| blob | 1cd5833009858accb246e5d394b84cda04407a9b |
1 // Copyright 2015 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 #ifndef REMOTING_HOST_POLICY_WATCHER_H_
6 #define REMOTING_HOST_POLICY_WATCHER_H_
29 // Watches for changes to the managed remote access host policies.
33 // Called first with all policies, and subsequently with any changed policies.
35 PolicyUpdatedCallback;
37 // Called after detecting malformed policies.
42 // This guarantees that the |policy_updated_callback| is called at least once
43 // with the current policies. After that, |policy_updated_callback| will be
44 // called whenever a change to any policy is detected. It will then be called
45 // only with the changed policies.
46 //
47 // |policy_error_callback| will be called when malformed policies are detected
48 // (i.e. wrong type of policy value, or unparseable files under
49 // /etc/opt/chrome/policies/managed).
50 // When called, the |policy_error_callback| is responsible for mitigating the
51 // security risk of running with incorrectly formulated policies (by either
52 // shutting down or locking down the host).
53 // After calling |policy_error_callback| PolicyWatcher will continue watching
54 // for policy changes and will call |policy_updated_callback| when the error
55 // is recovered from and may call |policy_error_callback| when new errors are
56 // found.
61 // Specify a |policy_service| to borrow (on Chrome OS, from the browser
62 // process) or specify nullptr to internally construct and use a new
63 // PolicyService (on other OS-es). PolicyWatcher must be used on the thread on
64 // which it is created. |policy_service| is called on the same thread.
65 //
66 // When |policy_service| is null, then |file_task_runner| is used for reading
67 // the policy from files / registry / preferences (which are blocking
68 // operations). |file_task_runner| should be of TYPE_IO type.
69 //
70 // When |policy_service| is specified then |file_task_runner| argument is
71 // ignored and 1) BrowserThread::UI is used for PolicyUpdatedCallback and
72 // PolicyErrorCallback and 2) BrowserThread::FILE is used for reading the
73 // policy from files / registry / preferences (although (2) is just an
74 // implementation detail and should likely be ignored outside of
75 // PolicyWatcher).
83 // Gets Chromoting schema stored inside |owned_schema_registry_|.
86 // Simplifying wrapper around Schema::Normalize.
87 // - Returns false if |dict| is invalid (i.e. contains mistyped policy
88 // values).
89 // - Returns true if |dict| was valid or got normalized.
92 // Stores |new_policies| into |old_policies_|. Returns dictionary with items
93 // from |new_policies| that are different from the old |old_policies_|.
97 // Signals policy error to the registered |PolicyErrorCallback|.
100 // |policy_service_task_runner| is the task runner where it is safe
101 // to call |policy_service_| methods and where we expect to get callbacks
102 // from |policy_service_|.
109 // Creates PolicyWatcher that wraps the owned |async_policy_loader| with an
110 // appropriate PolicySchema.
111 //
112 // |policy_service_task_runner| is passed through to the constructor of
113 // PolicyWatcher.
117 // PolicyService::Observer interface.
123 PolicyUpdatedCallback policy_updated_callback_;
124 PolicyErrorCallback policy_error_callback_;
131 // Order of fields below is important to ensure destruction takes object
132 // dependencies into account:
133 // - |owned_policy_service_| uses |owned_policy_provider_|
134 // - |owned_policy_provider_| uses |owned_schema_registry_|
140 };