| blob | 7cef0cfecaee26c4259a833d662c3a8f83497e15 |
1 // Copyright 2013 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 /**
6 * @fileoverview An UI component to host gaia auth extension in an iframe.
7 * After the component binds with an iframe, call its {@code load} to start the
8 * authentication flow. There are two events would be raised after this point:
9 * a 'ready' event when the authentication UI is ready to use and a 'completed'
10 * event when the authentication is completed successfully. If caller is
11 * interested in the user credentials, he may supply a success callback with
12 * {@code load} call. The callback will be invoked when the authentication is
13 * completed successfully and with the available credential data.
14 */
19 /**
20 * Base URL of gaia auth extension.
21 * @const
22 */
25 /**
26 * Auth URL to use for online flow.
27 * @const
28 */
31 /**
32 * Auth URL to use for offline flow.
33 * @const
34 */
37 /**
38 * Origin of the gaia sign in page.
39 * @const
40 */
43 /**
44 * Supported params of auth extension. For a complete list, check out the
45 * auth extension's main.js.
46 * @type {!Array<string>}
47 * @const
48 */
58 ];
60 /**
61 * Supported localized strings. For a complete list, check out the auth
62 * extension's offline.js
63 * @type {!Array<string>}
64 * @const
65 */
72 'stringError'
73 ];
75 /**
76 * Enum for the authorization mode, must match AuthMode defined in
77 * chrome/browser/ui/webui/inline_login_ui.cc.
78 * @enum {number}
79 */
84 };
86 /**
87 * Enum for the auth flow.
88 * @enum {number}
89 */
93 };
95 /**
96 * Creates a new gaia auth extension host.
97 * @param {HTMLIFrameElement|string} container The iframe element or its id
98 * to host the auth extension.
99 * @constructor
100 * @extends {cr.EventTarget}
101 */
107 }
112 /**
113 * Auth extension params
114 * @type {Object}
115 */
116 authParams_: {},
118 /**
119 * An url to use with {@code reload}.
120 * @type {?string}
121 * @private
122 */
125 /**
126 * The domain name of the current auth page.
127 * @type {string}
128 */
131 /**
132 * Invoked when authentication is completed successfully with credential
133 * data. A credential data object looks like this:
134 * <pre>
135 * {@code
136 * {
137 * email: 'xx@gmail.com',
138 * password: 'xxxx', // May not present
139 * authCode: 'x/xx', // May not present
140 * authMode: 'x', // Authorization mode, default/offline/desktop.
141 * }
142 * }
143 * </pre>
144 * @type {function(Object)}
145 * @private
146 */
149 /**
150 * Invoked when the auth flow needs a user to confirm his/her passwords.
151 * This could happen when there are more than one passwords scraped during
152 * SAML flow. The embedder of GaiaAuthHost should show an UI to collect a
153 * password from user then call GaiaAuthHost.verifyConfirmedPassword to
154 * verify. If the password is good, the auth flow continues with success
155 * path. Otherwise, confirmPasswordCallback_ is invoked again.
156 * @type {function()}
157 */
160 /**
161 * Similar to confirmPasswordCallback_ but is used when there is no
162 * password scraped after a success authentication. The authenticated user
163 * account is passed to the callback. The embedder should take over the
164 * flow and decide what to do next.
165 * @type {function(string)}
166 */
169 /**
170 * Invoked when the authentication flow had to be aborted because content
171 * served over an unencrypted connection was detected.
172 */
175 /**
176 * Invoked to display an error message to the user when a GAIA error occurs
177 * during authentication.
178 * @type {function()}
179 */
182 /**
183 * Invoked to record that the credentials passing API was used.
184 * @type {function()}
185 */
188 /**
189 * The iframe container.
190 * @type {HTMLIFrameElement}
191 */
194 },
196 /**
197 * Sets confirmPasswordCallback_.
198 * @type {function()}
199 */
202 },
204 /**
205 * Sets noPasswordCallback_.
206 * @type {function()}
207 */
210 },
212 /**
213 * Sets insecureContentBlockedCallback_.
214 * @type {function(string)}
215 */
218 },
220 /**
221 * Sets missingGaiaInfoCallback_.
222 * @type {function()}
223 */
226 },
228 /**
229 * Sets samlApiUsedCallback_.
230 * @type {function()}
231 */
234 },
236 /**
237 * Loads the auth extension.
238 * @param {AuthMode} authMode Authorization mode.
239 * @param {Object} data Parameters for the auth extension. See the auth
240 * extension's main.js for all supported params and their defaults.
241 * @param {function(Object)} successCallback A function to be called when
242 * the authentication is completed successfully. The callback is
243 * invoked with a credential object.
244 */
256 }
257 };
274 }
281 },
283 /**
284 * Reloads the auth extension.
285 */
295 },
297 /**
298 * Verifies the supplied password by sending it to the auth extension,
299 * which will then check if it matches the scraped passwords.
300 * @param {string} password The confirmed password that needs verification.
301 */
305 password: password
306 };
308 },
310 /**
311 * Invoked to process authentication success.
312 * @param {Object} credentials Credential object to pass to success
313 * callback.
314 * @private
315 */
320 },
322 /**
323 * Checks if message comes from the loaded authentication extension.
324 * @param {Object} e Payload of the received HTML5 message.
325 * @type {boolean}
326 */
331 },
333 /**
334 * Event handler that is invoked when HTML5 message is received.
335 * @param {object} e Payload of the received HTML5 message.
336 */
346 }
353 }
363 }
368 else
371 }
376 else
379 }
385 }
390 }
398 }
400 }
405 }
412 }
414 }
421 }
423 }
426 }
427 };
429 /**
430 * The current auth flow of the hosted gaia_auth extension.
431 * @type {AuthFlow}
432 */
441 GaiaAuthHost: GaiaAuthHost
442 };
443 });