// Copyright (c) 2012 The Chromium Authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #include "chrome/browser/chromeos/enrollment_dialog_view.h" #include "base/bind.h" #include "base/strings/utf_string_conversions.h" #include "chrome/browser/chromeos/profiles/profile_helper.h" #include "chrome/browser/profiles/profile.h" #include "chrome/browser/profiles/profile_manager.h" #include "chrome/browser/ui/browser_finder.h" #include "chrome/browser/ui/browser_navigator.h" #include "chrome/browser/ui/browser_navigator_params.h" #include "chrome/grit/generated_resources.h" #include "chromeos/network/client_cert_util.h" #include "chromeos/network/managed_network_configuration_handler.h" #include "chromeos/network/network_event_log.h" #include "chromeos/network/network_state.h" #include "chromeos/network/network_state_handler.h" #include "extensions/browser/extension_host.h" #include "extensions/common/constants.h" #include "ui/base/l10n/l10n_util.h" #include "ui/base/page_transition_types.h" #include "ui/views/controls/label.h" #include "ui/views/layout/grid_layout.h" #include "ui/views/layout/layout_constants.h" #include "ui/views/widget/widget.h" #include "ui/views/window/dialog_delegate.h" namespace chromeos { namespace { // Default width/height of the dialog. const int kDefaultWidth = 350; const int kDefaultHeight = 100; //////////////////////////////////////////////////////////////////////////////// // Dialog for certificate enrollment. This displays the content from the // certificate enrollment URI. class EnrollmentDialogView : public views::DialogDelegateView { public: ~EnrollmentDialogView() override; static void ShowDialog(gfx::NativeWindow owning_window, const std::string& network_name, Profile* profile, const GURL& target_uri, const base::Closure& connect); // views::DialogDelegateView overrides int GetDialogButtons() const override; bool Accept() override; void OnClosed() override; base::string16 GetDialogButtonLabel(ui::DialogButton button) const override; // views::WidgetDelegate overrides ui::ModalType GetModalType() const override; base::string16 GetWindowTitle() const override; // views::View overrides gfx::Size GetPreferredSize() const override; private: EnrollmentDialogView(const std::string& network_name, Profile* profile, const GURL& target_uri, const base::Closure& connect); void InitDialog(); bool accepted_; std::string network_name_; Profile* profile_; GURL target_uri_; base::Closure connect_; bool added_cert_; }; //////////////////////////////////////////////////////////////////////////////// // EnrollmentDialogView implementation. EnrollmentDialogView::EnrollmentDialogView(const std::string& network_name, Profile* profile, const GURL& target_uri, const base::Closure& connect) : accepted_(false), network_name_(network_name), profile_(profile), target_uri_(target_uri), connect_(connect), added_cert_(false) { } EnrollmentDialogView::~EnrollmentDialogView() { } // static void EnrollmentDialogView::ShowDialog(gfx::NativeWindow owning_window, const std::string& network_name, Profile* profile, const GURL& target_uri, const base::Closure& connect) { EnrollmentDialogView* dialog_view = new EnrollmentDialogView(network_name, profile, target_uri, connect); views::DialogDelegate::CreateDialogWidget(dialog_view, NULL, owning_window); dialog_view->InitDialog(); views::Widget* widget = dialog_view->GetWidget(); DCHECK(widget); widget->Show(); } int EnrollmentDialogView::GetDialogButtons() const { return ui::DIALOG_BUTTON_CANCEL | ui::DIALOG_BUTTON_OK; } bool EnrollmentDialogView::Accept() { accepted_ = true; return true; } void EnrollmentDialogView::OnClosed() { if (!accepted_) return; chrome::NavigateParams params(profile_, GURL(target_uri_), ui::PAGE_TRANSITION_LINK); params.disposition = NEW_FOREGROUND_TAB; params.window_action = chrome::NavigateParams::SHOW_WINDOW; chrome::Navigate(¶ms); } base::string16 EnrollmentDialogView::GetDialogButtonLabel( ui::DialogButton button) const { if (button == ui::DIALOG_BUTTON_OK) return l10n_util::GetStringUTF16(IDS_NETWORK_ENROLLMENT_HANDLER_BUTTON); return views::DialogDelegateView::GetDialogButtonLabel(button); } ui::ModalType EnrollmentDialogView::GetModalType() const { return ui::MODAL_TYPE_SYSTEM; } base::string16 EnrollmentDialogView::GetWindowTitle() const { return l10n_util::GetStringUTF16(IDS_NETWORK_ENROLLMENT_HANDLER_TITLE); } gfx::Size EnrollmentDialogView::GetPreferredSize() const { return gfx::Size(kDefaultWidth, kDefaultHeight); } void EnrollmentDialogView::InitDialog() { added_cert_ = false; // Create the views and layout manager and set them up. views::Label* label = new views::Label( l10n_util::GetStringFUTF16(IDS_NETWORK_ENROLLMENT_HANDLER_INSTRUCTIONS, base::UTF8ToUTF16(network_name_))); label->SetHorizontalAlignment(gfx::ALIGN_LEFT); label->SetMultiLine(true); label->SetAllowCharacterBreak(true); views::GridLayout* grid_layout = views::GridLayout::CreatePanel(this); SetLayoutManager(grid_layout); views::ColumnSet* columns = grid_layout->AddColumnSet(0); columns->AddColumn(views::GridLayout::FILL, // Horizontal resize. views::GridLayout::FILL, // Vertical resize. 1, // Resize weight. views::GridLayout::USE_PREF, // Size type. 0, // Ignored for USE_PREF. 0); // Minimum size. columns = grid_layout->AddColumnSet(1); columns->AddPaddingColumn( 0, views::kUnrelatedControlHorizontalSpacing); columns->AddColumn(views::GridLayout::LEADING, // Horizontal leading. views::GridLayout::FILL, // Vertical resize. 1, // Resize weight. views::GridLayout::USE_PREF, // Size type. 0, // Ignored for USE_PREF. 0); // Minimum size. grid_layout->StartRow(0, 0); grid_layout->AddView(label); grid_layout->AddPaddingRow(0, views::kUnrelatedControlVerticalSpacing); grid_layout->Layout(this); } //////////////////////////////////////////////////////////////////////////////// // Handler for certificate enrollment. class DialogEnrollmentDelegate { public: // |owning_window| is the window that will own the dialog. DialogEnrollmentDelegate(gfx::NativeWindow owning_window, const std::string& network_name, Profile* profile); ~DialogEnrollmentDelegate(); // EnrollmentDelegate overrides bool Enroll(const std::vector& uri_list, const base::Closure& connect); private: gfx::NativeWindow owning_window_; std::string network_name_; Profile* profile_; DISALLOW_COPY_AND_ASSIGN(DialogEnrollmentDelegate); }; DialogEnrollmentDelegate::DialogEnrollmentDelegate( gfx::NativeWindow owning_window, const std::string& network_name, Profile* profile) : owning_window_(owning_window), network_name_(network_name), profile_(profile) {} DialogEnrollmentDelegate::~DialogEnrollmentDelegate() {} bool DialogEnrollmentDelegate::Enroll(const std::vector& uri_list, const base::Closure& post_action) { // Keep the closure for later activation if we notice that // a certificate has been added. // TODO(gspencer): Do something smart with the closure. At the moment it is // being ignored because we don't know when the enrollment tab is closed. // http://crosbug.com/30422 for (std::vector::const_iterator iter = uri_list.begin(); iter != uri_list.end(); ++iter) { GURL uri(*iter); if (uri.IsStandard() || uri.scheme() == extensions::kExtensionScheme) { // If this is a "standard" scheme, like http, ftp, etc., then open that in // the enrollment dialog. NET_LOG_EVENT("Showing enrollment dialog", network_name_); EnrollmentDialogView::ShowDialog(owning_window_, network_name_, profile_, uri, post_action); return true; } NET_LOG_DEBUG("Nonstandard URI: " + uri.spec(), network_name_); } // No appropriate scheme was found. NET_LOG_ERROR("No usable enrollment URI", network_name_); return false; } void EnrollmentComplete(const std::string& service_path) { NET_LOG_USER("Enrollment Complete", service_path); } } // namespace //////////////////////////////////////////////////////////////////////////////// // Factory function. namespace enrollment { bool CreateDialog(const std::string& service_path, gfx::NativeWindow owning_window) { const NetworkState* network = NetworkHandler::Get()->network_state_handler()-> GetNetworkState(service_path); if (!network) { NET_LOG_ERROR("Enrolling Unknown network", service_path); return false; } Browser* browser = chrome::FindBrowserWithWindow(owning_window); Profile* profile = browser ? browser->profile() : ProfileManager::GetPrimaryUserProfile(); std::string username_hash = ProfileHelper::GetUserIdHashFromProfile(profile); onc::ONCSource onc_source = onc::ONC_SOURCE_NONE; const base::DictionaryValue* policy = NetworkHandler::Get() ->managed_network_configuration_handler() ->FindPolicyByGUID(username_hash, network->guid(), &onc_source); // We skip certificate patterns for device policy ONC so that an unmanaged // user can't get to the place where a cert is presented for them // involuntarily. if (!policy || onc_source == onc::ONC_SOURCE_DEVICE_POLICY) return false; client_cert::ClientCertConfig cert_config; OncToClientCertConfig(*policy, &cert_config); if (cert_config.client_cert_type != onc::client_cert::kPattern) return false; if (cert_config.pattern.Empty()) NET_LOG_ERROR("Certificate pattern is empty", service_path); if (cert_config.pattern.enrollment_uri_list().empty()) { NET_LOG_EVENT("No enrollment URIs", service_path); return false; } NET_LOG_USER("Enrolling", service_path); DialogEnrollmentDelegate* enrollment = new DialogEnrollmentDelegate(owning_window, network->name(), profile); return enrollment->Enroll(cert_config.pattern.enrollment_uri_list(), base::Bind(&EnrollmentComplete, service_path)); } } // namespace enrollment } // namespace chromeos