| blob | 51f7bbaf9462f6bb6a93425538d22ba7e9dea0bf |
1 // Copyright 2014 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 #ifndef CHROME_BROWSER_CHROMEOS_LOGIN_SESSION_USER_SESSION_MANAGER_H_
6 #define CHROME_BROWSER_CHROMEOS_LOGIN_SESSION_USER_SESSION_MANAGER_H_
8 #include <string>
35 }
53 // Called after profile is loaded and prepared for the session.
54 // |browser_launched| will be true is browser has been launched, otherwise
55 // it will return false and client is responsible on launching browser.
61 };
65 // Called when UserManager finishes restoring user sessions after crash.
70 };
72 // UserSessionManager is responsible for starting user session which includes:
73 // * load and initialize Profile (including custom Profile preferences),
74 // * mark user as logged in and notify observers,
75 // * initialize OAuth2 authentication session,
76 // * initialize and launch user session based on the user type.
77 // Also supports restoring active user sessions after browser crash:
78 // load profile, restore OAuth authentication session etc.
79 class UserSessionManager
86 // Context of StartSession calls.
88 // Starting primary user session, through login UI.
89 PRIMARY_USER_SESSION,
91 // Starting secondary user session, through multi-profiles login UI.
92 SECONDARY_USER_SESSION,
94 // Starting primary user session after browser crash.
95 PRIMARY_USER_SESSION_AFTER_CRASH,
97 // Starting secondary user session after browser crash.
98 SECONDARY_USER_SESSION_AFTER_CRASH,
101 // Returns UserSessionManager instance.
104 // Called when user is logged in to override base::DIR_HOME path.
107 // Registers session related preferences.
110 // Invoked after the tmpfs is successfully mounted.
111 // Asks session_manager to restart Chrome in Guest session mode.
112 // |start_url| is an optional URL to be opened in Guest session browser.
115 // Creates and returns the authenticator to use.
116 // Single Authenticator instance is used for entire login process,
117 // even for multiple retries. Authenticator instance holds reference to
118 // login profile and is later used during fetching of OAuth tokens.
122 // Start user session given |user_context|.
123 // OnProfilePrepared() will be called on |delegate| once Profile is ready.
125 StartSessionType start_session_type,
130 // Invalidates |delegate|, which was passed to StartSession method call.
133 // Perform additional actions once system wide notification
134 // "UserLoggedIn" has been sent.
137 // Restores authentication session after crash.
140 // Usually is called when Chrome is restarted after a crash and there's an
141 // active session. First user (one that is passed with --login-user) Chrome
142 // session has been already restored at this point. This method asks session
143 // manager for all active user sessions, marks them as logged in
144 // and notifies observers.
147 // Returns true iff browser has been restarted after crash and
148 // UserSessionManager finished restoring user sessions.
151 // Returns true iff browser has been restarted after crash and
152 // user sessions restoration is in progress.
155 // Initialize RLZ.
158 // Get the NSS cert database for the user represented with |profile|
159 // and start certificate loader with it.
162 // Starts loading CRL set.
165 // Starts loading EV Certificates whitelist.
169 // Invoked when the user is logging in for the first time, or is logging in to
170 // an ephemeral session type, such as guest or a public session.
175 // Gets/sets Chrome OAuth client id and secret for kiosk app mode. The default
176 // values can be overridden with kiosk auth file.
184 // Thin wrapper around StartupBrowserCreator::LaunchBrowser(). Meant to be
185 // used in a Task posted to the UI thread. Once the browser is launched the
186 // login host is deleted.
189 // Changes browser locale (selects best suitable locale from different
190 // user settings). Returns true if callback will be called.
196 // Switch to the locale that |profile| wishes to use and invoke |callback|.
200 // Restarts Chrome if needed. This happens when user session has custom
201 // flags/switches enabled. Another case when owner has setup custom flags,
202 // they are applied on login screen as well but not to user session.
203 // |early_restart| is true if this restart attempt happens before user profile
204 // is fully initialized.
205 // Might not return if restart is possible right now.
206 // Returns true if restart was scheduled.
207 // Returns false if no restart is needed.
211 // Returns true if Easy unlock keys needs to be updated.
214 // Returns true if there are pending Easy unlock key operations and
215 // |callback| will be invoked when it is done.
223 // This method will be called when user have obtained oauth2 tokens.
226 // Returns default IME state for user session.
230 // Note this could return NULL if not enabled.
233 // Update Easy unlock cryptohome keys for given user context.
236 // Returns the auth request context associated with auth data.
239 // Removes a profile from the per-user input methods states map.
256 // OAuth2LoginManager::Observer overrides:
261 // net::NetworkChangeNotifier::ConnectionTypeObserver overrides:
265 // UserSessionManagerDelegate overrides:
266 // Used when restoring user sessions after crash.
277 // Store any useful UserContext data early on when profile has not been
278 // created yet and user services were not yet initialized. Can store
279 // information in Local State like GAIA ID.
286 // Callback for asynchronous profile creation.
292 // Callback for Profile::CREATE_STATUS_CREATED profile state.
293 // Initializes basic preferences for newly created profile. Any other
294 // early profile initialization that needs to happen before
295 // ProfileManager::DoFinalInit() gets called is done here.
299 // Callback for Profile::CREATE_STATUS_INITIALIZED profile state.
300 // Profile is created, extensions and promo resources are initialized.
305 // Callback to resume profile creation after transferring auth data from
306 // the authentication profile.
309 // Finalized profile preparation.
312 // Starts out-of-box flow with the specified screen.
315 // Adds first-time login URLs.
318 // Perform session initialization and either move to additional login flows
319 // such as TOS (public sessions), priority pref sync UI (new users) or
320 // launch browser.
321 // Returns true if browser has been launched or false otherwise.
324 // Initializes member variables needed for session restore process via
325 // OAuthLoginManager.
328 // Restores GAIA auth cookies for the created user profile from OAuth2 token.
332 // Initializes RLZ. If |disabled| is true, RLZ pings are disabled.
335 // Callback to process RetrieveActiveSessions() request results.
340 // Called by OnRestoreActiveSessions() when there're user sessions in
341 // |pending_user_sessions_| that has to be restored one by one.
342 // Also called after first user session from that list is restored and so on.
343 // Process continues till |pending_user_sessions_| map is not empty.
346 // Notifies observers that user pending sessions restore has finished.
349 // Attempts restarting the browser process and esures that this does
350 // not happen while we are still fetching new OAuth refresh tokens.
353 // Callback invoked when Easy unlock key operations are finished.
357 // Internal implementation of DoBrowserLaunch. Initially should be called with
358 // |locale_pref_checked| set to false which will result in postponing browser
359 // launch till user locale is applied if needed. After locale check has
360 // completed this method is called with |locale_pref_checked| set to true.
370 // Callback invoked when |token_handle_util_| has finished.
373 // Returns |true| if token handles should be used on this device.
378 // Test API methods.
380 // Injects |user_context| that will be used to create StubAuthenticator
381 // instance when CreateAuthenticator() is called.
384 // Controls whether browser instance should be launched after sign in
385 // (used in tests).
388 }
390 // Controls whether token handle fetching is enabled (used in tests).
393 // The user pods display type for histogram.
395 // User pods enabling or disabling is possible either via local settings or
396 // via domain policy. The former method only applies to regular devices,
397 // whereas the latter is for enterprise-managed devices. Therefore, we have
398 // four possible combiations.
403 // Maximum histogram value.
405 };
407 // Sends metrics for user pods display when existing user has logged in.
412 // Authentication/user context.
413 UserContext user_context_;
415 StartSessionType start_session_type_;
417 // Injected user context for stub authenticator.
420 // True if the authentication context's cookie jar contains authentication
421 // cookies from the authentication extension login flow.
424 // Active user session restoration related members.
426 // True if user sessions has been restored after crash.
427 // On a normal boot then login into user sessions this will be false.
430 // True if user sessions restoration after crash is in progress.
433 // User sessions that have to be restored after browser crash.
434 // [user_id] > [user_id_hash]
438 session_state_observer_list_;
440 // OAuth2 session related members.
442 // True if we should restart chrome right after session restore.
445 // Sesion restore strategy.
448 // Set of user_id for those users that we should restore authentication
449 // session when notified about online state change.
450 SigninSessionRestoreStateSet pending_signin_restore_sessions_;
452 // Kiosk mode related members.
453 // Chrome oauth client id and secret - override values for kiosk mode.
457 // Per-user-session Input Methods states.
461 // Manages Easy unlock cryptohome keys.
466 // Whether should fetch token handles, tests may override this value.
472 // Whether should launch browser, tests may override this value.
475 // Child account status is necessary for InitializeStartUrls call.
481 };