Update server-url

[pub/Android/ownCloud.git] / src / com / owncloud / android / authentication / AuthenticatorActivity.java
diff --git a/src/com/owncloud/android/authentication/AuthenticatorActivity.java b/src/com/owncloud/android/authentication/AuthenticatorActivity.java

index d1f79cf..d844011 100644 (file)
--- a/src/com/owncloud/android/authentication/AuthenticatorActivity.java
+++ b/src/com/owncloud/android/authentication/AuthenticatorActivity.java
@@ -18,21 +18,7 @@
  \r
  package com.owncloud.android.authentication;\r
  \r
  \r
  package com.owncloud.android.authentication;\r
  \r
-import com.owncloud.android.Log_OC;\r
-import com.owncloud.android.ui.dialog.SslValidatorDialog;\r
-import com.owncloud.android.ui.dialog.SslValidatorDialog.OnSslValidatorListener;\r
-import com.owncloud.android.utils.OwnCloudVersion;\r
-import com.owncloud.android.network.OwnCloudClientUtils;\r
-import com.owncloud.android.operations.OwnCloudServerCheckOperation;\r
-import com.owncloud.android.operations.ExistenceCheckOperation;\r
-import com.owncloud.android.operations.OAuth2GetAccessToken;\r
-import com.owncloud.android.operations.OnRemoteOperationListener;\r
-import com.owncloud.android.operations.RemoteOperation;\r
-import com.owncloud.android.operations.RemoteOperationResult;\r
-import com.owncloud.android.operations.RemoteOperationResult.ResultCode;\r
-\r
  import android.accounts.Account;\r
  import android.accounts.Account;\r
-import android.accounts.AccountAuthenticatorActivity;\r
  import android.accounts.AccountManager;\r
  import android.app.AlertDialog;\r
  import android.app.Dialog;\r
  import android.accounts.AccountManager;\r
  import android.app.AlertDialog;\r
  import android.app.Dialog;\r
@@ -57,15 +43,28 @@ import android.view.View.OnFocusChangeListener;
  import android.view.View.OnTouchListener;\r
  import android.view.Window;\r
  import android.view.inputmethod.EditorInfo;\r
  import android.view.View.OnTouchListener;\r
  import android.view.Window;\r
  import android.view.inputmethod.EditorInfo;\r
-import android.webkit.WebView;\r
+import android.widget.Button;\r
  import android.widget.CheckBox;\r
  import android.widget.EditText;\r
  import android.widget.CheckBox;\r
  import android.widget.EditText;\r
-import android.widget.Button;\r
  import android.widget.TextView;\r
  import android.widget.TextView;\r
-import android.widget.Toast;\r
  import android.widget.TextView.OnEditorActionListener;\r
  import android.widget.TextView.OnEditorActionListener;\r
+import android.widget.Toast;\r
  \r
  \r
+import com.owncloud.android.Log_OC;\r
  import com.owncloud.android.R;\r
  import com.owncloud.android.R;\r
+import com.owncloud.android.authentication.SsoWebViewClient.SsoWebViewClientListener;\r
+import com.owncloud.android.network.OwnCloudClientUtils;\r
+import com.owncloud.android.operations.ExistenceCheckOperation;\r
+import com.owncloud.android.operations.OAuth2GetAccessToken;\r
+import com.owncloud.android.operations.OnRemoteOperationListener;\r
+import com.owncloud.android.operations.OwnCloudServerCheckOperation;\r
+import com.owncloud.android.operations.RemoteOperation;\r
+import com.owncloud.android.operations.RemoteOperationResult;\r
+import com.owncloud.android.operations.RemoteOperationResult.ResultCode;\r
+import com.owncloud.android.ui.dialog.SamlWebViewDialog;\r
+import com.owncloud.android.ui.dialog.SslValidatorDialog;\r
+import com.owncloud.android.ui.dialog.SslValidatorDialog.OnSslValidatorListener;\r
+import com.owncloud.android.utils.OwnCloudVersion;\r
  \r
  import eu.alefzero.webdav.WebdavClient;\r
  \r
  \r
  import eu.alefzero.webdav.WebdavClient;\r
  \r
@@ -76,7 +75,7 @@ import eu.alefzero.webdav.WebdavClient;
   * @author David A. Velasco\r
   */\r
  public class AuthenticatorActivity extends AccountAuthenticatorActivity\r
   * @author David A. Velasco\r
   */\r
  public class AuthenticatorActivity extends AccountAuthenticatorActivity\r
-implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeListener, OnEditorActionListener {\r
+implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeListener, OnEditorActionListener, SsoWebViewClientListener{\r
  \r
      private static final String TAG = AuthenticatorActivity.class.getSimpleName();\r
  \r
  \r
      private static final String TAG = AuthenticatorActivity.class.getSimpleName();\r
  \r
@@ -96,7 +95,6 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
      private static final String KEY_SERVER_STATUS_ICON = "SERVER_STATUS_ICON";\r
      private static final String KEY_IS_SSL_CONN = "IS_SSL_CONN";\r
      private static final String KEY_PASSWORD_VISIBLE = "PASSWORD_VISIBLE";\r
      private static final String KEY_SERVER_STATUS_ICON = "SERVER_STATUS_ICON";\r
      private static final String KEY_IS_SSL_CONN = "IS_SSL_CONN";\r
      private static final String KEY_PASSWORD_VISIBLE = "PASSWORD_VISIBLE";\r
-    private static final String KEY_AUTH_METHOD = "AUTH_METHOD";\r
      private static final String KEY_AUTH_STATUS_TEXT = "AUTH_STATUS_TEXT";\r
      private static final String KEY_AUTH_STATUS_ICON = "AUTH_STATUS_ICON";\r
      private static final String KEY_REFRESH_BUTTON_ENABLED = "KEY_REFRESH_BUTTON_ENABLED";\r
      private static final String KEY_AUTH_STATUS_TEXT = "AUTH_STATUS_TEXT";\r
      private static final String KEY_AUTH_STATUS_ICON = "AUTH_STATUS_ICON";\r
      private static final String KEY_REFRESH_BUTTON_ENABLED = "KEY_REFRESH_BUTTON_ENABLED";\r
@@ -105,10 +103,6 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
      private static final String AUTH_OFF = "off";\r
      private static final String AUTH_OPTIONAL = "optional";\r
      \r
      private static final String AUTH_OFF = "off";\r
      private static final String AUTH_OPTIONAL = "optional";\r
      \r
-    private static final int AUTH_METHOD_BASIC_HTTP = 0;\r
-    private static final int AUTH_METHOD_OAUTH2 = 1;\r
-    private static final int AUTH_METHOD_SAML_WEB_SSO = 2;\r
-\r
      private static final int DIALOG_LOGIN_PROGRESS = 0;\r
      private static final int DIALOG_SSL_VALIDATOR = 1;\r
      private static final int DIALOG_CERT_NOT_SAVED = 2;\r
      private static final int DIALOG_LOGIN_PROGRESS = 0;\r
      private static final int DIALOG_SSL_VALIDATOR = 1;\r
      private static final int DIALOG_CERT_NOT_SAVED = 2;\r
@@ -117,6 +111,8 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
      public static final byte ACTION_CREATE = 0;\r
      public static final byte ACTION_UPDATE_TOKEN = 1;\r
  \r
      public static final byte ACTION_CREATE = 0;\r
      public static final byte ACTION_UPDATE_TOKEN = 1;\r
  \r
+    private static final String TAG_SAML_DIALOG = "samlWebViewDialog";\r
+    \r
      private String mHostBaseUrl;\r
      private OwnCloudVersion mDiscoveredVersion;\r
  \r
      private String mHostBaseUrl;\r
      private OwnCloudVersion mDiscoveredVersion;\r
  \r
@@ -142,21 +138,22 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
      private boolean mHostUrlInputEnabled;\r
      private View mRefreshButton;\r
  \r
      private boolean mHostUrlInputEnabled;\r
      private View mRefreshButton;\r
  \r
-    private int mCurrentAuthorizationMethod;  \r
+    private String mCurrentAuthTokenType;\r
      \r
      private EditText mUsernameInput;\r
      private EditText mPasswordInput;\r
      \r
      private CheckBox mOAuth2Check;\r
      \r
      private EditText mUsernameInput;\r
      private EditText mPasswordInput;\r
      \r
      private CheckBox mOAuth2Check;\r
-    private String mOAuthAccessToken;\r
      \r
      private TextView mOAuthAuthEndpointText;\r
      private TextView mOAuthTokenEndpointText;\r
      \r
      private TextView mAccountNameInput;\r
      \r
      private TextView mOAuthAuthEndpointText;\r
      private TextView mOAuthTokenEndpointText;\r
      \r
      private TextView mAccountNameInput;\r
-    private WebView mWebSsoView;\r
+    private SamlWebViewDialog mSamlDialog;\r
      \r
      private View mOkButton;\r
      \r
      private View mOkButton;\r
+    \r
+    private String mAuthToken;\r
  \r
  \r
      /**\r
  \r
  \r
      /**\r
@@ -179,7 +176,6 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          mOAuthTokenEndpointText = (TextView)findViewById(R.id.oAuthEntryPoint_2);\r
          mOAuth2Check = (CheckBox) findViewById(R.id.oauth_onOff_check);\r
          mAccountNameInput = (EditText) findViewById(R.id.account_name);\r
          mOAuthTokenEndpointText = (TextView)findViewById(R.id.oAuthEntryPoint_2);\r
          mOAuth2Check = (CheckBox) findViewById(R.id.oauth_onOff_check);\r
          mAccountNameInput = (EditText) findViewById(R.id.account_name);\r
-        mWebSsoView = (WebView) findViewById(R.id.web_sso_view);\r
          mOkButton = findViewById(R.id.buttonOK);\r
          mAuthStatusLayout = (TextView) findViewById(R.id.auth_status_text); \r
          \r
          mOkButton = findViewById(R.id.buttonOK);\r
          mAuthStatusLayout = (TextView) findViewById(R.id.auth_status_text); \r
          \r
@@ -230,13 +226,12 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
                  mHostUrlInput.setText(mHostBaseUrl);\r
              }\r
              initAuthorizationMethod();  // checks intent and setup.xml to determine mCurrentAuthorizationMethod\r
                  mHostUrlInput.setText(mHostBaseUrl);\r
              }\r
              initAuthorizationMethod();  // checks intent and setup.xml to determine mCurrentAuthorizationMethod\r
-            mOAuth2Check.setChecked(mCurrentAuthorizationMethod == AUTH_METHOD_OAUTH2);\r
              mJustCreated = true;\r
              \r
              if (mAction == ACTION_UPDATE_TOKEN || !mHostUrlInputEnabled) {\r
                  checkOcServer(); \r
              }\r
              mJustCreated = true;\r
              \r
              if (mAction == ACTION_UPDATE_TOKEN || !mHostUrlInputEnabled) {\r
                  checkOcServer(); \r
              }\r
-\r
+            \r
          } else {\r
              /// connection state and info\r
              mServerIsValid = savedInstanceState.getBoolean(KEY_SERVER_VALID);\r
          } else {\r
              /// connection state and info\r
              mServerIsValid = savedInstanceState.getBoolean(KEY_SERVER_VALID);\r
@@ -259,7 +254,11 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
  \r
              // account data, if updating\r
              mAccount = savedInstanceState.getParcelable(KEY_ACCOUNT);\r
  \r
              // account data, if updating\r
              mAccount = savedInstanceState.getParcelable(KEY_ACCOUNT);\r
-            mCurrentAuthorizationMethod = savedInstanceState.getInt(KEY_AUTH_METHOD, AUTH_METHOD_BASIC_HTTP);\r
+            mCurrentAuthTokenType = savedInstanceState.getString(AccountAuthenticator.KEY_AUTH_TOKEN_TYPE);\r
+            if (mCurrentAuthTokenType == null) {\r
+                mCurrentAuthTokenType =  AccountAuthenticator.AUTH_TOKEN_TYPE_PASSWORD;\r
+                \r
+            }\r
  \r
              // check if server check was interrupted by a configuration change\r
              if (savedInstanceState.getBoolean(KEY_SERVER_CHECK_IN_PROGRESS, false)) {\r
  \r
              // check if server check was interrupted by a configuration change\r
              if (savedInstanceState.getBoolean(KEY_SERVER_CHECK_IN_PROGRESS, false)) {\r
@@ -289,13 +288,14 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          if (mServerIsChecked && !mServerIsValid && refreshButtonEnabled) showRefreshButton();\r
          mOkButton.setEnabled(mServerIsValid); // state not automatically recovered in configuration changes\r
  \r
          if (mServerIsChecked && !mServerIsValid && refreshButtonEnabled) showRefreshButton();\r
          mOkButton.setEnabled(mServerIsValid); // state not automatically recovered in configuration changes\r
  \r
-        if (mCurrentAuthorizationMethod == AUTH_METHOD_SAML_WEB_SSO || !AUTH_OPTIONAL.equals(getString(R.string.auth_method_oauth2))) {\r
+        if (AccountAuthenticator.AUTH_TOKEN_TYPE_SAML_WEB_SSO_SESSION_COOKIE.equals(mCurrentAuthTokenType) || \r
+                !AUTH_OPTIONAL.equals(getString(R.string.auth_method_oauth2))) {\r
              mOAuth2Check.setVisibility(View.GONE);\r
          }\r
  \r
          mPasswordInput.setText("");     // clean password to avoid social hacking (disadvantage: password in removed if the device is turned aside)\r
  \r
              mOAuth2Check.setVisibility(View.GONE);\r
          }\r
  \r
          mPasswordInput.setText("");     // clean password to avoid social hacking (disadvantage: password in removed if the device is turned aside)\r
  \r
-        /// bind view elements to listeners\r
+        /// bind view elements to listeners and other friends\r
          mHostUrlInput.setOnFocusChangeListener(this);\r
          mHostUrlInput.addTextChangedListener(new TextWatcher() {\r
  \r
          mHostUrlInput.setOnFocusChangeListener(this);\r
          mHostUrlInput.addTextChangedListener(new TextWatcher() {\r
  \r
@@ -324,44 +324,48 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
                  }\r
                  return true;\r
              }\r
                  }\r
                  return true;\r
              }\r
-        });
+        });\r
+        \r
      }\r
      }\r
+    \r
+   \r
  \r
      private void initAuthorizationMethod() {\r
          boolean oAuthRequired = false;\r
          boolean samlWebSsoRequired = false;\r
  \r
  \r
      private void initAuthorizationMethod() {\r
          boolean oAuthRequired = false;\r
          boolean samlWebSsoRequired = false;\r
  \r
-        String tokenType = getIntent().getExtras().getString(AccountAuthenticator.KEY_AUTH_TOKEN_TYPE);\r
+        mCurrentAuthTokenType = getIntent().getExtras().getString(AccountAuthenticator.KEY_AUTH_TOKEN_TYPE);\r
          mAccount = getIntent().getExtras().getParcelable(EXTRA_ACCOUNT);\r
          \r
          mAccount = getIntent().getExtras().getParcelable(EXTRA_ACCOUNT);\r
          \r
-        if (tokenType != null) {\r
-            /// use the authentication method requested by caller \r
-            oAuthRequired = AccountAuthenticator.AUTH_TOKEN_TYPE_ACCESS_TOKEN.equals(tokenType);\r
-            samlWebSsoRequired = AccountAuthenticator.AUTH_TOKEN_TYPE_SAML_WEB_SSO_SESSION_COOKIE.equals(tokenType);\r
-            \r
-        } else if (mAccount != null) {\r
-            /// same authentication method than the one used to create the account to update\r
-            oAuthRequired = (mAccountMgr.getUserData(mAccount, AccountAuthenticator.KEY_SUPPORTS_OAUTH2) != null);\r
-            samlWebSsoRequired = (mAccountMgr.getUserData(mAccount, AccountAuthenticator.KEY_SUPPORTS_SAML_WEB_SSO) != null);\r
-            \r
-        } else {\r
-            /// use the one set in setup.xml\r
-            oAuthRequired = AUTH_ON.equals(getString(R.string.auth_method_oauth2));\r
-            samlWebSsoRequired = AUTH_ON.equals(getString(R.string.auth_method_saml_web_sso));            \r
-        }\r
+        // TODO could be a good moment to validate the received token type, if not null\r
          \r
          \r
-        if (oAuthRequired) {\r
-            mCurrentAuthorizationMethod = AUTH_METHOD_OAUTH2; \r
-        } else if (samlWebSsoRequired) {\r
-            mCurrentAuthorizationMethod = AUTH_METHOD_SAML_WEB_SSO;\r
-        } else {\r
-            mCurrentAuthorizationMethod = AUTH_METHOD_BASIC_HTTP;\r
+        if (mCurrentAuthTokenType == null) {    \r
+            if (mAccount != null) {\r
+                /// same authentication method than the one used to create the account to update\r
+                oAuthRequired = (mAccountMgr.getUserData(mAccount, AccountAuthenticator.KEY_SUPPORTS_OAUTH2) != null);\r
+                samlWebSsoRequired = (mAccountMgr.getUserData(mAccount, AccountAuthenticator.KEY_SUPPORTS_SAML_WEB_SSO) != null);\r
+            \r
+            } else {\r
+                /// use the one set in setup.xml\r
+                oAuthRequired = AUTH_ON.equals(getString(R.string.auth_method_oauth2));\r
+                samlWebSsoRequired = AUTH_ON.equals(getString(R.string.auth_method_saml_web_sso));            \r
+            }\r
+            if (oAuthRequired) {\r
+                mCurrentAuthTokenType = AccountAuthenticator.AUTH_TOKEN_TYPE_ACCESS_TOKEN;\r
+            } else if (samlWebSsoRequired) {\r
+                mCurrentAuthTokenType = AccountAuthenticator.AUTH_TOKEN_TYPE_SAML_WEB_SSO_SESSION_COOKIE;\r
+            } else {\r
+                mCurrentAuthTokenType = AccountAuthenticator.AUTH_TOKEN_TYPE_PASSWORD;\r
+            }\r
          }\r
          }\r
-\r
+    \r
          if (mAccount != null) {\r
              String userName = mAccount.name.substring(0, mAccount.name.lastIndexOf('@'));\r
              mUsernameInput.setText(userName);\r
          }\r
          if (mAccount != null) {\r
              String userName = mAccount.name.substring(0, mAccount.name.lastIndexOf('@'));\r
              mUsernameInput.setText(userName);\r
          }\r
+        \r
+        mOAuth2Check.setChecked(AccountAuthenticator.AUTH_TOKEN_TYPE_ACCESS_TOKEN.equals(mCurrentAuthTokenType));\r
+        \r
      }\r
  \r
      /**\r
      }\r
  \r
      /**\r
@@ -397,10 +401,11 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          if (mAccount != null) {\r
              outState.putParcelable(KEY_ACCOUNT, mAccount);\r
          }\r
          if (mAccount != null) {\r
              outState.putParcelable(KEY_ACCOUNT, mAccount);\r
          }\r
-        outState.putInt(KEY_AUTH_METHOD, mCurrentAuthorizationMethod);\r
+        outState.putString(AccountAuthenticator.KEY_AUTH_TOKEN_TYPE, mCurrentAuthTokenType);\r
          \r
          // refresh button enabled\r
          outState.putBoolean(KEY_REFRESH_BUTTON_ENABLED, (mRefreshButton.getVisibility() == View.VISIBLE));\r
          \r
          // refresh button enabled\r
          outState.putBoolean(KEY_REFRESH_BUTTON_ENABLED, (mRefreshButton.getVisibility() == View.VISIBLE));\r
+        \r
  \r
      }\r
  \r
  \r
      }\r
  \r
@@ -441,6 +446,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          }\r
  \r
          mJustCreated = false;\r
          }\r
  \r
          mJustCreated = false;\r
+        \r
      }\r
  \r
  \r
      }\r
  \r
  \r
@@ -462,7 +468,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
                  getString(R.string.oauth2_grant_type),\r
                  queryParameters);\r
          //WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(getString(R.string.oauth2_url_endpoint_access)), getApplicationContext());\r
                  getString(R.string.oauth2_grant_type),\r
                  queryParameters);\r
          //WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(getString(R.string.oauth2_url_endpoint_access)), getApplicationContext());\r
-        WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(mOAuthTokenEndpointText.getText().toString().trim()), getApplicationContext());\r
+        WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(mOAuthTokenEndpointText.getText().toString().trim()), getApplicationContext(), true);\r
          operation.execute(client, this, mHandler);\r
      }\r
  \r
          operation.execute(client, this, mHandler);\r
      }\r
  \r
@@ -526,7 +532,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              mServerStatusIcon = R.drawable.progress_small;\r
              showServerStatus();\r
              mOcServerChkOperation = new  OwnCloudServerCheckOperation(uri, this);\r
              mServerStatusIcon = R.drawable.progress_small;\r
              showServerStatus();\r
              mOcServerChkOperation = new  OwnCloudServerCheckOperation(uri, this);\r
-            WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(uri), this);\r
+            WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(uri), this, true);\r
              mOperationThread = mOcServerChkOperation.execute(client, this, mHandler);\r
          } else {\r
              mServerStatusText = 0;\r
              mOperationThread = mOcServerChkOperation.execute(client, this, mHandler);\r
          } else {\r
              mServerStatusText = 0;\r
@@ -626,9 +632,10 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              return;\r
          }\r
  \r
              return;\r
          }\r
  \r
-        if (mOAuth2Check.isChecked()) {\r
+        if (AccountAuthenticator.AUTH_TOKEN_TYPE_ACCESS_TOKEN.equals(mCurrentAuthTokenType)) {\r
              startOauthorization();\r
              startOauthorization();\r
-\r
+        } else if (AccountAuthenticator.AUTH_TOKEN_TYPE_SAML_WEB_SSO_SESSION_COOKIE.equals(mCurrentAuthTokenType)) { \r
+            startSamlBasedFederatedSingleSignOnAuthorization();\r
          } else {\r
              checkBasicAuthorization();\r
          }\r
          } else {\r
              checkBasicAuthorization();\r
          }\r
@@ -641,7 +648,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
       */\r
      private void checkBasicAuthorization() {\r
          /// get the path to the root folder through WebDAV from the version server\r
       */\r
      private void checkBasicAuthorization() {\r
          /// get the path to the root folder through WebDAV from the version server\r
-        String webdav_path = AccountUtils.getWebdavPath(mDiscoveredVersion, false);\r
+        String webdav_path = AccountUtils.getWebdavPath(mDiscoveredVersion, mCurrentAuthTokenType);\r
  \r
          /// get basic credentials entered by user\r
          String username = mUsernameInput.getText().toString();\r
  \r
          /// get basic credentials entered by user\r
          String username = mUsernameInput.getText().toString();\r
@@ -652,7 +659,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
  \r
          /// test credentials accessing the root folder\r
          mAuthCheckOperation = new  ExistenceCheckOperation("", this, false);\r
  \r
          /// test credentials accessing the root folder\r
          mAuthCheckOperation = new  ExistenceCheckOperation("", this, false);\r
-        WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(mHostBaseUrl + webdav_path), this);\r
+        WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(mHostBaseUrl + webdav_path), this, true);\r
          client.setBasicCredentials(username, password);\r
          mOperationThread = mAuthCheckOperation.execute(client, this, mHandler);\r
      }\r
          client.setBasicCredentials(username, password);\r
          mOperationThread = mAuthCheckOperation.execute(client, this, mHandler);\r
      }\r
@@ -667,6 +674,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          mAuthStatusIcon = R.drawable.progress_small;\r
          mAuthStatusText = R.string.oauth_login_connection;\r
          showAuthStatus();\r
          mAuthStatusIcon = R.drawable.progress_small;\r
          mAuthStatusText = R.string.oauth_login_connection;\r
          showAuthStatus();\r
+        \r
  \r
          // GET AUTHORIZATION request\r
          //Uri uri = Uri.parse(getString(R.string.oauth2_url_endpoint_auth));\r
  \r
          // GET AUTHORIZATION request\r
          //Uri uri = Uri.parse(getString(R.string.oauth2_url_endpoint_auth));\r
@@ -685,6 +693,26 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
  \r
  \r
      /**\r
  \r
  \r
      /**\r
+     * Starts the Web Single Sign On flow to get access to the root folder\r
+     * in the server.\r
+     */\r
+    private void startSamlBasedFederatedSingleSignOnAuthorization() {\r
+        // be gentle with the user\r
+        mAuthStatusIcon = R.drawable.progress_small;\r
+        mAuthStatusText = R.string.auth_connecting_auth_server;\r
+        showAuthStatus();\r
+        showDialog(DIALOG_LOGIN_PROGRESS);\r
+        \r
+        /// get the path to the root folder through WebDAV from the version server\r
+        String webdav_path = AccountUtils.getWebdavPath(mDiscoveredVersion, mCurrentAuthTokenType);\r
+\r
+        /// test credentials accessing the root folder\r
+        mAuthCheckOperation = new  ExistenceCheckOperation("", this, false);\r
+        WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(mHostBaseUrl + webdav_path), this, false);\r
+        mOperationThread = mAuthCheckOperation.execute(client, this, mHandler);\r
+    }\r
+\r
+    /**\r
       * Callback method invoked when a RemoteOperation executed by this Activity finishes.\r
       * \r
       * Dispatches the operation flow to the right method.\r
       * Callback method invoked when a RemoteOperation executed by this Activity finishes.\r
       * \r
       * Dispatches the operation flow to the right method.\r
@@ -699,10 +727,41 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              onGetOAuthAccessTokenFinish((OAuth2GetAccessToken)operation, result);\r
  \r
          } else if (operation instanceof ExistenceCheckOperation)  {\r
              onGetOAuthAccessTokenFinish((OAuth2GetAccessToken)operation, result);\r
  \r
          } else if (operation instanceof ExistenceCheckOperation)  {\r
-            onAuthorizationCheckFinish((ExistenceCheckOperation)operation, result);\r
-\r
+            if (AccountAuthenticator.AUTH_TOKEN_TYPE_SAML_WEB_SSO_SESSION_COOKIE.equals(mCurrentAuthTokenType)) {\r
+                onSamlBasedFederatedSingleSignOnAuthorizationStart(operation, result);\r
+                \r
+            } else {\r
+                onAuthorizationCheckFinish((ExistenceCheckOperation)operation, result);\r
+            }\r
          }\r
      }\r
          }\r
      }\r
+    \r
+    \r
+    private void onSamlBasedFederatedSingleSignOnAuthorizationStart(RemoteOperation operation, RemoteOperationResult result) {\r
+        try {\r
+            dismissDialog(DIALOG_LOGIN_PROGRESS);\r
+        } catch (IllegalArgumentException e) {\r
+            // NOTHING TO DO ; can't find out what situation that leads to the exception in this code, but user logs signal that it happens\r
+        }\r
+        \r
+        if (result.isTemporalRedirection()) {\r
+            String url = result.getRedirectedLocation();\r
+            String targetUrl = mHostBaseUrl + AccountUtils.getWebdavPath(mDiscoveredVersion, mCurrentAuthTokenType);\r
+            \r
+            // Show dialog\r
+            mSamlDialog = SamlWebViewDialog.newInstance(url, targetUrl);            \r
+            mSamlDialog.show(getSupportFragmentManager(), TAG_SAML_DIALOG);\r
+            \r
+            mAuthStatusIcon = android.R.drawable.ic_secure;\r
+            mAuthStatusText = R.string.auth_follow_auth_server;\r
+            \r
+        } else {\r
+            mAuthStatusIcon = R.drawable.common_error;\r
+            mAuthStatusText = R.string.auth_unsupported_auth_method;\r
+            \r
+        }\r
+        showAuthStatus();\r
+    }\r
  \r
  \r
      /**\r
  \r
  \r
      /**\r
@@ -952,17 +1011,17 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              // NOTHING TO DO ; can't find out what situation that leads to the exception in this code, but user logs signal that it happens\r
          }\r
  \r
              // NOTHING TO DO ; can't find out what situation that leads to the exception in this code, but user logs signal that it happens\r
          }\r
  \r
-        String webdav_path = AccountUtils.getWebdavPath(mDiscoveredVersion, true);\r
+        String webdav_path = AccountUtils.getWebdavPath(mDiscoveredVersion, mCurrentAuthTokenType);\r
          if (result.isSuccess() && webdav_path != null) {\r
              /// be gentle with the user\r
              showDialog(DIALOG_LOGIN_PROGRESS);\r
  \r
              /// time to test the retrieved access token on the ownCloud server\r
          if (result.isSuccess() && webdav_path != null) {\r
              /// be gentle with the user\r
              showDialog(DIALOG_LOGIN_PROGRESS);\r
  \r
              /// time to test the retrieved access token on the ownCloud server\r
-            mOAuthAccessToken = ((OAuth2GetAccessToken)operation).getResultTokenMap().get(OAuth2Constants.KEY_ACCESS_TOKEN);\r
-            Log_OC.d(TAG, "Got ACCESS TOKEN: " + mOAuthAccessToken);\r
+            mAuthToken = ((OAuth2GetAccessToken)operation).getResultTokenMap().get(OAuth2Constants.KEY_ACCESS_TOKEN);\r
+            Log_OC.d(TAG, "Got ACCESS TOKEN: " + mAuthToken);\r
              mAuthCheckOperation = new ExistenceCheckOperation("", this, false);\r
              mAuthCheckOperation = new ExistenceCheckOperation("", this, false);\r
-            WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(mHostBaseUrl + webdav_path), this);\r
-            client.setBearerCredentials(mOAuthAccessToken);\r
+            WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(mHostBaseUrl + webdav_path), this, true);\r
+            client.setBearerCredentials(mAuthToken);\r
              mAuthCheckOperation.execute(client, this, mHandler);\r
  \r
          } else {\r
              mAuthCheckOperation.execute(client, this, mHandler);\r
  \r
          } else {\r
@@ -1042,11 +1101,17 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          Bundle response = new Bundle();\r
          response.putString(AccountManager.KEY_ACCOUNT_NAME, mAccount.name);\r
          response.putString(AccountManager.KEY_ACCOUNT_TYPE, mAccount.type);\r
          Bundle response = new Bundle();\r
          response.putString(AccountManager.KEY_ACCOUNT_NAME, mAccount.name);\r
          response.putString(AccountManager.KEY_ACCOUNT_TYPE, mAccount.type);\r
-        boolean isOAuth = mOAuth2Check.isChecked();\r
-        if (isOAuth) {\r
-            response.putString(AccountManager.KEY_AUTHTOKEN, mOAuthAccessToken);\r
+        \r
+        if (AccountAuthenticator.AUTH_TOKEN_TYPE_ACCESS_TOKEN.equals(mCurrentAuthTokenType)) { \r
+            response.putString(AccountManager.KEY_AUTHTOKEN, mAuthToken);\r
+            // the next line is necessary; by now, notifications are calling directly to the AuthenticatorActivity to update, without AccountManager intervention\r
+            mAccountMgr.setAuthToken(mAccount, mCurrentAuthTokenType, mAuthToken);\r
+            \r
+        } else if (AccountAuthenticator.AUTH_TOKEN_TYPE_SAML_WEB_SSO_SESSION_COOKIE.equals(mCurrentAuthTokenType)) {\r
+            response.putString(AccountManager.KEY_AUTHTOKEN, mAuthToken);\r
              // the next line is necessary; by now, notifications are calling directly to the AuthenticatorActivity to update, without AccountManager intervention\r
              // the next line is necessary; by now, notifications are calling directly to the AuthenticatorActivity to update, without AccountManager intervention\r
-            mAccountMgr.setAuthToken(mAccount, AccountAuthenticator.AUTH_TOKEN_TYPE_ACCESS_TOKEN, mOAuthAccessToken);\r
+            mAccountMgr.setAuthToken(mAccount, mCurrentAuthTokenType, mAuthToken);\r
+            \r
          } else {\r
              response.putString(AccountManager.KEY_AUTHTOKEN, mPasswordInput.getText().toString());\r
              mAccountMgr.setPassword(mAccount, mPasswordInput.getText().toString());\r
          } else {\r
              response.putString(AccountManager.KEY_AUTHTOKEN, mPasswordInput.getText().toString());\r
              mAccountMgr.setPassword(mAccount, mPasswordInput.getText().toString());\r
@@ -1064,11 +1129,15 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
       */\r
      private void createAccount() {\r
          /// create and save new ownCloud account\r
       */\r
      private void createAccount() {\r
          /// create and save new ownCloud account\r
-        boolean isOAuth = mOAuth2Check.isChecked();\r
+        boolean isOAuth = AccountAuthenticator.AUTH_TOKEN_TYPE_ACCESS_TOKEN.equals(mCurrentAuthTokenType);\r
+        boolean isSaml =  AccountAuthenticator.AUTH_TOKEN_TYPE_SAML_WEB_SSO_SESSION_COOKIE.equals(mCurrentAuthTokenType);\r
  \r
          Uri uri = Uri.parse(mHostBaseUrl);\r
          String username = mUsernameInput.getText().toString().trim();\r
  \r
          Uri uri = Uri.parse(mHostBaseUrl);\r
          String username = mUsernameInput.getText().toString().trim();\r
-        if (isOAuth) {\r
+        if (isSaml) {\r
+            username = mAccountNameInput.getText().toString().trim();\r
+            \r
+        } else if (isOAuth) {\r
              username = "OAuth_user" + (new java.util.Random(System.currentTimeMillis())).nextLong();\r
          }            \r
          String accountName = username + "@" + uri.getHost();\r
              username = "OAuth_user" + (new java.util.Random(System.currentTimeMillis())).nextLong();\r
          }            \r
          String accountName = username + "@" + uri.getHost();\r
@@ -1076,8 +1145,8 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              accountName += ":" + uri.getPort();\r
          }\r
          mAccount = new Account(accountName, AccountAuthenticator.ACCOUNT_TYPE);\r
              accountName += ":" + uri.getPort();\r
          }\r
          mAccount = new Account(accountName, AccountAuthenticator.ACCOUNT_TYPE);\r
-        if (isOAuth) {\r
-            mAccountMgr.addAccountExplicitly(mAccount, "", null);  // with our implementation, the password is never input in the app\r
+        if (isOAuth || isSaml) {\r
+            mAccountMgr.addAccountExplicitly(mAccount, "", null);  // with external authorizations, the password is never input in the app\r
          } else {\r
              mAccountMgr.addAccountExplicitly(mAccount, mPasswordInput.getText().toString(), null);\r
          }\r
          } else {\r
              mAccountMgr.addAccountExplicitly(mAccount, mPasswordInput.getText().toString(), null);\r
          }\r
@@ -1096,17 +1165,20 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          final Intent intent = new Intent();       \r
          intent.putExtra(AccountManager.KEY_ACCOUNT_TYPE,    AccountAuthenticator.ACCOUNT_TYPE);\r
          intent.putExtra(AccountManager.KEY_ACCOUNT_NAME,    mAccount.name);\r
          final Intent intent = new Intent();       \r
          intent.putExtra(AccountManager.KEY_ACCOUNT_TYPE,    AccountAuthenticator.ACCOUNT_TYPE);\r
          intent.putExtra(AccountManager.KEY_ACCOUNT_NAME,    mAccount.name);\r
-        if (!isOAuth)\r
-            intent.putExtra(AccountManager.KEY_AUTHTOKEN,   AccountAuthenticator.ACCOUNT_TYPE); // TODO check this; not sure it's right; maybe\r
+        /*if (!isOAuth)\r
+            intent.putExtra(AccountManager.KEY_AUTHTOKEN,   AccountAuthenticator.ACCOUNT_TYPE); */\r
          intent.putExtra(AccountManager.KEY_USERDATA,        username);\r
          intent.putExtra(AccountManager.KEY_USERDATA,        username);\r
-        if (isOAuth) {\r
-            mAccountMgr.setAuthToken(mAccount, AccountAuthenticator.AUTH_TOKEN_TYPE_ACCESS_TOKEN, mOAuthAccessToken);\r
+        if (isOAuth || isSaml) {\r
+            mAccountMgr.setAuthToken(mAccount, mCurrentAuthTokenType, mAuthToken);\r
          }\r
          /// add user data to the new account; TODO probably can be done in the last parameter addAccountExplicitly, or in KEY_USERDATA\r
          mAccountMgr.setUserData(mAccount, AccountAuthenticator.KEY_OC_VERSION,    mDiscoveredVersion.toString());\r
          mAccountMgr.setUserData(mAccount, AccountAuthenticator.KEY_OC_BASE_URL,   mHostBaseUrl);\r
          }\r
          /// add user data to the new account; TODO probably can be done in the last parameter addAccountExplicitly, or in KEY_USERDATA\r
          mAccountMgr.setUserData(mAccount, AccountAuthenticator.KEY_OC_VERSION,    mDiscoveredVersion.toString());\r
          mAccountMgr.setUserData(mAccount, AccountAuthenticator.KEY_OC_BASE_URL,   mHostBaseUrl);\r
-        if (isOAuth)\r
-            mAccountMgr.setUserData(mAccount, AccountAuthenticator.KEY_SUPPORTS_OAUTH2, "TRUE");  // TODO this flag should be unnecessary\r
+        if (isSaml) {\r
+            mAccountMgr.setUserData(mAccount, AccountAuthenticator.KEY_SUPPORTS_SAML_WEB_SSO, "TRUE"); \r
+        } else if (isOAuth) {\r
+            mAccountMgr.setUserData(mAccount, AccountAuthenticator.KEY_SUPPORTS_OAUTH2, "TRUE");  \r
+        }\r
  \r
          setAccountAuthenticatorResult(intent.getExtras());\r
          setResult(RESULT_OK, intent);\r
  \r
          setAccountAuthenticatorResult(intent.getExtras());\r
          setResult(RESULT_OK, intent);\r
@@ -1305,9 +1377,9 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
      public void onCheckClick(View view) {\r
          CheckBox oAuth2Check = (CheckBox)view;\r
          if (oAuth2Check.isChecked()) {\r
      public void onCheckClick(View view) {\r
          CheckBox oAuth2Check = (CheckBox)view;\r
          if (oAuth2Check.isChecked()) {\r
-            mCurrentAuthorizationMethod = AUTH_METHOD_OAUTH2;\r
+            mCurrentAuthTokenType = AccountAuthenticator.AUTH_TOKEN_TYPE_ACCESS_TOKEN;\r
          } else {\r
          } else {\r
-            mCurrentAuthorizationMethod = AUTH_METHOD_BASIC_HTTP;\r
+            mCurrentAuthTokenType = AccountAuthenticator.AUTH_TOKEN_TYPE_PASSWORD;\r
          }\r
          adaptViewAccordingToAuthenticationMethod();\r
      }\r
          }\r
          adaptViewAccordingToAuthenticationMethod();\r
      }\r
@@ -1318,37 +1390,29 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
       * the current authorization method.\r
       */\r
      private void adaptViewAccordingToAuthenticationMethod () {\r
       * the current authorization method.\r
       */\r
      private void adaptViewAccordingToAuthenticationMethod () {\r
-        switch (mCurrentAuthorizationMethod) { \r
-            case AUTH_METHOD_OAUTH2:\r
-                // OAuth 2 authorization\r
-                mOAuthAuthEndpointText.setVisibility(View.VISIBLE);\r
-                mOAuthTokenEndpointText.setVisibility(View.VISIBLE);\r
-                mUsernameInput.setVisibility(View.GONE);\r
-                mPasswordInput.setVisibility(View.GONE);\r
-                mAccountNameInput.setVisibility(View.GONE);\r
-                mWebSsoView.setVisibility(View.GONE);\r
-                break;\r
-                \r
-            case AUTH_METHOD_SAML_WEB_SSO:\r
-                // SAML-based web Single Sign On\r
-                mOAuthAuthEndpointText.setVisibility(View.GONE);\r
-                mOAuthTokenEndpointText.setVisibility(View.GONE);\r
-                mUsernameInput.setVisibility(View.GONE);\r
-                mPasswordInput.setVisibility(View.GONE);\r
-                mAccountNameInput.setVisibility(View.VISIBLE);\r
-                mWebSsoView.setVisibility(View.VISIBLE);\r
-                break;\r
-                \r
-            case AUTH_METHOD_BASIC_HTTP:\r
-            default:\r
-                // basic HTTP authorization\r
-                mOAuthAuthEndpointText.setVisibility(View.GONE);\r
-                mOAuthTokenEndpointText.setVisibility(View.GONE);\r
-                mUsernameInput.setVisibility(View.VISIBLE);\r
-                mPasswordInput.setVisibility(View.VISIBLE);\r
-                mAccountNameInput.setVisibility(View.GONE);\r
-                mWebSsoView.setVisibility(View.GONE);\r
-            }\r
+        if (AccountAuthenticator.AUTH_TOKEN_TYPE_ACCESS_TOKEN.equals(mCurrentAuthTokenType)) {\r
+            // OAuth 2 authorization\r
+            mOAuthAuthEndpointText.setVisibility(View.VISIBLE);\r
+            mOAuthTokenEndpointText.setVisibility(View.VISIBLE);\r
+            mUsernameInput.setVisibility(View.GONE);\r
+            mPasswordInput.setVisibility(View.GONE);\r
+            mAccountNameInput.setVisibility(View.GONE);\r
+            \r
+        } else if (AccountAuthenticator.AUTH_TOKEN_TYPE_SAML_WEB_SSO_SESSION_COOKIE.equals(mCurrentAuthTokenType)) {\r
+            // SAML-based web Single Sign On\r
+            mOAuthAuthEndpointText.setVisibility(View.GONE);\r
+            mOAuthTokenEndpointText.setVisibility(View.GONE);\r
+            mUsernameInput.setVisibility(View.GONE);\r
+            mPasswordInput.setVisibility(View.GONE);\r
+            mAccountNameInput.setVisibility(View.VISIBLE);\r
+        } else {\r
+            // basic HTTP authorization\r
+            mOAuthAuthEndpointText.setVisibility(View.GONE);\r
+            mOAuthTokenEndpointText.setVisibility(View.GONE);\r
+            mUsernameInput.setVisibility(View.VISIBLE);\r
+            mPasswordInput.setVisibility(View.VISIBLE);\r
+            mAccountNameInput.setVisibility(View.GONE);\r
+        }\r
      }\r
      \r
      /**\r
      }\r
      \r
      /**\r
@@ -1417,4 +1481,42 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          public abstract boolean onDrawableTouch(final MotionEvent event);\r
      }\r
  \r
          public abstract boolean onDrawableTouch(final MotionEvent event);\r
      }\r
  \r
+\r
+    public void onSamlDialogSuccess(String sessionCookie){\r
+        mAuthToken = sessionCookie;\r
+        \r
+        if (sessionCookie != null && sessionCookie.length() > 0) {\r
+          Log_OC.d(TAG, "Successful SSO - time to save the account");\r
+          mAuthToken = sessionCookie;\r
+          if (mAction == ACTION_CREATE) {\r
+              createAccount();\r
+\r
+          } else {\r
+              updateToken();\r
+          }\r
+\r
+          finish();\r
+\r
+      }\r
+    }\r
+\r
+\r
+\r
+    @Override\r
+    public void onSsoFinished(String sessionCookie) {\r
+        //Toast.makeText(this, "got cookies: " + sessionCookie, Toast.LENGTH_LONG).show();\r
+\r
+        if (sessionCookie != null && sessionCookie.length() > 0) {\r
+            Log_OC.d(TAG, "Successful SSO - time to save the account");\r
+            onSamlDialogSuccess(sessionCookie);\r
+            finish();\r
+\r
+        } else { \r
+            // TODO - show fail\r
+            Log_OC.d(TAG, "SSO failed");\r
+        }\r
+    }\r
+    \r
+    \r
+\r
  }\r
  }\r