| blob | 16ac0c9c88224c01f3ac05ad76a1aebdc767040c |
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 #ifndef CHROME_BROWSER_SYNC_PROFILE_SYNC_SERVICE_H_
6 #define CHROME_BROWSER_SYNC_PROFILE_SYNC_SERVICE_H_
8 #include <set>
9 #include <string>
10 #include <utility>
66 };
100 // ProfileSyncService is the layer between browser subsystems like bookmarks,
101 // and the sync backend. Each subsystem is logically thought of as being
102 // a sync datatype.
103 //
104 // Individual datatypes can, at any point, be in a variety of stages of being
105 // "enabled". Here are some specific terms for concepts used in this class:
106 //
107 // 'Registered' (feature suppression for a datatype)
108 //
109 // When a datatype is registered, the user has the option of syncing it.
110 // The sync opt-in UI will show only registered types; a checkbox should
111 // never be shown for an unregistered type, and nor should it ever be
112 // synced.
113 //
114 // A datatype is considered registered once RegisterDataTypeController
115 // has been called with that datatype's DataTypeController.
116 //
117 // 'Preferred' (user preferences and opt-out for a datatype)
118 //
119 // This means the user's opt-in or opt-out preference on a per-datatype
120 // basis. The sync service will try to make active exactly these types.
121 // If a user has opted out of syncing a particular datatype, it will
122 // be registered, but not preferred.
123 //
124 // This state is controlled by the ConfigurePreferredDataTypes and
125 // GetPreferredDataTypes. They are stored in the preferences system,
126 // and persist; though if a datatype is not registered, it cannot
127 // be a preferred datatype.
128 //
129 // 'Active' (run-time initialization of sync system for a datatype)
130 //
131 // An active datatype is a preferred datatype that is actively being
132 // synchronized: the syncer has been instructed to querying the server
133 // for this datatype, first-time merges have finished, and there is an
134 // actively installed ChangeProcessor that listens for changes to this
135 // datatype, propagating such changes into and out of the sync backend
136 // as necessary.
137 //
138 // When a datatype is in the process of becoming active, it may be
139 // in some intermediate state. Those finer-grained intermediate states
140 // are differentiated by the DataTypeController state.
141 //
142 // Sync Configuration:
143 //
144 // Sync configuration is accomplished via the following APIs:
145 // * OnUserChoseDatatypes(): Set the data types the user wants to sync.
146 // * SetDecryptionPassphrase(): Attempt to decrypt the user's encrypted data
147 // using the passed passphrase.
148 // * SetEncryptionPassphrase(): Re-encrypt the user's data using the passed
149 // passphrase.
150 //
151 // Additionally, the current sync configuration can be fetched by calling
152 // * GetRegisteredDataTypes()
153 // * GetPreferredDataTypes()
154 // * GetActiveDataTypes()
155 // * IsUsingSecondaryPassphrase()
156 // * EncryptEverythingEnabled()
157 // * IsPassphraseRequired()/IsPassphraseRequiredForDecryption()
158 //
159 // The "sync everything" state cannot be read from ProfileSyncService, but
160 // is instead pulled from SyncPrefs.HasKeepEverythingSynced().
161 //
162 // Initial sync setup:
163 //
164 // For privacy reasons, it is usually desirable to avoid syncing any data
165 // types until the user has finished setting up sync. There are two APIs
166 // that control the initial sync download:
167 //
168 // * SetSyncSetupCompleted()
169 // * SetSetupInProgress()
170 //
171 // SetSyncSetupCompleted() should be called once the user has finished setting
172 // up sync at least once on their account. SetSetupInProgress(true) should be
173 // called while the user is actively configuring their account, and then
174 // SetSetupInProgress(false) should be called when configuration is complete.
175 // When SetSyncSetupCompleted() == false, but SetSetupInProgress(true) has
176 // been called, then the sync engine knows not to download any user data.
177 //
178 // When initial sync is complete, the UI code should call
179 // SetSyncSetupCompleted() followed by SetSetupInProgress(false) - this will
180 // tell the sync engine that setup is completed and it can begin downloading
181 // data from the sync server.
182 //
195 // Status of sync server connection, sync token and token request.
200 // Sync server connection status reported by sync backend.
204 // Times when OAuth2 access token is requested and received.
208 // Error returned by OAuth2TokenService for token request and time when
209 // next request is scheduled.
210 GoogleServiceAuthError last_get_token_error;
212 };
217 // Events starting the sync service.
225 // Events regarding cancellation of the signon process of sync.
227 // username and password.
230 // types and clicking OK.
231 // Events resulting in the stoppage of sync service.
235 // Miscellaneous events caused by sync service.
237 MAX_SYNC_EVENT_CODE
238 };
241 UNRECOVERABLE_ERROR,
242 NOT_ENABLED,
243 SETUP_INCOMPLETE,
244 DATATYPES_NOT_INITIALIZED,
245 INITIALIZED,
246 BACKUP_USER_DATA,
247 ROLLBACK_USER_DATA,
248 UNKNOWN_ERROR,
249 };
255 ROLLBACK // Backend for rollback.
256 };
258 // Takes ownership of |factory| and |signin_wrapper|.
267 // Initializes the object. This must be called at most once, and
268 // immediately after an object of this class is constructed.
271 // sync_driver::SyncService implementation
299 WARN_UNUSED_RESULT;
312 // Add a sync type preference provider. Each provider may only be added once.
314 // Remove a sync type preference provider. May only be called for providers
315 // that have been added. Providers must not remove themselves while being
316 // called back.
318 // Check whether a given sync type preference provider has been added.
321 // Asynchronously fetches base::Value representations of all sync nodes and
322 // returns them to the specified callback on this thread.
323 //
324 // These requests can live a long time and return when you least expect it.
325 // For safety, the callback should be bound to some sort of WeakPtr<> or
326 // scoped_refptr<>.
333 // Return whether OAuth2 refresh token is loaded and available for the backend
334 // to start up. Virtual to enable mocking in tests.
337 // Registers a data type controller with the sync service. This
338 // makes the data type controller available for use, it does not
339 // enable or activate the synchronization of the data type (see
340 // ActivateDataType). Takes ownership of the pointer.
344 // Registers a type whose sync storage will not be managed by the
345 // ProfileSyncService. It declares that this sync type may be activated at
346 // some point in the future. This function call does not enable or activate
347 // the syncing of this type
350 // Called by a component that supports non-blocking sync when it is ready to
351 // initialize its connection to the sync backend.
352 //
353 // If policy allows for syncing this type (ie. it is "preferred"), then this
354 // should result in a message to enable syncing for this type when the sync
355 // backend is available. If the type is not to be synced, this should result
356 // in a message that allows the component to delete its local sync state.
362 // Returns the SyncedWindowDelegatesGetter from the embedded sessions manager.
366 // Returns the SyncableService for syncer::SESSIONS.
369 // Returns the SyncableService for syncer::DEVICE_INFO.
372 // Returns DeviceInfo provider for the local device.
375 // Returns synced devices tracker.
378 // Fills state_map with a map of current data types that are possible to
379 // sync, as well as their states.
383 // SyncFrontend implementation.
387 debug_info_listener,
415 // DataTypeManagerObserver implementation.
420 // DataTypeEncryptionHandler implementation.
424 // SigninManagerBase::Observer implementation.
431 // Get the sync status code.
434 // Get a description of the sync status for displaying in the user interface.
437 // Initializes a struct of status indicators with data from the backend.
438 // Returns false if the backend was not available for querying; in that case
439 // the struct will be filled with default data.
443 // Reconfigures the data type manager with the latest enabled types.
444 // Note: Does not initialize the backend if it is not already initialized.
445 // This function needs to be called only after sync has been initialized
446 // (i.e.,only for reconfigurations). The reason we don't initialize the
447 // backend is because if we had encountered an unrecoverable error we don't
448 // want to startup once more.
449 // This function is called by |SetSetupInProgress|.
454 }
457 }
461 }
463 // Returns a user-friendly string form of last synced time (in minutes).
466 // Returns a human readable string describing backend initialization state.
469 // Returns true if sync is requested to be running by the user.
470 // Note that this does not mean that sync WILL be running; e.g. if
471 // IsSyncAllowed() is false then sync won't start, and if the user
472 // doesn't confirm their settings (HasSyncSetupCompleted), sync will
473 // never become active. Use IsSyncActive to see if sync is running.
478 // The profile we are syncing for.
481 // Returns a weak pointer to the service's JsController.
482 // Overrideable for testing purposes.
485 // Record stats on various events.
488 // Returns whether sync is allowed to run based on command-line switches.
489 // Profile::IsSyncAllowed() is probably a better signal than this function.
490 // This function can be called from any thread, and the implementation doesn't
491 // assume it's running on the UI thread.
494 // Returns whether sync is managed, i.e. controlled by configuration
495 // management. If so, the user is not allowed to configure sync.
498 // syncer::UnrecoverableErrorHandler implementation.
502 // Called to re-enable a type disabled by DisableDatatype(..). Note, this does
503 // not change the preferred state of a datatype, and is not persisted across
504 // restarts.
507 // The functions below (until ActivateDataType()) should only be
508 // called if backend_initialized() is true.
510 // TODO(akalin): This is called mostly by ModelAssociators and
511 // tests. Figure out how to pass the handle to the ModelAssociators
512 // directly, figure out how to expose this to tests, and remove this
513 // function.
516 // TODO(akalin): These two functions are used only by
517 // ProfileSyncServiceHarness. Figure out a different way to expose
518 // this info to that class, and remove these functions.
523 // Returns whether or not the underlying sync engine has made any
524 // local changes to items that have not yet been synced with the
525 // server.
528 // Used by ProfileSyncServiceHarness. May return NULL.
531 // Used by tests to inspect interaction with OAuth2TokenService.
534 // Used by tests to inspect the OAuth2 access tokens used by PSS.
537 // TODO(sync): This is only used in tests. Can we remove it?
540 // Returns a ListValue indicating the status of all registered types.
541 //
542 // The format is:
543 // [ {"name": <name>, "value": <value>, "status": <status> }, ... ]
544 // where <name> is a type's name, <value> is a string providing details for
545 // the type's status, and <status> is one of "error", "warning" or "ok"
546 // depending on the type's current status.
547 //
548 // This function is used by about_sync_util.cc to help populate the about:sync
549 // page. It returns a ListValue rather than a DictionaryValue in part to make
550 // it easier to iterate over its elements when constructing that page.
553 // Overridden by tests.
554 // TODO(zea): Remove these and have the dtc's call directly into the SBH.
557 // SyncPrefObserver implementation.
560 // Changes which data types we're going to be syncing to |preferred_types|.
561 // If it is running, the DataTypeManager will be instructed to reconfigure
562 // the sync backend so that exactly these datatypes are actively synced. See
563 // class comment for more on what it means for a datatype to be Preferred.
567 // Returns the set of directory types which are preferred for enabling.
570 // Returns the set of off-thread types which are preferred for enabling.
573 // Returns the set of types which are enforced programmatically and can not
574 // be disabled by the user.
577 // Gets the set of all data types that could be allowed (the set that
578 // should be advertised to the user). These will typically only change
579 // via a command-line option. See class comment for more on what it means
580 // for a datatype to be Registered.
583 // Gets the set of directory types which could be allowed.
586 // Gets the set of off-thread types which could be allowed.
589 // Checks whether the Cryptographer is ready to encrypt and decrypt updates
590 // for sensitive data types. Caller must be holding a
591 // syncapi::BaseTransaction to ensure thread safety.
595 // Returns the actual passphrase type being used for encryption.
598 // Note about setting passphrases: There are different scenarios under which
599 // we might want to apply a passphrase. It could be for first-time encryption,
600 // re-encryption, or for decryption by clients that sign in at a later time.
601 // In addition, encryption can either be done using a custom passphrase, or by
602 // reusing the GAIA password. Depending on what is happening in the system,
603 // callers should determine which of the two methods below must be used.
605 // Returns true if encrypting all the sync data is allowed. If this method
606 // returns false, EnableEncryptEverything() should not be called.
609 // Sets whether encrypting all the sync data is allowed or not.
612 // Returns true if we are currently set to encrypt all the sync data. Note:
613 // this is based on the cryptographer's settings, so if the user has recently
614 // requested encryption to be turned on, this may not be true yet. For that,
615 // encryption_pending() must be checked.
618 // Returns true if the syncer is waiting for new datatypes to be encrypted.
624 // Used by tests.
629 }
631 // TODO(sync): This is only used in tests. Can we remove it?
636 }
638 // If true, the ProfileSyncService has detected that a new GAIA signin has
639 // succeeded, and is waiting for initialization to complete. This is used by
640 // the UI to differentiate between a new auth error (encountered as part of
641 // the initialization process) and a pre-existing auth error that just hasn't
642 // been cleared yet. Virtual for testing purposes.
645 // The set of currently enabled sync experiments.
648 // OAuth2TokenService::Consumer implementation.
655 // OAuth2TokenService::Observer implementation.
660 // KeyedService implementation. This must be called exactly
661 // once (before this object is destroyed).
664 // Return sync token status.
669 // Overrides the NetworkResources used for Sync connections.
670 // This function takes ownership of |network_resources|.
676 // Returns the current mode the backend is in.
679 // Helpers for testing rollback.
684 c);
688 // This triggers a Directory::SaveChanges() call on the sync thread.
689 // It should be used to persist data to disk when the process might be
690 // killed in the near future.
693 // Needed to test whether the directory is deleted properly.
696 // Sometimes we need to wait for tasks on the sync thread in tests.
699 // Triggers sync cycle with request to update specified |types|.
703 // Helper to install and configure a data type manager.
706 // Shuts down the backend sync components.
707 // |reason| dictates if syncing is being disabled or not, and whether
708 // to claim ownership of sync thread from backend.
711 // Return SyncCredentials from the OAuth2TokenService.
719 }
721 // Helper method for managing encryption UI.
724 // Helper for OnUnrecoverableError.
725 // TODO(tim): Use an enum for |delete_sync_database| here, in ShutdownImpl,
726 // and in SyncBackendHost::Shutdown.
734 // This is a cache of the last authentication response we received from the
735 // sync server. The UI queries this to display appropriate messaging to the
736 // user.
737 GoogleServiceAuthError last_auth_error_;
739 // Our asynchronous backend to communicate with sync components living on
740 // other threads.
743 // Was the last SYNC_PASSPHRASE_REQUIRED notification sent because it
744 // was required for encryption, decryption with a cached passphrase, or
745 // because a new passphrase is required?
750 ERROR_REASON_UNSET,
751 ERROR_REASON_SYNCER,
752 ERROR_REASON_BACKEND_INIT_FAILURE,
753 ERROR_REASON_CONFIGURATION_RETRY,
754 ERROR_REASON_CONFIGURATION_FAILURE,
755 ERROR_REASON_ACTIONABLE_ERROR,
756 ERROR_REASON_LIMIT
757 };
760 AUTH_ERROR_ENCOUNTERED,
761 AUTH_ERROR_FIXED,
762 AUTH_ERROR_LIMIT
763 };
770 // Stops the sync engine. Does NOT set IsSyncRequested to false. Use
771 // RequestStop for that. |data_fate| controls whether the local sync data is
772 // deleted or kept when the engine shuts down.
775 // Update the last auth error and notify observers of error state.
778 // Detects and attempts to recover from a previous improper datatype
779 // configuration where Keep Everything Synced and the preferred types were
780 // not correctly set.
783 // Puts the backend's sync scheduler into NORMAL mode.
784 // Called when configuration is complete.
787 // Called when we've determined that we don't need a passphrase (either
788 // because OnPassphraseAccepted() was called, or because we've gotten a
789 // OnPassphraseRequired() but no data types are enabled).
792 // During initial signin, ProfileSyncService caches the user's signin
793 // passphrase so it can be used to encrypt/decrypt data after sync starts up.
794 // This routine is invoked once the backend has started up to use the
795 // cached passphrase and clear it out when it is done.
798 // RequestAccessToken initiates RPC to request downscoped access token from
799 // refresh token. This happens when a new OAuth2 login token is loaded and
800 // when sync server returns AUTH_ERROR which indicates it is time to refresh
801 // token.
804 // Return true if backend should start from a fresh sync DB.
807 // If |delete_sync_data_folder| is true, then this method will delete all
808 // previous "Sync Data" folders. (useful if the folder is partial/corrupt).
811 // Initializes the various settings from the command line.
814 // Sets the last synced time to the current time.
824 // Starts up the backend sync components. |mode| specifies the kind of
825 // backend to start, one of SYNC, BACKUP or ROLLBACK.
828 // Collects preferred sync data types from |preference_providers_|.
831 // Called when the user changes the sync configuration, to update the UMA
832 // stats.
837 #if defined(OS_CHROMEOS)
838 // Refresh spare sync bootstrap token for re-enabling the sync service.
839 // Called on successful sign-in notifications.
841 #endif
843 // Internal unrecoverable error handler. Used to track error reason via
844 // Sync.UnrecoverableErrors histogram.
848 UnrecoverableErrorReason reason);
850 // Returns the type of manager to use according to |backend_mode_|.
853 // Update UMA for syncing backend.
856 // Various setup following backend initialization, mostly for syncing backend.
859 // Whether sync has been authenticated with an account ID.
862 // True if a syncing backend exists.
865 // Update first sync time stored in preferences
868 // Clear browsing data since first sync during rollback.
871 // Post background task to check sync backup DB state if needed.
874 // Callback to receive backup DB check result.
877 // Callback function to call |startup_controller_|.TryStart() after
878 // backup/rollback finishes;
881 // Clean up prefs and backup DB when rollback is not needed.
884 // Tell the sync server that this client has disabled sync.
887 // Called when the system is under memory pressure.
891 // Check if previous shutdown is shutdown cleanly.
894 // Factory used to create various dependent objects.
897 // The profile whose data we are synchronizing.
900 // The class that handles getting, setting, and persisting sync
901 // preferences.
904 // TODO(ncarter): Put this in a profile, once there is UI for it.
905 // This specifies where to find the sync server.
908 // The time that OnConfigureStart is called. This member is zero if
909 // OnConfigureStart has not yet been called, and is reset to zero once
910 // OnConfigureDone is called.
913 // Indicates if this is the first time sync is being configured. This value
914 // is equal to !HasSyncSetupCompleted() at the time of OnBackendInitialized().
917 // List of available data type controllers for directory types.
920 // Whether the SyncBackendHost has been initialized.
923 // Set when sync receives DISABLED_BY_ADMIN error from server. Prevents
924 // ProfileSyncService from starting backend till browser restarted or user
925 // signed out.
928 // Set to true if a signin has completed but we're still waiting for the
929 // backend to refresh its credentials.
932 // Encapsulates user signin - used to set/get the user's authenticated
933 // email address.
936 // Information describing an unrecoverable error.
937 UnrecoverableErrorReason unrecoverable_error_reason_;
941 // Manages the start and stop of the directory data types.
944 // Manager for the non-blocking data types.
949 protocol_event_observers_;
956 // This allows us to gracefully handle an ABORTED return code from the
957 // DataTypeManager in the event that the server informed us to cease and
958 // desist syncing immediately.
961 // Sometimes we need to temporarily hold on to a passphrase because we don't
962 // yet have a backend to send it to. This happens during initialization as
963 // we don't StartUp until we have a valid token, which happens after valid
964 // credentials were provided.
967 // The current set of encrypted types. Always a superset of
968 // syncer::Cryptographer::SensitiveTypes().
971 // Whether encrypting everything is allowed.
974 // Whether we want to encrypt everything.
977 // Whether we're waiting for an attempt to encryption all sync data to
978 // complete. We track this at this layer in order to allow the user to cancel
979 // if they e.g. don't remember their explicit passphrase.
984 // This is the last |SyncProtocolError| we received from the server that had
985 // an action set on it.
988 // Exposes sync errors to the UI.
991 // Tracks the set of failed data types (those that encounter an error
992 // or must delay loading for some reason).
997 // The set of currently enabled sync experiments.
1000 // Sync's internal debug info listener. Used to record datatype configuration
1001 // and association information.
1004 // A thread where all the sync operations happen.
1005 // OWNERSHIP Notes:
1006 // * Created when backend starts for the first time.
1007 // * If sync is disabled, PSS claims ownership from backend.
1008 // * If sync is reenabled, PSS passes ownership to new backend.
1011 // ProfileSyncService uses this service to get access tokens.
1014 // ProfileSyncService needs to remember access token in order to invalidate it
1015 // with OAuth2TokenService.
1018 // ProfileSyncService needs to hold reference to access_token_request_ for
1019 // the duration of request in order to receive callbacks.
1022 // If RequestAccessToken fails with transient error then retry requesting
1023 // access token with exponential backoff.
1027 // States related to sync token and connection.
1032 GoogleServiceAuthError last_get_token_error_;
1037 // Locally owned SyncableService implementations.
1046 backup_rollback_controller_;
1048 // Mode of current backend.
1049 BackendMode backend_mode_;
1051 // Whether backup is needed before sync starts.
1054 // Whether backup is finished.
1061 clear_browsing_data_;
1063 // Last time when pre-sync data was saved. NULL pointer means backup data
1064 // state is unknown. If time value is null, backup data doesn't exist.
1069 // The full path to the sync data directory.
1074 // Listens for the system being under memory pressure.
1077 // Used to save/restore nigori state across backend instances. May be null.
1082 // We don't use |weak_factory_| for the StartupController because the weak
1083 // ptrs should be bound to the lifetime of ProfileSyncService and not to the
1084 // [Initialize -> sync disabled/shutdown] lifetime. We don't pass
1085 // StartupController an Unretained reference to future-proof against
1086 // the controller impl changing to post tasks. Therefore, we have a separate
1087 // factory.
1091 };