• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
4 
5 #ifndef GOOGLE_APIS_GAIA_OAUTH2_API_CALL_FLOW_H_
6 #define GOOGLE_APIS_GAIA_OAUTH2_API_CALL_FLOW_H_
7 
8 #include <string>
9 
10 #include "base/gtest_prod_util.h"
11 #include "base/memory/scoped_ptr.h"
12 #include "google_apis/gaia/oauth2_access_token_consumer.h"
13 #include "google_apis/gaia/oauth2_access_token_fetcher.h"
14 #include "net/url_request/url_fetcher_delegate.h"
15 #include "url/gurl.h"
16 
17 class GoogleServiceAuthError;
18 class OAuth2MintTokenFlowTest;
19 
20 namespace net {
21 class URLFetcher;
22 class URLRequestContextGetter;
23 }
24 
25 // Base class for all classes that implement a flow to call OAuth2
26 // enabled APIs.
27 //
28 // Given a refresh token, an access token, and a list of scopes an OAuth2
29 // enabled API is called in the following way:
30 // 1. Try the given access token to call the API.
31 // 2. If that does not work, use the refresh token and scopes to generate
32 //    a new access token.
33 // 3. Try the new access token to call the API.
34 //
35 // This class abstracts the basic steps and exposes template methods
36 // for sub-classes to implement for API specific details.
37 class OAuth2ApiCallFlow
38     : public net::URLFetcherDelegate,
39       public OAuth2AccessTokenConsumer {
40  public:
41   // Creates an instance that works with the given data.
42   // Note that |access_token| can be empty. In that case, the flow will skip
43   // the first step (of trying an existing access token).
44   OAuth2ApiCallFlow(
45       net::URLRequestContextGetter* context,
46       const std::string& refresh_token,
47       const std::string& access_token,
48       const std::vector<std::string>& scopes);
49 
50   virtual ~OAuth2ApiCallFlow();
51 
52   // Start the flow.
53   virtual void Start();
54 
55   // OAuth2AccessTokenFetcher implementation.
56   virtual void OnGetTokenSuccess(const std::string& access_token,
57                                  const base::Time& expiration_time) OVERRIDE;
58   virtual void OnGetTokenFailure(const GoogleServiceAuthError& error) OVERRIDE;
59 
60   // net::URLFetcherDelegate implementation.
61   virtual void OnURLFetchComplete(const net::URLFetcher* source) OVERRIDE;
62 
63  protected:
64   // Template methods for sub-classes.
65 
66   // Methods to help create HTTP request.
67   virtual GURL CreateApiCallUrl() = 0;
68   virtual std::string CreateApiCallBody() = 0;
69 
70   // Sub-classes can expose an appropriate observer interface by implementing
71   // these template methods.
72   // Called when the API call finished successfully.
73   virtual void ProcessApiCallSuccess(const net::URLFetcher* source) = 0;
74   // Called when the API call failed.
75   virtual void ProcessApiCallFailure(const net::URLFetcher* source) = 0;
76   // Called when a new access token is generated.
77   virtual void ProcessNewAccessToken(const std::string& access_token) = 0;
78   virtual void ProcessMintAccessTokenFailure(
79       const GoogleServiceAuthError& error) = 0;
80 
81  private:
82   enum State {
83     INITIAL,
84     API_CALL_STARTED,
85     API_CALL_DONE,
86     MINT_ACCESS_TOKEN_STARTED,
87     MINT_ACCESS_TOKEN_DONE,
88     ERROR_STATE
89   };
90 
91   friend class OAuth2ApiCallFlowTest;
92   FRIEND_TEST_ALL_PREFIXES(OAuth2ApiCallFlowTest, CreateURLFetcher);
93 
94   // Helper to create an instance of access token fetcher.
95   // Caller owns the returned instance.
96   // Note that this is virtual since it is mocked during unit testing.
97   virtual OAuth2AccessTokenFetcher* CreateAccessTokenFetcher();
98 
99   // Creates an instance of URLFetcher that does not send or save cookies.
100   // Template method CreateApiCallUrl is used to get the URL.
101   // Template method CreateApiCallBody is used to get the body.
102   // The URLFether's method will be GET if body is empty, POST otherwise.
103   // Caller owns the returned instance.
104   // Note that this is virtual since it is mocked during unit testing.
105   virtual net::URLFetcher* CreateURLFetcher();
106 
107   // Helper methods to implement the state machine for the flow.
108   void BeginApiCall();
109   void EndApiCall(const net::URLFetcher* source);
110   void BeginMintAccessToken();
111   void EndMintAccessToken(const GoogleServiceAuthError* error);
112 
113   net::URLRequestContextGetter* context_;
114   std::string refresh_token_;
115   std::string access_token_;
116   std::vector<std::string> scopes_;
117 
118   State state_;
119   // Whether we have already tried minting an access token once.
120   bool tried_mint_access_token_;
121 
122   scoped_ptr<net::URLFetcher> url_fetcher_;
123   scoped_ptr<OAuth2AccessTokenFetcher> oauth2_access_token_fetcher_;
124 
125   DISALLOW_COPY_AND_ASSIGN(OAuth2ApiCallFlow);
126 };
127 
128 #endif  // GOOGLE_APIS_GAIA_OAUTH2_API_CALL_FLOW_H_
129