// Copyright (c) 2012 The Chromium Authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #include "chrome/browser/managed_mode.h" #include "base/command_line.h" #include "chrome/browser/browser_process.h" #include "chrome/browser/extensions/extension_system.h" #include "chrome/browser/prefs/pref_service.h" #include "chrome/browser/profiles/profile.h" #include "chrome/browser/ui/app_modal_dialogs/app_modal_dialog.h" #include "chrome/browser/ui/app_modal_dialogs/javascript_app_modal_dialog.h" #include "chrome/browser/ui/browser.h" #include "chrome/browser/ui/browser_list.h" #include "chrome/browser/ui/browser_window.h" #include "chrome/common/chrome_notification_types.h" #include "chrome/common/chrome_switches.h" #include "chrome/common/pref_names.h" #include "content/public/browser/notification_service.h" #include "grit/generated_resources.h" #include "ui/base/l10n/l10n_util.h" // static ManagedMode* ManagedMode::GetInstance() { return Singleton::get(); } // static void ManagedMode::RegisterPrefs(PrefService* prefs) { prefs->RegisterBooleanPref(prefs::kInManagedMode, false); } // static void ManagedMode::Init(Profile* profile) { GetInstance()->InitImpl(profile); } void ManagedMode::InitImpl(Profile* profile) { DCHECK(g_browser_process); DCHECK(g_browser_process->local_state()); Profile* original_profile = profile->GetOriginalProfile(); // Set the value directly in the PrefService instead of using // CommandLinePrefStore so we can change it at runtime. if (CommandLine::ForCurrentProcess()->HasSwitch(switches::kNoManaged)) { SetInManagedMode(NULL); } else if (IsInManagedModeImpl() || CommandLine::ForCurrentProcess()->HasSwitch(switches::kManaged)) { SetInManagedMode(original_profile); } } // static bool ManagedMode::IsInManagedMode() { return GetInstance()->IsInManagedModeImpl(); } bool ManagedMode::IsInManagedModeImpl() const { // |g_browser_process| can be NULL during startup. if (!g_browser_process) return false; // Local State can be NULL during unit tests. if (!g_browser_process->local_state()) return false; return g_browser_process->local_state()->GetBoolean(prefs::kInManagedMode); } // static void ManagedMode::EnterManagedMode(Profile* profile, const EnterCallback& callback) { GetInstance()->EnterManagedModeImpl(profile, callback); } void ManagedMode::EnterManagedModeImpl(Profile* profile, const EnterCallback& callback) { Profile* original_profile = profile->GetOriginalProfile(); if (IsInManagedModeImpl()) { callback.Run(original_profile == managed_profile_); return; } if (!callbacks_.empty()) { // We are already in the process of entering managed mode, waiting for // browsers to close. Don't allow entering managed mode again for a // different profile, and queue the callback for the same profile. if (original_profile != managed_profile_) callback.Run(false); else callbacks_.push_back(callback); return; } if (!PlatformConfirmEnter()) { callback.Run(false); return; } // Close all other profiles. // At this point, we shouldn't be waiting for other browsers to close (yet). DCHECK_EQ(0u, browsers_to_close_.size()); for (BrowserList::const_iterator i = BrowserList::begin(); i != BrowserList::end(); ++i) { if ((*i)->profile()->GetOriginalProfile() != original_profile) browsers_to_close_.insert(*i); } if (browsers_to_close_.empty()) { SetInManagedMode(original_profile); callback.Run(true); return; } // Remember the profile we're trying to manage while we wait for other // browsers to close. managed_profile_ = original_profile; callbacks_.push_back(callback); registrar_.Add(this, chrome::NOTIFICATION_CLOSE_ALL_BROWSERS_REQUEST, content::NotificationService::AllSources()); registrar_.Add(this, chrome::NOTIFICATION_BROWSER_CLOSE_CANCELLED, content::NotificationService::AllSources()); for (std::set::const_iterator i = browsers_to_close_.begin(); i != browsers_to_close_.end(); ++i) { (*i)->window()->Close(); } } // static void ManagedMode::LeaveManagedMode() { GetInstance()->LeaveManagedModeImpl(); } void ManagedMode::LeaveManagedModeImpl() { bool confirmed = PlatformConfirmLeave(); if (confirmed) SetInManagedMode(NULL); } std::string ManagedMode::GetDebugPolicyProviderName() const { // Save the string space in official builds. #ifdef NDEBUG NOTREACHED(); return std::string(); #else return "Managed Mode"; #endif } bool ManagedMode::UserMayLoad(const extensions::Extension* extension, string16* error) const { return ExtensionManagementPolicyImpl(error); } bool ManagedMode::UserMayModifySettings(const extensions::Extension* extension, string16* error) const { return ExtensionManagementPolicyImpl(error); } bool ManagedMode::ExtensionManagementPolicyImpl(string16* error) const { if (!IsInManagedModeImpl()) return true; if (error) *error = l10n_util::GetStringUTF16(IDS_EXTENSIONS_LOCKED_MANAGED_MODE); return false; } void ManagedMode::OnBrowserAdded(Browser* browser) { // Return early if we don't have any queued callbacks. if (callbacks_.empty()) return; DCHECK(managed_profile_); if (browser->profile()->GetOriginalProfile() != managed_profile_) FinalizeEnter(false); } void ManagedMode::OnBrowserRemoved(Browser* browser) { // Return early if we don't have any queued callbacks. if (callbacks_.empty()) return; DCHECK(managed_profile_); if (browser->profile()->GetOriginalProfile() == managed_profile_) { // Ignore closing browser windows that are in managed mode. return; } size_t count = browsers_to_close_.erase(browser); DCHECK_EQ(1u, count); if (browsers_to_close_.empty()) FinalizeEnter(true); } ManagedMode::ManagedMode() : managed_profile_(NULL) { BrowserList::AddObserver(this); } ManagedMode::~ManagedMode() { BrowserList::RemoveObserver(this); DCHECK_EQ(0u, callbacks_.size()); DCHECK_EQ(0u, browsers_to_close_.size()); } void ManagedMode::Observe(int type, const content::NotificationSource& source, const content::NotificationDetails& details) { // Return early if we don't have any queued callbacks. if (callbacks_.empty()) return; switch (type) { case chrome::NOTIFICATION_CLOSE_ALL_BROWSERS_REQUEST: { FinalizeEnter(false); return; } case chrome::NOTIFICATION_BROWSER_CLOSE_CANCELLED: { Browser* browser = content::Source(source).ptr(); if (browsers_to_close_.find(browser) != browsers_to_close_.end()) FinalizeEnter(false); return; } default: { NOTREACHED(); break; } } } void ManagedMode::FinalizeEnter(bool result) { if (result) SetInManagedMode(managed_profile_); for (std::vector::iterator it = callbacks_.begin(); it != callbacks_.end(); ++it) { it->Run(result); } callbacks_.clear(); browsers_to_close_.clear(); registrar_.RemoveAll(); } bool ManagedMode::PlatformConfirmEnter() { // TODO(bauerb): Show platform-specific confirmation dialog. return true; } bool ManagedMode::PlatformConfirmLeave() { // TODO(bauerb): Show platform-specific confirmation dialog. return true; } void ManagedMode::SetInManagedMode(Profile* newly_managed_profile) { // Register the ManagementPolicy::Provider before changing the pref when // setting it, and unregister it after changing the pref when clearing it, // so pref observers see the correct ManagedMode state. if (newly_managed_profile) { DCHECK(!managed_profile_ || managed_profile_ == newly_managed_profile); extensions::ExtensionSystem::Get( newly_managed_profile)->management_policy()->RegisterProvider(this); g_browser_process->local_state()->SetBoolean(prefs::kInManagedMode, true); } else { extensions::ExtensionSystem::Get( managed_profile_)->management_policy()->UnregisterProvider(this); g_browser_process->local_state()->SetBoolean(prefs::kInManagedMode, false); } managed_profile_ = newly_managed_profile; // This causes the avatar and the profile menu to get updated. content::NotificationService::current()->Notify( chrome::NOTIFICATION_PROFILE_CACHED_INFO_CHANGED, content::NotificationService::AllBrowserContextsAndSources(), content::NotificationService::NoDetails()); }