 #if defined(OS_CHROMEOS) |
| 22 #include "chrome/browser/app_mode/app_mode_utils.h" | 23 #include "chrome/browser/app_mode/app_mode_utils.h" |
| 23 #include "chrome/browser/browser_process.h" | 24 #include "chrome/browser/browser_process.h" |
| 24 #include "chrome/browser/chromeos/login/session/user_session_manager.h" | 25 #include "chrome/browser/chromeos/login/session/user_session_manager.h" |
| 25 #include "chrome/browser/chromeos/policy/browser_policy_connector_chromeos.h" | 26 #include "chrome/browser/chromeos/policy/browser_policy_connector_chromeos.h" |
| 26 #include "chrome/browser/chromeos/settings/device_oauth2_token_service.h" | 27 #include "chrome/browser/chromeos/settings/device_oauth2_token_service.h" |
| 27 #include "chrome/browser/chromeos/settings/device_oauth2_token_service_factory.h " | 28 #include "chrome/browser/chromeos/settings/device_oauth2_token_service_factory.h " |
| 28 #include "components/user_manager/user_manager.h" | 29 #include "components/user_manager/user_manager.h" |
| 29 #include "google_apis/gaia/gaia_constants.h" | 30 #include "google_apis/gaia/gaia_constants.h" |
| (...skipping 540 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 570 } | 571 } |
| 571 #endif | 572 #endif |
| 572 login_token_request_ = service->StartRequest( | 573 login_token_request_ = service->StartRequest( |
| 573 token_key_->account_id, OAuth2TokenService::ScopeSet(), this); | 574 token_key_->account_id, OAuth2TokenService::ScopeSet(), this); |
| 574 } | 575 } |
| 575 | 576 |
| 576 void IdentityGetAuthTokenFunction::StartGaiaRequest( | 577 void IdentityGetAuthTokenFunction::StartGaiaRequest( |
| 577 const std::string& login_access_token) { | 578 const std::string& login_access_token) { |
| 578 DCHECK(!login_access_token.empty()); | 579 DCHECK(!login_access_token.empty()); |
| 579 mint_token_flow_.reset(CreateMintTokenFlow()); | 580 mint_token_flow_.reset(CreateMintTokenFlow()); |
| 580 mint_token_flow_->Start(GetProfile()->GetRequestContext(), | 581 net::NetworkTrafficAnnotationTag traffic_annotation = |
| 581 login_access_token); | 582 net::DefineNetworkTrafficAnnotation("...", R"( |
| 583 semantics { | |
| 584 sender: "..." | |
|
Michael Courage
2017/05/17 22:59:16
Chrome Identity API maybe? Really the sender is a
Ramin Halavati
2017/05/24 13:04:41
|sender| should represent this module, which is cr
| |
| 585 description: "..." | |
|
Michael Courage
2017/05/17 22:59:16
requests a token from gaia allowing an app or exte
Ramin Halavati
2017/05/24 13:04:40
Done.
| |
| 586 trigger: "..." | |
|
Michael Courage
2017/05/17 22:59:16
api call from the app/extension
Ramin Halavati
2017/05/24 13:04:40
Done.
| |
| 587 data: "..." | |
|
Michael Courage
2017/05/17 22:59:16
The data sent is the user's login token, the ident
Ramin Halavati
2017/05/24 13:04:41
Done.
| |
| 588 destination: WEBSITE/GOOGLE_OWNED_SERVICE/OTHER/LOCAL | |
|
Michael Courage
2017/05/17 22:59:16
talks to a google owned service (gaia)
Ramin Halavati
2017/05/24 13:04:41
Done.
| |
| 589 } | |
| 590 policy { | |
|
Michael Courage
2017/05/17 22:59:16
I guess it's hard to split up these annotations gi
Ramin Halavati
2017/05/24 13:04:40
Acknowledged.
| |
| 591 cookies_allowed: false/true | |
|
Michael Courage
2017/05/17 22:59:16
Looks like OAuth2ApiCallFlow disables cookies
Ramin Halavati
2017/05/24 13:04:41
Done.
| |
| 592 cookies_store: "..." | |
| 593 setting: "..." | |
| 594 chrome_policy { | |
|
Michael Courage
2017/05/17 22:59:16
I don't know much about chrome policy. There's a S
Ramin Halavati
2017/05/24 13:04:41
Acknowledged.
| |
| 595 [POLICY_NAME] { | |
| 596 policy_options {mode: MANDATORY/RECOMMENDED/UNSET} | |
| 597 [POLICY_NAME]: ... //(value to disable it) | |
| 598 } | |
| 599 } | |
| 600 policy_exception_justification: "..." | |
| 601 })"); | |
| 602 mint_token_flow_->Start(GetProfile()->GetRequestContext(), login_access_token, | |
| 603 traffic_annotation); | |
| 582 } | 604 } |
| 583 | 605 |
| 584 void IdentityGetAuthTokenFunction::ShowLoginPopup() { | 606 void IdentityGetAuthTokenFunction::ShowLoginPopup() { |
| 585 signin_flow_.reset(new IdentitySigninFlow(this, GetProfile())); | 607 signin_flow_.reset(new IdentitySigninFlow(this, GetProfile())); |
| 586 signin_flow_->Start(); | 608 signin_flow_->Start(); |
| 587 } | 609 } |
| 588 | 610 |
| 589 void IdentityGetAuthTokenFunction::ShowOAuthApprovalDialog( | 611 void IdentityGetAuthTokenFunction::ShowOAuthApprovalDialog( |
| 590 const IssueAdviceInfo& issue_advice) { | 612 const IssueAdviceInfo& issue_advice) { |
| 591 const std::string locale = extension_l10n_util::CurrentLocaleOrDefault(); | 613 const std::string locale = extension_l10n_util::CurrentLocaleOrDefault(); |
| (...skipping 46 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 638 // Component apps using auto_approve may use Chrome's client ID by | 660 // Component apps using auto_approve may use Chrome's client ID by |
| 639 // omitting the field. | 661 // omitting the field. |
| 640 if (client_id.empty() && extension()->location() == Manifest::COMPONENT && | 662 if (client_id.empty() && extension()->location() == Manifest::COMPONENT && |
| 641 oauth2_info.auto_approve) { | 663 oauth2_info.auto_approve) { |
| 642 client_id = GaiaUrls::GetInstance()->oauth2_chrome_client_id(); | 664 client_id = GaiaUrls::GetInstance()->oauth2_chrome_client_id(); |
| 643 } | 665 } |
| 644 return client_id; | 666 return client_id; |
| 645 } | 667 } |
| 646 | 668 |
| 647 } // namespace extensions | 669 } // namespace extensions |
| OLD | NEW |
