rubycoder
diff --git a/‎src/browser/shell_login_dialog.cc
Lines changed: 217 additions & 4 deletions b/‎src/browser/shell_login_dialog.cc
Lines changed: 217 additions & 4 deletions
@@ -23,18 +23,37 @@
 #include "base/bind.h"
 #include "base/logging.h"
 #include "base/strings/utf_string_conversions.h"
+#include "chrome/browser/chrome_notification_types.h"
 #include "content/public/browser/browser_thread.h"
+#include "content/public/browser/notification_registrar.h"
+#include "content/public/browser/notification_service.h"
 #include "content/public/browser/resource_dispatcher_host.h"
 #include "net/base/auth.h"
 #include "net/url_request/url_request.h"
 #include "ui/base/text/text_elider.h"
 
+using content::BrowserThread;
+using content::ResourceDispatcherHost;
+
+namespace {
+// Helper to remove the ref from an net::URLRequest to the ShellLoginDialog.
+// Should only be called from the IO thread, since it accesses an
+// net::URLRequest.
+void ResetShellLoginDialogForRequest(net::URLRequest* request) {
+  ResourceDispatcherHost::Get()->ClearLoginDelegateForRequest(request);
+}
+
+} // namespace
+
 namespace content {
 
+ShellLoginDialog::ShellLoginDialogList ShellLoginDialog::dialog_queue_;
+
 ShellLoginDialog::ShellLoginDialog(
     net::AuthChallengeInfo* auth_info,
     net::URLRequest* request) : auth_info_(auth_info),
-                                request_(request) {
+                                request_(request),
+                                handled_auth_(false) {
   DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
   BrowserThread::PostTask(
       BrowserThread::UI, FROM_HERE,
@@ -53,6 +72,21 @@ void ShellLoginDialog::OnRequestCancelled() {
 void ShellLoginDialog::UserAcceptedAuth(const string16& username,
                                         const string16& password) {
   DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
+
+  if (TestAndSetAuthHandled())
+    return;
+
+  // Calling NotifyAuthSupplied() directly instead of posting a task
+  // allows other ShellLoginDialog instances to queue their
+  // CloseContentsDeferred() before ours.  Closing dialogs in the
+  // opposite order as they were created avoids races where remaining
+  // dialogs in the same tab may be briefly displayed to the user
+  // before they are removed.
+  NotifyAuthSupplied(username, password);
+
+  BrowserThread::PostTask(
+      BrowserThread::UI, FROM_HERE,
+      base::Bind(&ShellLoginDialog::CloseContentsDeferred, this));
   BrowserThread::PostTask(
       BrowserThread::IO, FROM_HERE,
       base::Bind(&ShellLoginDialog::SendAuthToRequester, this,
@@ -61,13 +95,25 @@ void ShellLoginDialog::UserAcceptedAuth(const string16& username,
 
 void ShellLoginDialog::UserCancelledAuth() {
   DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
+  if (TestAndSetAuthHandled())
+    return;
+
+  // Similar to how we deal with notifications above in SetAuth()
+  if (BrowserThread::CurrentlyOn(BrowserThread::UI)) {
+    NotifyAuthCancelled();
+  } else {
+    BrowserThread::PostTask(
+        BrowserThread::UI, FROM_HERE,
+        base::Bind(&ShellLoginDialog::NotifyAuthCancelled, this));
+  }
+
   BrowserThread::PostTask(
       BrowserThread::IO, FROM_HERE,
       base::Bind(&ShellLoginDialog::SendAuthToRequester, this,
                  false, string16(), string16()));
   BrowserThread::PostTask(
       BrowserThread::UI, FROM_HERE,
-      base::Bind(&ShellLoginDialog::PlatformCleanUp, this));
+      base::Bind(&ShellLoginDialog::CloseContentsDeferred, this));
 }
 
 ShellLoginDialog::~ShellLoginDialog() {
@@ -93,16 +139,38 @@ void ShellLoginDialog::PrepDialog(const string16& host,
     explanation += ASCIIToUTF16(".");
   }
 
+  AddObservers();
+  dialog_queue_.push_back(this);
   PlatformCreateDialog(explanation);
+  if (dialog_queue_.size() == 1)
+    PlatformShowDialog();
+}
+
+void ShellLoginDialog::HandleQueueOnClose()
+{
+  DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
+  ShellLoginDialogList::iterator i(
+      std::find(dialog_queue_.begin(), dialog_queue_.end(), this));
+
+  // Ignore the second invocation.
+  if (i == dialog_queue_.end())
+    return;
+
+  bool removed_topmost_dialog = i == dialog_queue_.begin();
+  dialog_queue_.erase(i);
+  if (!dialog_queue_.empty() && removed_topmost_dialog) {
+    ShellLoginDialog* next_dlg = dialog_queue_.front();
+    next_dlg->PlatformShowDialog();
+  }
 }
 
 void ShellLoginDialog::SendAuthToRequester(bool success,
                                            const string16& username,
                                            const string16& password) {
   DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
-  if (success)
+  if (success) {
     request_->SetAuth(net::AuthCredentials(username, password));
-  else
+  } else
     request_->CancelAuth();
   ResourceDispatcherHost::Get()->ClearLoginDelegateForRequest(request_);
 
@@ -111,4 +179,149 @@ void ShellLoginDialog::SendAuthToRequester(bool success,
       base::Bind(&ShellLoginDialog::PlatformCleanUp, this));
 }
 
+void ShellLoginDialog::NotifyAuthSupplied(const string16& username,
+                                          const string16& password) {
+
+  DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
+
+  content::NotificationService* service =
+      content::NotificationService::current();
+
+  AuthSuppliedLoginNotificationDetails details(this, username, password);
+
+  service->Notify(chrome::NOTIFICATION_AUTH_SUPPLIED,
+                  content::Source<ShellLoginDialog>(this),
+                  content::Details<AuthSuppliedLoginNotificationDetails>(&details));
+}
+
+void ShellLoginDialog::NotifyAuthCancelled() {
+  DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
+  DCHECK(WasAuthHandled());
+
+  content::NotificationService* service =
+      content::NotificationService::current();
+
+  AuthSuppliedLoginNotificationDetails details(this, string16(), string16());
+
+  service->Notify(chrome::NOTIFICATION_AUTH_CANCELLED,
+                  content::Source<ShellLoginDialog>(this),
+                  content::Details<LoginNotificationDetails>(&details));
+}
+
+
+void ShellLoginDialog::Observe(int type,
+                               const content::NotificationSource& source,
+                               const content::NotificationDetails& details) {
+  DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
+  DCHECK(type == chrome::NOTIFICATION_AUTH_SUPPLIED ||
+         type == chrome::NOTIFICATION_AUTH_CANCELLED);
+
+  // Break out early if we aren't interested in the notification.
+  if (WasAuthHandled())
+    return;
+
+  LoginNotificationDetails* login_details =
+      content::Details<LoginNotificationDetails>(details).ptr();
+
+  // WasAuthHandled() should always test positive before we publish
+  // AUTH_SUPPLIED or AUTH_CANCELLED notifications.
+  DCHECK(login_details->handler() != this);
+
+  // Only handle notification for the identical auth info.
+  if (!login_details->handler()->auth_info()->Equals(*auth_info()))
+    return;
+
+  // Set or cancel the auth in this handler.
+  if (type == chrome::NOTIFICATION_AUTH_SUPPLIED) {
+    AuthSuppliedLoginNotificationDetails* supplied_details =
+        content::Details<AuthSuppliedLoginNotificationDetails>(details).ptr();
+    UserAcceptedAuth(supplied_details->username(), supplied_details->password());
+  } else {
+    DCHECK(type == chrome::NOTIFICATION_AUTH_CANCELLED);
+    UserCancelledAuth();
+  }
+}
+
+// Returns whether authentication had been handled (SetAuth or CancelAuth).
+bool ShellLoginDialog::WasAuthHandled() const {
+  base::AutoLock lock(handled_auth_lock_);
+  bool was_handled = handled_auth_;
+  return was_handled;
+}
+
+// Marks authentication as handled and returns the previous handled state.
+bool ShellLoginDialog::TestAndSetAuthHandled() {
+  base::AutoLock lock(handled_auth_lock_);
+  bool was_handled = handled_auth_;
+  handled_auth_ = true;
+  return was_handled;
+}
+
+// Closes the view_contents from the UI loop.
+void ShellLoginDialog::CloseContentsDeferred() {
+  DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
+
+  HandleQueueOnClose();
+  PlatformCleanUp();
+}
+
+void ShellLoginDialog::AddObservers() {
+  DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
+
+  // This is probably OK; we need to listen to everything and we break out of
+  // the Observe() if we aren't handling the same auth_info().
+  registrar_.reset(new content::NotificationRegistrar);
+  registrar_->Add(this, chrome::NOTIFICATION_AUTH_SUPPLIED,
+                  content::NotificationService::AllBrowserContextsAndSources());
+  registrar_->Add(this, chrome::NOTIFICATION_AUTH_CANCELLED,
+                  content::NotificationService::AllBrowserContextsAndSources());
+}
+
+void ShellLoginDialog::RemoveObservers() {
+  DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
+
+  registrar_.reset();
+}
+
+void ShellLoginDialog::ReleaseSoon() {
+  if (!TestAndSetAuthHandled()) {
+    BrowserThread::PostTask(
+        BrowserThread::IO, FROM_HERE,
+        base::Bind(&ShellLoginDialog::CancelAuthDeferred, this));
+    BrowserThread::PostTask(
+        BrowserThread::UI, FROM_HERE,
+        base::Bind(&ShellLoginDialog::NotifyAuthCancelled, this));
+  }
+
+  BrowserThread::PostTask(
+    BrowserThread::UI, FROM_HERE,
+    base::Bind(&ShellLoginDialog::RemoveObservers, this));
+
+  // Delete this object once all InvokeLaters have been called.
+  BrowserThread::ReleaseSoon(BrowserThread::IO, FROM_HERE, this);
+}
+
+// Calls SetAuth from the IO loop.
+void ShellLoginDialog::SetAuthDeferred(const string16& username,
+                                       const string16& password) {
+  DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
+
+  if (request_) {
+    request_->SetAuth(net::AuthCredentials(username, password));
+    ResetShellLoginDialogForRequest(request_);
+  }
+}
+
+// Calls CancelAuth from the IO loop.
+void ShellLoginDialog::CancelAuthDeferred() {
+  DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));
+
+  if (request_) {
+    request_->CancelAuth();
+    // Verify that CancelAuth doesn't destroy the request via our delegate.
+    DCHECK(request_ != NULL);
+    ResetShellLoginDialogForRequest(request_);
+  }
+}
+
 }  // namespace content