Merge branch 'develop' into refactor_remote_operation_to_create_folder

[pub/Android/ownCloud.git] / src / com / owncloud / android / authentication / AuthenticatorActivity.java
diff --git a/src/com/owncloud/android/authentication/AuthenticatorActivity.java b/src/com/owncloud/android/authentication/AuthenticatorActivity.java

index b6ead82..6928d41 100644 (file)
--- a/src/com/owncloud/android/authentication/AuthenticatorActivity.java
+++ b/src/com/owncloud/android/authentication/AuthenticatorActivity.java
@@ -18,22 +18,7 @@
  \r
  package com.owncloud.android.authentication;\r
  \r
  \r
  package com.owncloud.android.authentication;\r
  \r
-import com.owncloud.android.AccountUtils;\r
-import com.owncloud.android.Log_OC;\r
-import com.owncloud.android.ui.dialog.SslValidatorDialog;\r
-import com.owncloud.android.ui.dialog.SslValidatorDialog.OnSslValidatorListener;\r
-import com.owncloud.android.utils.OwnCloudVersion;\r
-import com.owncloud.android.network.OwnCloudClientUtils;\r
-import com.owncloud.android.operations.OwnCloudServerCheckOperation;\r
-import com.owncloud.android.operations.ExistenceCheckOperation;\r
-import com.owncloud.android.operations.OAuth2GetAccessToken;\r
-import com.owncloud.android.operations.OnRemoteOperationListener;\r
-import com.owncloud.android.operations.RemoteOperation;\r
-import com.owncloud.android.operations.RemoteOperationResult;\r
-import com.owncloud.android.operations.RemoteOperationResult.ResultCode;\r
-\r
  import android.accounts.Account;\r
  import android.accounts.Account;\r
-import android.accounts.AccountAuthenticatorActivity;\r
  import android.accounts.AccountManager;\r
  import android.app.AlertDialog;\r
  import android.app.Dialog;\r
  import android.accounts.AccountManager;\r
  import android.app.AlertDialog;\r
  import android.app.Dialog;\r
@@ -48,27 +33,43 @@ import android.net.Uri;
  import android.os.Bundle;\r
  import android.os.Handler;\r
  import android.preference.PreferenceManager;\r
  import android.os.Bundle;\r
  import android.os.Handler;\r
  import android.preference.PreferenceManager;\r
+import android.support.v4.app.Fragment;\r
  import android.text.Editable;\r
  import android.text.InputType;\r
  import android.text.TextWatcher;\r
  import android.view.KeyEvent;\r
  import android.view.MotionEvent;\r
  import android.view.View;\r
  import android.text.Editable;\r
  import android.text.InputType;\r
  import android.text.TextWatcher;\r
  import android.view.KeyEvent;\r
  import android.view.MotionEvent;\r
  import android.view.View;\r
-import android.view.View.OnClickListener;\r
  import android.view.View.OnFocusChangeListener;\r
  import android.view.View.OnTouchListener;\r
  import android.view.Window;\r
  import android.view.inputmethod.EditorInfo;\r
  import android.view.View.OnFocusChangeListener;\r
  import android.view.View.OnTouchListener;\r
  import android.view.Window;\r
  import android.view.inputmethod.EditorInfo;\r
+import android.widget.Button;\r
  import android.widget.CheckBox;\r
  import android.widget.EditText;\r
  import android.widget.CheckBox;\r
  import android.widget.EditText;\r
-import android.widget.Button;\r
  import android.widget.TextView;\r
  import android.widget.TextView;\r
-import android.widget.Toast;\r
  import android.widget.TextView.OnEditorActionListener;\r
  \r
  import android.widget.TextView.OnEditorActionListener;\r
  \r
+import com.actionbarsherlock.app.SherlockDialogFragment;\r
+import com.owncloud.android.MainApp;\r
  import com.owncloud.android.R;\r
  import com.owncloud.android.R;\r
-\r
-import eu.alefzero.webdav.WebdavClient;\r
+import com.owncloud.android.authentication.SsoWebViewClient.SsoWebViewClientListener;\r
+import com.owncloud.android.oc_framework.accounts.AccountTypeUtils;\r
+import com.owncloud.android.oc_framework.accounts.OwnCloudAccount;\r
+import com.owncloud.android.oc_framework.network.webdav.OwnCloudClientFactory;\r
+import com.owncloud.android.oc_framework.network.webdav.WebdavClient;\r
+import com.owncloud.android.operations.ExistenceCheckOperation;\r
+import com.owncloud.android.operations.OAuth2GetAccessToken;\r
+import com.owncloud.android.oc_framework.operations.OnRemoteOperationListener;\r
+import com.owncloud.android.operations.OwnCloudServerCheckOperation;\r
+import com.owncloud.android.oc_framework.operations.RemoteOperation;\r
+import com.owncloud.android.oc_framework.operations.RemoteOperationResult;\r
+import com.owncloud.android.oc_framework.operations.RemoteOperationResult.ResultCode;\r
+import com.owncloud.android.ui.dialog.SamlWebViewDialog;\r
+import com.owncloud.android.ui.dialog.SslValidatorDialog;\r
+import com.owncloud.android.ui.dialog.SslValidatorDialog.OnSslValidatorListener;\r
+import com.owncloud.android.utils.Log_OC;\r
+import com.owncloud.android.oc_framework.utils.OwnCloudVersion;\r
  \r
  /**\r
   * This Activity is used to add an ownCloud account to the App\r
  \r
  /**\r
   * This Activity is used to add an ownCloud account to the App\r
@@ -77,7 +78,7 @@ import eu.alefzero.webdav.WebdavClient;
   * @author David A. Velasco\r
   */\r
  public class AuthenticatorActivity extends AccountAuthenticatorActivity\r
   * @author David A. Velasco\r
   */\r
  public class AuthenticatorActivity extends AccountAuthenticatorActivity\r
-implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeListener, OnEditorActionListener {\r
+implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeListener, OnEditorActionListener, SsoWebViewClientListener{\r
  \r
      private static final String TAG = AuthenticatorActivity.class.getSimpleName();\r
  \r
  \r
      private static final String TAG = AuthenticatorActivity.class.getSimpleName();\r
  \r
@@ -85,7 +86,10 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
      public static final String EXTRA_USER_NAME = "USER_NAME";\r
      public static final String EXTRA_HOST_NAME = "HOST_NAME";\r
      public static final String EXTRA_ACTION = "ACTION";\r
      public static final String EXTRA_USER_NAME = "USER_NAME";\r
      public static final String EXTRA_HOST_NAME = "HOST_NAME";\r
      public static final String EXTRA_ACTION = "ACTION";\r
+    public static final String EXTRA_ENFORCED_UPDATE = "ENFORCE_UPDATE";\r
  \r
  \r
+    private static final String KEY_AUTH_MESSAGE_VISIBILITY = "AUTH_MESSAGE_VISIBILITY";\r
+    private static final String KEY_AUTH_MESSAGE_TEXT = "AUTH_MESSAGE_TEXT";\r
      private static final String KEY_HOST_URL_TEXT = "HOST_URL_TEXT";\r
      private static final String KEY_OC_VERSION = "OC_VERSION";\r
      private static final String KEY_ACCOUNT = "ACCOUNT";\r
      private static final String KEY_HOST_URL_TEXT = "HOST_URL_TEXT";\r
      private static final String KEY_OC_VERSION = "OC_VERSION";\r
      private static final String KEY_ACCOUNT = "ACCOUNT";\r
@@ -99,11 +103,13 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
      private static final String KEY_AUTH_STATUS_TEXT = "AUTH_STATUS_TEXT";\r
      private static final String KEY_AUTH_STATUS_ICON = "AUTH_STATUS_ICON";\r
      private static final String KEY_REFRESH_BUTTON_ENABLED = "KEY_REFRESH_BUTTON_ENABLED";\r
      private static final String KEY_AUTH_STATUS_TEXT = "AUTH_STATUS_TEXT";\r
      private static final String KEY_AUTH_STATUS_ICON = "AUTH_STATUS_ICON";\r
      private static final String KEY_REFRESH_BUTTON_ENABLED = "KEY_REFRESH_BUTTON_ENABLED";\r
+    \r
+    private static final String KEY_OC_USERNAME_EQUALS = "oc_username=";\r
  \r
  \r
-    private static final String OAUTH_MODE_ON = "on";\r
-    private static final String OAUTH_MODE_OFF = "off";\r
-    private static final String OAUTH_MODE_OPTIONAL = "optional";\r
-\r
+    private static final String AUTH_ON = "on";\r
+    private static final String AUTH_OFF = "off";\r
+    private static final String AUTH_OPTIONAL = "optional";\r
+    \r
      private static final int DIALOG_LOGIN_PROGRESS = 0;\r
      private static final int DIALOG_SSL_VALIDATOR = 1;\r
      private static final int DIALOG_CERT_NOT_SAVED = 2;\r
      private static final int DIALOG_LOGIN_PROGRESS = 0;\r
      private static final int DIALOG_SSL_VALIDATOR = 1;\r
      private static final int DIALOG_CERT_NOT_SAVED = 2;\r
@@ -111,13 +117,17 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
  \r
      public static final byte ACTION_CREATE = 0;\r
      public static final byte ACTION_UPDATE_TOKEN = 1;\r
  \r
      public static final byte ACTION_CREATE = 0;\r
      public static final byte ACTION_UPDATE_TOKEN = 1;\r
+\r
+    private static final String TAG_SAML_DIALOG = "samlWebViewDialog";\r
      \r
      private String mHostBaseUrl;\r
      private OwnCloudVersion mDiscoveredVersion;\r
  \r
      \r
      private String mHostBaseUrl;\r
      private OwnCloudVersion mDiscoveredVersion;\r
  \r
-    private int mServerStatusText, mServerStatusIcon;\r
+    private String mAuthMessageText;\r
+    private int mAuthMessageVisibility, mServerStatusText, mServerStatusIcon;\r
      private boolean mServerIsChecked, mServerIsValid, mIsSslConn;\r
      private int mAuthStatusText, mAuthStatusIcon;    \r
      private boolean mServerIsChecked, mServerIsValid, mIsSslConn;\r
      private int mAuthStatusText, mAuthStatusIcon;    \r
+    private TextView mAuthStatusLayout;\r
  \r
      private final Handler mHandler = new Handler();\r
      private Thread mOperationThread;\r
  \r
      private final Handler mHandler = new Handler();\r
      private Thread mOperationThread;\r
@@ -132,21 +142,29 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
      private byte mAction;\r
      private Account mAccount;\r
  \r
      private byte mAction;\r
      private Account mAccount;\r
  \r
-    private Button mCheckServerButton;\r
+    private TextView mAuthMessage;\r
+    \r
      private EditText mHostUrlInput;\r
      private EditText mHostUrlInput;\r
+    private boolean mHostUrlInputEnabled;\r
+    private View mRefreshButton;\r
+\r
+    private String mAuthTokenType;\r
+    \r
      private EditText mUsernameInput;\r
      private EditText mPasswordInput;\r
      private EditText mUsernameInput;\r
      private EditText mPasswordInput;\r
+    \r
      private CheckBox mOAuth2Check;\r
      private CheckBox mOAuth2Check;\r
-    private String mOAuthAccessToken;\r
-    private View mOkButton;\r
-    private TextView mAuthStatusLayout;\r
-\r
+    \r
      private TextView mOAuthAuthEndpointText;\r
      private TextView mOAuthTokenEndpointText;\r
      \r
      private TextView mOAuthAuthEndpointText;\r
      private TextView mOAuthTokenEndpointText;\r
      \r
-    private boolean mRefreshButtonEnabled;\r
+    private SamlWebViewDialog mSamlDialog;\r
      \r
      \r
-    private boolean mHostUrlInputEnabled;\r
+    private View mOkButton;\r
+    \r
+    private String mAuthToken;\r
+    \r
+    private boolean mResumed; // Control if activity is resumed\r
  \r
  \r
      /**\r
  \r
  \r
      /**\r
@@ -161,8 +179,9 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
  \r
          /// set view and get references to view elements\r
          setContentView(R.layout.account_setup);\r
  \r
          /// set view and get references to view elements\r
          setContentView(R.layout.account_setup);\r
-        mCheckServerButton = (Button) findViewById(R.id.checkServerButton);\r
+        mAuthMessage = (TextView) findViewById(R.id.auth_message);\r
          mHostUrlInput = (EditText) findViewById(R.id.hostUrlInput);\r
          mHostUrlInput = (EditText) findViewById(R.id.hostUrlInput);\r
+        mHostUrlInput.setText(getString(R.string.server_url));  // valid although R.string.server_url is an empty string\r
          mUsernameInput = (EditText) findViewById(R.id.account_username);\r
          mPasswordInput = (EditText) findViewById(R.id.account_password);\r
          mOAuthAuthEndpointText = (TextView)findViewById(R.id.oAuthEntryPoint_1);\r
          mUsernameInput = (EditText) findViewById(R.id.account_username);\r
          mPasswordInput = (EditText) findViewById(R.id.account_password);\r
          mOAuthAuthEndpointText = (TextView)findViewById(R.id.oAuthEntryPoint_1);\r
@@ -174,11 +193,16 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          /// set Host Url Input Enabled\r
          mHostUrlInputEnabled = getResources().getBoolean(R.bool.show_server_url_input);\r
          \r
          /// set Host Url Input Enabled\r
          mHostUrlInputEnabled = getResources().getBoolean(R.bool.show_server_url_input);\r
          \r
-\r
-        /// complete label for 'register account' button\r
-        Button b = (Button) findViewById(R.id.account_register);\r
-        if (b != null) {\r
-            b.setText(String.format(getString(R.string.auth_register), getString(R.string.app_name)));\r
+        /// set visibility of link for new users\r
+        boolean accountRegisterVisibility = getResources().getBoolean(R.bool.show_welcome_link);\r
+        Button welcomeLink = (Button) findViewById(R.id.welcome_link);\r
+        if (welcomeLink != null) {\r
+            if (accountRegisterVisibility) {\r
+                welcomeLink.setVisibility(View.VISIBLE);\r
+                welcomeLink.setText(String.format(getString(R.string.auth_register), getString(R.string.app_name)));            \r
+            } else {\r
+                findViewById(R.id.welcome_link).setVisibility(View.GONE);\r
+            }\r
          }\r
  \r
          /// initialization\r
          }\r
  \r
          /// initialization\r
@@ -187,28 +211,22 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          mAction = getIntent().getByteExtra(EXTRA_ACTION, ACTION_CREATE); \r
          mAccount = null;\r
          mHostBaseUrl = "";\r
          mAction = getIntent().getByteExtra(EXTRA_ACTION, ACTION_CREATE); \r
          mAccount = null;\r
          mHostBaseUrl = "";\r
+        boolean refreshButtonEnabled = false;\r
          \r
          \r
-        // URL Branding\r
+        // URL input configuration applied\r
          if (!mHostUrlInputEnabled)\r
          {\r
          if (!mHostUrlInputEnabled)\r
          {\r
-            mHostUrlInput.setText(getString(R.string.server_url));\r
-            mHostUrlInput.setVisibility(View.GONE);\r
-            \r
-            mCheckServerButton.setVisibility(View.VISIBLE);\r
-            mCheckServerButton.setOnClickListener(new OnClickListener() {\r
-                \r
-                @Override\r
-                public void onClick(View v) {\r
-                    checkOcServer();\r
-                    \r
-                }\r
-            });\r
-            \r
-            checkOcServer();\r
+            findViewById(R.id.hostUrlFrame).setVisibility(View.GONE);\r
+            mRefreshButton = findViewById(R.id.centeredRefreshButton);\r
+\r
+        } else {\r
+            mRefreshButton = findViewById(R.id.embeddedRefreshButton);\r
          }\r
  \r
          if (savedInstanceState == null) {\r
          }\r
  \r
          if (savedInstanceState == null) {\r
+            mResumed = false;\r
              /// connection state and info\r
              /// connection state and info\r
+            mAuthMessageVisibility = View.GONE;\r
              mServerStatusText = mServerStatusIcon = 0;\r
              mServerIsValid = false;\r
              mServerIsChecked = false;\r
              mServerStatusText = mServerStatusIcon = 0;\r
              mServerIsValid = false;\r
              mServerIsChecked = false;\r
@@ -216,27 +234,29 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              mAuthStatusText = mAuthStatusIcon = 0;\r
  \r
              /// retrieve extras from intent\r
              mAuthStatusText = mAuthStatusIcon = 0;\r
  \r
              /// retrieve extras from intent\r
-            String tokenType = getIntent().getExtras().getString(AccountAuthenticator.KEY_AUTH_TOKEN_TYPE);\r
-            boolean oAuthRequired = AccountAuthenticator.AUTH_TOKEN_TYPE_ACCESS_TOKEN.equals(tokenType) || OAUTH_MODE_ON.equals(getString(R.string.oauth2_mode));\r
-\r
              mAccount = getIntent().getExtras().getParcelable(EXTRA_ACCOUNT);\r
              if (mAccount != null) {\r
              mAccount = getIntent().getExtras().getParcelable(EXTRA_ACCOUNT);\r
              if (mAccount != null) {\r
-                String ocVersion = mAccountMgr.getUserData(mAccount, AccountAuthenticator.KEY_OC_VERSION);\r
+                String ocVersion = mAccountMgr.getUserData(mAccount, OwnCloudAccount.Constants.KEY_OC_VERSION);\r
                  if (ocVersion != null) {\r
                      mDiscoveredVersion = new OwnCloudVersion(ocVersion);\r
                  }\r
                  if (ocVersion != null) {\r
                      mDiscoveredVersion = new OwnCloudVersion(ocVersion);\r
                  }\r
-                mHostBaseUrl = normalizeUrl(mAccountMgr.getUserData(mAccount, AccountAuthenticator.KEY_OC_BASE_URL));\r
+                mHostBaseUrl = normalizeUrl(mAccountMgr.getUserData(mAccount, OwnCloudAccount.Constants.KEY_OC_BASE_URL));\r
                  mHostUrlInput.setText(mHostBaseUrl);\r
                  String userName = mAccount.name.substring(0, mAccount.name.lastIndexOf('@'));\r
                  mUsernameInput.setText(userName);\r
                  mHostUrlInput.setText(mHostBaseUrl);\r
                  String userName = mAccount.name.substring(0, mAccount.name.lastIndexOf('@'));\r
                  mUsernameInput.setText(userName);\r
-                oAuthRequired = (mAccountMgr.getUserData(mAccount, AccountAuthenticator.KEY_SUPPORTS_OAUTH2) != null);\r
              }\r
              }\r
-            mOAuth2Check.setChecked(oAuthRequired);\r
-            changeViewByOAuth2Check(oAuthRequired);\r
-\r
-\r
+            initAuthorizationMethod();  // checks intent and setup.xml to determine mCurrentAuthorizationMethod\r
+            mJustCreated = true;\r
+            \r
+            if (mAction == ACTION_UPDATE_TOKEN || !mHostUrlInputEnabled) {\r
+                checkOcServer(); \r
+            }\r
+            \r
          } else {\r
          } else {\r
+            mResumed = true;\r
              /// connection state and info\r
              /// connection state and info\r
+            mAuthMessageVisibility = savedInstanceState.getInt(KEY_AUTH_MESSAGE_VISIBILITY);\r
+            mAuthMessageText = savedInstanceState.getString(KEY_AUTH_MESSAGE_TEXT);\r
              mServerIsValid = savedInstanceState.getBoolean(KEY_SERVER_VALID);\r
              mServerIsChecked = savedInstanceState.getBoolean(KEY_SERVER_CHECKED);\r
              mServerStatusText = savedInstanceState.getInt(KEY_SERVER_STATUS_TEXT);\r
              mServerIsValid = savedInstanceState.getBoolean(KEY_SERVER_VALID);\r
              mServerIsChecked = savedInstanceState.getBoolean(KEY_SERVER_CHECKED);\r
              mServerStatusText = savedInstanceState.getInt(KEY_SERVER_STATUS_TEXT);\r
@@ -257,6 +277,11 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
  \r
              // account data, if updating\r
              mAccount = savedInstanceState.getParcelable(KEY_ACCOUNT);\r
  \r
              // account data, if updating\r
              mAccount = savedInstanceState.getParcelable(KEY_ACCOUNT);\r
+            mAuthTokenType = savedInstanceState.getString(AccountAuthenticator.KEY_AUTH_TOKEN_TYPE);\r
+            if (mAuthTokenType == null) {\r
+                mAuthTokenType =  AccountTypeUtils.getAuthTokenTypePass(MainApp.getAccountType());\r
+                \r
+            }\r
  \r
              // check if server check was interrupted by a configuration change\r
              if (savedInstanceState.getBoolean(KEY_SERVER_CHECK_IN_PROGRESS, false)) {\r
  \r
              // check if server check was interrupted by a configuration change\r
              if (savedInstanceState.getBoolean(KEY_SERVER_CHECK_IN_PROGRESS, false)) {\r
@@ -264,43 +289,45 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              }            \r
              \r
              // refresh button enabled\r
              }            \r
              \r
              // refresh button enabled\r
-            mRefreshButtonEnabled = savedInstanceState.getBoolean(KEY_REFRESH_BUTTON_ENABLED);\r
+            refreshButtonEnabled = savedInstanceState.getBoolean(KEY_REFRESH_BUTTON_ENABLED);\r
+            \r
  \r
          }\r
  \r
  \r
          }\r
  \r
+        if (mAuthMessageVisibility== View.VISIBLE) {\r
+            showAuthMessage(mAuthMessageText);\r
+        }\r
+        else {\r
+            hideAuthMessage();\r
+        }\r
+        adaptViewAccordingToAuthenticationMethod();\r
          showServerStatus();\r
          showAuthStatus();\r
          showServerStatus();\r
          showAuthStatus();\r
-        if (mServerIsChecked && !mServerIsValid && mRefreshButtonEnabled) showRefreshButton();\r
-        mOkButton.setEnabled(mServerIsValid); // state not automatically recovered in configuration changes\r
-\r
-        if (!OAUTH_MODE_OPTIONAL.equals(getString(R.string.oauth2_mode))) {\r
-            mOAuth2Check.setVisibility(View.GONE);\r
-        }\r
-\r
+        \r
          if (mAction == ACTION_UPDATE_TOKEN) {\r
              /// lock things that should not change\r
              mHostUrlInput.setEnabled(false);\r
          if (mAction == ACTION_UPDATE_TOKEN) {\r
              /// lock things that should not change\r
              mHostUrlInput.setEnabled(false);\r
+            mHostUrlInput.setFocusable(false);\r
              mUsernameInput.setEnabled(false);\r
              mUsernameInput.setEnabled(false);\r
+            mUsernameInput.setFocusable(false);\r
+            mOAuth2Check.setVisibility(View.GONE);\r
+        }\r
+        \r
+        //if (mServerIsChecked && !mServerIsValid && mRefreshButtonEnabled) showRefreshButton();\r
+        if (mServerIsChecked && !mServerIsValid && refreshButtonEnabled) showRefreshButton();\r
+        mOkButton.setEnabled(mServerIsValid); // state not automatically recovered in configuration changes\r
+\r
+        if (AccountTypeUtils.getAuthTokenTypeSamlSessionCookie(MainApp.getAccountType()).equals(mAuthTokenType) || \r
+                !AUTH_OPTIONAL.equals(getString(R.string.auth_method_oauth2))) {\r
              mOAuth2Check.setVisibility(View.GONE);\r
              mOAuth2Check.setVisibility(View.GONE);\r
-            if (!mServerIsValid && mOcServerChkOperation == null) {\r
-                checkOcServer(); \r
-            }\r
          }\r
  \r
          mPasswordInput.setText("");     // clean password to avoid social hacking (disadvantage: password in removed if the device is turned aside)\r
          }\r
  \r
          mPasswordInput.setText("");     // clean password to avoid social hacking (disadvantage: password in removed if the device is turned aside)\r
-        mJustCreated = true;\r
  \r
  \r
-        /// bind view elements to listeners\r
+        /// bind view elements to listeners and other friends\r
          mHostUrlInput.setOnFocusChangeListener(this);\r
          mHostUrlInput.setOnFocusChangeListener(this);\r
-        mHostUrlInput.setOnTouchListener(new RightDrawableOnTouchListener() {\r
-            @Override\r
-            public boolean onDrawableTouch(final MotionEvent event) {\r
-                if (event.getAction() == MotionEvent.ACTION_UP) {\r
-                    AuthenticatorActivity.this.onRefreshClick();\r
-                }\r
-                return true;\r
-            }\r
-        });\r
+        mHostUrlInput.setImeOptions(EditorInfo.IME_ACTION_NEXT);\r
+        mHostUrlInput.setOnEditorActionListener(this);\r
          mHostUrlInput.addTextChangedListener(new TextWatcher() {\r
  \r
              @Override\r
          mHostUrlInput.addTextChangedListener(new TextWatcher() {\r
  \r
              @Override\r
@@ -311,12 +338,20 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              }\r
  \r
              @Override\r
              }\r
  \r
              @Override\r
-            public void beforeTextChanged(CharSequence s, int start, int count, int after) {}\r
+            public void beforeTextChanged(CharSequence s, int start, int count, int after) {\r
+            }\r
  \r
              @Override\r
  \r
              @Override\r
-            public void onTextChanged(CharSequence s, int start, int before, int count) {}\r
-\r
+            public void onTextChanged(CharSequence s, int start, int before, int count) {\r
+                if (!mResumed) {\r
+                    mAuthStatusIcon = 0;\r
+                    mAuthStatusText = 0;\r
+                    showAuthStatus();                    \r
+                }\r
+                mResumed = false;\r
+            }\r
          });\r
          });\r
+        \r
          mPasswordInput.setOnFocusChangeListener(this);\r
          mPasswordInput.setImeOptions(EditorInfo.IME_ACTION_DONE);\r
          mPasswordInput.setOnEditorActionListener(this);
          mPasswordInput.setOnFocusChangeListener(this);\r
          mPasswordInput.setImeOptions(EditorInfo.IME_ACTION_DONE);\r
          mPasswordInput.setOnEditorActionListener(this);
@@ -328,7 +363,60 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
                  }\r
                  return true;\r
              }\r
                  }\r
                  return true;\r
              }\r
-        });
+        });\r
+        \r
+        findViewById(R.id.scroll).setOnTouchListener(new OnTouchListener() {\r
+            @Override\r
+            public boolean onTouch(View view, MotionEvent event) {\r
+                if (event.getAction() == MotionEvent.ACTION_DOWN) {\r
+                    if (AccountTypeUtils.getAuthTokenTypeSamlSessionCookie(MainApp.getAccountType()).equals(mAuthTokenType) &&\r
+                            mHostUrlInput.hasFocus()) {\r
+                        checkOcServer();\r
+                    }\r
+                }\r
+                return false;\r
+            }\r
+        });\r
+    }\r
+    \r
+   \r
+\r
+    private void initAuthorizationMethod() {\r
+        boolean oAuthRequired = false;\r
+        boolean samlWebSsoRequired = false;\r
+\r
+        mAuthTokenType = getIntent().getExtras().getString(AccountAuthenticator.KEY_AUTH_TOKEN_TYPE);\r
+        mAccount = getIntent().getExtras().getParcelable(EXTRA_ACCOUNT);\r
+        \r
+        // TODO could be a good moment to validate the received token type, if not null\r
+        \r
+        if (mAuthTokenType == null) {    \r
+            if (mAccount != null) {\r
+                /// same authentication method than the one used to create the account to update\r
+                oAuthRequired = (mAccountMgr.getUserData(mAccount, OwnCloudAccount.Constants.KEY_SUPPORTS_OAUTH2) != null);\r
+                samlWebSsoRequired = (mAccountMgr.getUserData(mAccount, OwnCloudAccount.Constants.KEY_SUPPORTS_SAML_WEB_SSO) != null);\r
+            \r
+            } else {\r
+                /// use the one set in setup.xml\r
+                oAuthRequired = AUTH_ON.equals(getString(R.string.auth_method_oauth2));\r
+                samlWebSsoRequired = AUTH_ON.equals(getString(R.string.auth_method_saml_web_sso));            \r
+            }\r
+            if (oAuthRequired) {\r
+                mAuthTokenType = AccountTypeUtils.getAuthTokenTypeAccessToken(MainApp.getAccountType());\r
+            } else if (samlWebSsoRequired) {\r
+                mAuthTokenType = AccountTypeUtils.getAuthTokenTypeSamlSessionCookie(MainApp.getAccountType());\r
+            } else {\r
+                mAuthTokenType = AccountTypeUtils.getAuthTokenTypePass(MainApp.getAccountType());\r
+            }\r
+        }\r
+    \r
+        if (mAccount != null) {\r
+            String userName = mAccount.name.substring(0, mAccount.name.lastIndexOf('@'));\r
+            mUsernameInput.setText(userName);\r
+        }\r
+        \r
+        mOAuth2Check.setChecked(AccountTypeUtils.getAuthTokenTypeAccessToken(MainApp.getAccountType()).equals(mAuthTokenType));\r
+        \r
      }\r
  \r
      /**\r
      }\r
  \r
      /**\r
@@ -344,6 +432,8 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          super.onSaveInstanceState(outState);\r
  \r
          /// connection state and info\r
          super.onSaveInstanceState(outState);\r
  \r
          /// connection state and info\r
+        outState.putInt(KEY_AUTH_MESSAGE_VISIBILITY, mAuthMessage.getVisibility());\r
+        outState.putString(KEY_AUTH_MESSAGE_TEXT, mAuthMessage.getText().toString());\r
          outState.putInt(KEY_SERVER_STATUS_TEXT, mServerStatusText);\r
          outState.putInt(KEY_SERVER_STATUS_ICON, mServerStatusIcon);\r
          outState.putBoolean(KEY_SERVER_VALID, mServerIsValid);\r
          outState.putInt(KEY_SERVER_STATUS_TEXT, mServerStatusText);\r
          outState.putInt(KEY_SERVER_STATUS_ICON, mServerStatusIcon);\r
          outState.putBoolean(KEY_SERVER_VALID, mServerIsValid);\r
@@ -364,9 +454,11 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          if (mAccount != null) {\r
              outState.putParcelable(KEY_ACCOUNT, mAccount);\r
          }\r
          if (mAccount != null) {\r
              outState.putParcelable(KEY_ACCOUNT, mAccount);\r
          }\r
+        outState.putString(AccountAuthenticator.KEY_AUTH_TOKEN_TYPE, mAuthTokenType);\r
          \r
          // refresh button enabled\r
          \r
          // refresh button enabled\r
-        outState.putBoolean(KEY_REFRESH_BUTTON_ENABLED, mRefreshButtonEnabled);\r
+        outState.putBoolean(KEY_REFRESH_BUTTON_ENABLED, (mRefreshButton.getVisibility() == View.VISIBLE));\r
+        \r
  \r
      }\r
  \r
  \r
      }\r
  \r
@@ -395,13 +487,17 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
      @Override\r
      protected void onResume() {\r
          super.onResume();\r
      @Override\r
      protected void onResume() {\r
          super.onResume();\r
-        // the state of mOAuth2Check is automatically recovered between configuration changes, but not before onCreate() finishes; so keep the next lines here\r
-        changeViewByOAuth2Check(mOAuth2Check.isChecked());  \r
-        if (mAction == ACTION_UPDATE_TOKEN && mJustCreated) {\r
-            if (mOAuth2Check.isChecked())\r
-                Toast.makeText(this, R.string.auth_expired_oauth_token_toast, Toast.LENGTH_LONG).show();\r
-            else\r
-                Toast.makeText(this, R.string.auth_expired_basic_auth_toast, Toast.LENGTH_LONG).show();\r
+        if (mAction == ACTION_UPDATE_TOKEN && mJustCreated && getIntent().getBooleanExtra(EXTRA_ENFORCED_UPDATE, false)) {\r
+            if (AccountTypeUtils.getAuthTokenTypeAccessToken(MainApp.getAccountType()).equals(mAuthTokenType)) {\r
+                //Toast.makeText(this, R.string.auth_expired_oauth_token_toast, Toast.LENGTH_LONG).show();\r
+                showAuthMessage(getString(R.string.auth_expired_oauth_token_toast));\r
+            } else if (AccountTypeUtils.getAuthTokenTypeSamlSessionCookie(MainApp.getAccountType()).equals(mAuthTokenType)) {\r
+                //Toast.makeText(this, R.string.auth_expired_saml_sso_token_toast, Toast.LENGTH_LONG).show();\r
+                showAuthMessage(getString(R.string.auth_expired_saml_sso_token_toast));\r
+            } else {\r
+                //Toast.makeText(this, R.string.auth_expired_basic_auth_toast, Toast.LENGTH_LONG).show();\r
+                showAuthMessage(getString(R.string.auth_expired_basic_auth_toast));\r
+            }\r
          }\r
  \r
          if (mNewCapturedUriFromOAuth2Redirection != null) {\r
          }\r
  \r
          if (mNewCapturedUriFromOAuth2Redirection != null) {\r
@@ -409,6 +505,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          }\r
  \r
          mJustCreated = false;\r
          }\r
  \r
          mJustCreated = false;\r
+        \r
      }\r
  \r
  \r
      }\r
  \r
  \r
@@ -430,7 +527,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
                  getString(R.string.oauth2_grant_type),\r
                  queryParameters);\r
          //WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(getString(R.string.oauth2_url_endpoint_access)), getApplicationContext());\r
                  getString(R.string.oauth2_grant_type),\r
                  queryParameters);\r
          //WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(getString(R.string.oauth2_url_endpoint_access)), getApplicationContext());\r
-        WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(mOAuthTokenEndpointText.getText().toString().trim()), getApplicationContext());\r
+        WebdavClient client = OwnCloudClientFactory.createOwnCloudClient(Uri.parse(mOAuthTokenEndpointText.getText().toString().trim()), getApplicationContext(), true);\r
          operation.execute(client, this, mHandler);\r
      }\r
  \r
          operation.execute(client, this, mHandler);\r
      }\r
  \r
@@ -443,9 +540,6 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          if (view.getId() == R.id.hostUrlInput) {   \r
              if (!hasFocus) {\r
                  onUrlInputFocusLost((TextView) view);\r
          if (view.getId() == R.id.hostUrlInput) {   \r
              if (!hasFocus) {\r
                  onUrlInputFocusLost((TextView) view);\r
-                if (!mServerIsValid) {\r
-                    showRefreshButton();\r
-                }\r
              }\r
              else {\r
                  hideRefreshButton();\r
              }\r
              else {\r
                  hideRefreshButton();\r
@@ -473,6 +567,9 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              checkOcServer();\r
          } else {\r
              mOkButton.setEnabled(mServerIsValid);\r
              checkOcServer();\r
          } else {\r
              mOkButton.setEnabled(mServerIsValid);\r
+            if (!mServerIsValid) {\r
+                showRefreshButton();\r
+            }\r
          }\r
      }\r
  \r
          }\r
      }\r
  \r
@@ -494,7 +591,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              mServerStatusIcon = R.drawable.progress_small;\r
              showServerStatus();\r
              mOcServerChkOperation = new  OwnCloudServerCheckOperation(uri, this);\r
              mServerStatusIcon = R.drawable.progress_small;\r
              showServerStatus();\r
              mOcServerChkOperation = new  OwnCloudServerCheckOperation(uri, this);\r
-            WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(uri), this);\r
+            WebdavClient client = OwnCloudClientFactory.createOwnCloudClient(Uri.parse(uri), this, true);\r
              mOperationThread = mOcServerChkOperation.execute(client, this, mHandler);\r
          } else {\r
              mServerStatusText = 0;\r
              mOperationThread = mOcServerChkOperation.execute(client, this, mHandler);\r
          } else {\r
              mServerStatusText = 0;\r
@@ -594,9 +691,10 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              return;\r
          }\r
  \r
              return;\r
          }\r
  \r
-        if (mOAuth2Check.isChecked()) {\r
+        if (AccountTypeUtils.getAuthTokenTypeAccessToken(MainApp.getAccountType()).equals(mAuthTokenType)) {\r
              startOauthorization();\r
              startOauthorization();\r
-\r
+        } else if (AccountTypeUtils.getAuthTokenTypeSamlSessionCookie(MainApp.getAccountType()).equals(mAuthTokenType)) { \r
+            startSamlBasedFederatedSingleSignOnAuthorization();\r
          } else {\r
              checkBasicAuthorization();\r
          }\r
          } else {\r
              checkBasicAuthorization();\r
          }\r
@@ -609,7 +707,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
       */\r
      private void checkBasicAuthorization() {\r
          /// get the path to the root folder through WebDAV from the version server\r
       */\r
      private void checkBasicAuthorization() {\r
          /// get the path to the root folder through WebDAV from the version server\r
-        String webdav_path = AccountUtils.getWebdavPath(mDiscoveredVersion, false);\r
+        String webdav_path = AccountUtils.getWebdavPath(mDiscoveredVersion, mAuthTokenType);\r
  \r
          /// get basic credentials entered by user\r
          String username = mUsernameInput.getText().toString();\r
  \r
          /// get basic credentials entered by user\r
          String username = mUsernameInput.getText().toString();\r
@@ -620,7 +718,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
  \r
          /// test credentials accessing the root folder\r
          mAuthCheckOperation = new  ExistenceCheckOperation("", this, false);\r
  \r
          /// test credentials accessing the root folder\r
          mAuthCheckOperation = new  ExistenceCheckOperation("", this, false);\r
-        WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(mHostBaseUrl + webdav_path), this);\r
+        WebdavClient client = OwnCloudClientFactory.createOwnCloudClient(Uri.parse(mHostBaseUrl + webdav_path), this, true);\r
          client.setBasicCredentials(username, password);\r
          mOperationThread = mAuthCheckOperation.execute(client, this, mHandler);\r
      }\r
          client.setBasicCredentials(username, password);\r
          mOperationThread = mAuthCheckOperation.execute(client, this, mHandler);\r
      }\r
@@ -635,6 +733,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          mAuthStatusIcon = R.drawable.progress_small;\r
          mAuthStatusText = R.string.oauth_login_connection;\r
          showAuthStatus();\r
          mAuthStatusIcon = R.drawable.progress_small;\r
          mAuthStatusText = R.string.oauth_login_connection;\r
          showAuthStatus();\r
+        \r
  \r
          // GET AUTHORIZATION request\r
          //Uri uri = Uri.parse(getString(R.string.oauth2_url_endpoint_auth));\r
  \r
          // GET AUTHORIZATION request\r
          //Uri uri = Uri.parse(getString(R.string.oauth2_url_endpoint_auth));\r
@@ -653,6 +752,27 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
  \r
  \r
      /**\r
  \r
  \r
      /**\r
+     * Starts the Web Single Sign On flow to get access to the root folder\r
+     * in the server.\r
+     */\r
+    private void startSamlBasedFederatedSingleSignOnAuthorization() {\r
+        // be gentle with the user\r
+        mAuthStatusIcon = R.drawable.progress_small;\r
+        mAuthStatusText = R.string.auth_connecting_auth_server;\r
+        showAuthStatus();\r
+        showDialog(DIALOG_LOGIN_PROGRESS);\r
+        \r
+        /// get the path to the root folder through WebDAV from the version server\r
+        String webdav_path = AccountUtils.getWebdavPath(mDiscoveredVersion, mAuthTokenType);\r
+\r
+        /// test credentials accessing the root folder\r
+        mAuthCheckOperation = new  ExistenceCheckOperation("", this, false);\r
+        WebdavClient client = OwnCloudClientFactory.createOwnCloudClient(Uri.parse(mHostBaseUrl + webdav_path), this, false);\r
+        mOperationThread = mAuthCheckOperation.execute(client, this, mHandler);\r
+      \r
+    }\r
+\r
+    /**\r
       * Callback method invoked when a RemoteOperation executed by this Activity finishes.\r
       * \r
       * Dispatches the operation flow to the right method.\r
       * Callback method invoked when a RemoteOperation executed by this Activity finishes.\r
       * \r
       * Dispatches the operation flow to the right method.\r
@@ -667,10 +787,42 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              onGetOAuthAccessTokenFinish((OAuth2GetAccessToken)operation, result);\r
  \r
          } else if (operation instanceof ExistenceCheckOperation)  {\r
              onGetOAuthAccessTokenFinish((OAuth2GetAccessToken)operation, result);\r
  \r
          } else if (operation instanceof ExistenceCheckOperation)  {\r
-            onAuthorizationCheckFinish((ExistenceCheckOperation)operation, result);\r
-\r
+            if (AccountTypeUtils.getAuthTokenTypeSamlSessionCookie(MainApp.getAccountType()).equals(mAuthTokenType)) {\r
+                onSamlBasedFederatedSingleSignOnAuthorizationStart(operation, result);\r
+                \r
+            } else {\r
+                onAuthorizationCheckFinish((ExistenceCheckOperation)operation, result);\r
+            }\r
          }\r
      }\r
          }\r
      }\r
+    \r
+    \r
+    private void onSamlBasedFederatedSingleSignOnAuthorizationStart(RemoteOperation operation, RemoteOperationResult result) {\r
+        try {\r
+            dismissDialog(DIALOG_LOGIN_PROGRESS);\r
+        } catch (IllegalArgumentException e) {\r
+            // NOTHING TO DO ; can't find out what situation that leads to the exception in this code, but user logs signal that it happens\r
+        }\r
+        
+        //if (result.isTemporalRedirection() && result.isIdPRedirection()) {\r
+        if (result.isIdPRedirection()) {
+            String url = result.getRedirectedLocation();\r
+            String targetUrl = mHostBaseUrl + AccountUtils.getWebdavPath(mDiscoveredVersion, mAuthTokenType);\r
+            \r
+            // Show dialog\r
+            mSamlDialog = SamlWebViewDialog.newInstance(url, targetUrl);            \r
+            mSamlDialog.show(getSupportFragmentManager(), TAG_SAML_DIALOG);\r
+            \r
+            mAuthStatusIcon = 0;\r
+            mAuthStatusText = 0;\r
+            \r
+        } else {\r
+            mAuthStatusIcon = R.drawable.common_error;\r
+            mAuthStatusText = R.string.auth_unsupported_auth_method;\r
+            \r
+        }\r
+        showAuthStatus();\r
+    }\r
  \r
  \r
      /**\r
  \r
  \r
      /**\r
@@ -735,7 +887,6 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              }\r
  \r
          }\r
              }\r
  \r
          }\r
-        Log_OC.d(TAG, "URL Normalize " + url);\r
          return (url != null ? url : "");\r
      }\r
  \r
          return (url != null ? url : "");\r
      }\r
  \r
@@ -895,6 +1046,12 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          case OAUTH2_ERROR_ACCESS_DENIED:\r
              mAuthStatusText = R.string.auth_oauth_error_access_denied;\r
              break;\r
          case OAUTH2_ERROR_ACCESS_DENIED:\r
              mAuthStatusText = R.string.auth_oauth_error_access_denied;\r
              break;\r
+        case ACCOUNT_NOT_NEW:\r
+            mAuthStatusText = R.string.auth_account_not_new;\r
+            break;\r
+        case ACCOUNT_NOT_THE_SAME:\r
+            mAuthStatusText = R.string.auth_account_not_the_same;\r
+            break;\r
          case UNHANDLED_HTTP_CODE:\r
          case UNKNOWN_ERROR:\r
              mAuthStatusText = R.string.auth_unknown_error_title;\r
          case UNHANDLED_HTTP_CODE:\r
          case UNKNOWN_ERROR:\r
              mAuthStatusText = R.string.auth_unknown_error_title;\r
@@ -920,17 +1077,17 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              // NOTHING TO DO ; can't find out what situation that leads to the exception in this code, but user logs signal that it happens\r
          }\r
  \r
              // NOTHING TO DO ; can't find out what situation that leads to the exception in this code, but user logs signal that it happens\r
          }\r
  \r
-        String webdav_path = AccountUtils.getWebdavPath(mDiscoveredVersion, true);\r
+        String webdav_path = AccountUtils.getWebdavPath(mDiscoveredVersion, mAuthTokenType);\r
          if (result.isSuccess() && webdav_path != null) {\r
              /// be gentle with the user\r
              showDialog(DIALOG_LOGIN_PROGRESS);\r
  \r
              /// time to test the retrieved access token on the ownCloud server\r
          if (result.isSuccess() && webdav_path != null) {\r
              /// be gentle with the user\r
              showDialog(DIALOG_LOGIN_PROGRESS);\r
  \r
              /// time to test the retrieved access token on the ownCloud server\r
-            mOAuthAccessToken = ((OAuth2GetAccessToken)operation).getResultTokenMap().get(OAuth2Constants.KEY_ACCESS_TOKEN);\r
-            Log_OC.d(TAG, "Got ACCESS TOKEN: " + mOAuthAccessToken);\r
+            mAuthToken = ((OAuth2GetAccessToken)operation).getResultTokenMap().get(OAuth2Constants.KEY_ACCESS_TOKEN);\r
+            Log_OC.d(TAG, "Got ACCESS TOKEN: " + mAuthToken);\r
              mAuthCheckOperation = new ExistenceCheckOperation("", this, false);\r
              mAuthCheckOperation = new ExistenceCheckOperation("", this, false);\r
-            WebdavClient client = OwnCloudClientUtils.createOwnCloudClient(Uri.parse(mHostBaseUrl + webdav_path), this);\r
-            client.setBearerCredentials(mOAuthAccessToken);\r
+            WebdavClient client = OwnCloudClientFactory.createOwnCloudClient(Uri.parse(mHostBaseUrl + webdav_path), this, true);\r
+            client.setBearerCredentials(mAuthToken);\r
              mAuthCheckOperation.execute(client, this, mHandler);\r
  \r
          } else {\r
              mAuthCheckOperation.execute(client, this, mHandler);\r
  \r
          } else {\r
@@ -959,14 +1116,17 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          if (result.isSuccess()) {\r
              Log_OC.d(TAG, "Successful access - time to save the account");\r
  \r
          if (result.isSuccess()) {\r
              Log_OC.d(TAG, "Successful access - time to save the account");\r
  \r
+            boolean success = false;\r
              if (mAction == ACTION_CREATE) {\r
              if (mAction == ACTION_CREATE) {\r
-                createAccount();\r
+                success = createAccount();\r
  \r
              } else {\r
  \r
              } else {\r
-                updateToken();\r
+                success = updateToken();\r
              }\r
  \r
              }\r
  \r
-            finish();\r
+            if (success) {\r
+                finish();\r
+            }\r
  \r
          } else if (result.isServerFail() || result.isException()) {\r
              /// if server fail or exception in authorization, the UI is updated as when a server check failed\r
  \r
          } else if (result.isServerFail() || result.isException()) {\r
              /// if server fail or exception in authorization, the UI is updated as when a server check failed\r
@@ -999,6 +1159,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
              showAuthStatus();\r
              Log_OC.d(TAG, "Access failed: " + result.getLogMessage());\r
          }\r
              showAuthStatus();\r
              Log_OC.d(TAG, "Access failed: " + result.getLogMessage());\r
          }\r
+\r
      }\r
  \r
  \r
      }\r
  \r
  \r
@@ -1006,20 +1167,39 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
       * Sets the proper response to get that the Account Authenticator that started this activity saves \r
       * a new authorization token for mAccount.\r
       */\r
       * Sets the proper response to get that the Account Authenticator that started this activity saves \r
       * a new authorization token for mAccount.\r
       */\r
-    private void updateToken() {\r
+    private boolean updateToken() {\r
          Bundle response = new Bundle();\r
          response.putString(AccountManager.KEY_ACCOUNT_NAME, mAccount.name);\r
          response.putString(AccountManager.KEY_ACCOUNT_TYPE, mAccount.type);\r
          Bundle response = new Bundle();\r
          response.putString(AccountManager.KEY_ACCOUNT_NAME, mAccount.name);\r
          response.putString(AccountManager.KEY_ACCOUNT_TYPE, mAccount.type);\r
-        boolean isOAuth = mOAuth2Check.isChecked();\r
-        if (isOAuth) {\r
-            response.putString(AccountManager.KEY_AUTHTOKEN, mOAuthAccessToken);\r
+        \r
+        if (AccountTypeUtils.getAuthTokenTypeAccessToken(MainApp.getAccountType()).equals(mAuthTokenType)) { \r
+            response.putString(AccountManager.KEY_AUTHTOKEN, mAuthToken);\r
              // the next line is necessary; by now, notifications are calling directly to the AuthenticatorActivity to update, without AccountManager intervention\r
              // the next line is necessary; by now, notifications are calling directly to the AuthenticatorActivity to update, without AccountManager intervention\r
-            mAccountMgr.setAuthToken(mAccount, AccountAuthenticator.AUTH_TOKEN_TYPE_ACCESS_TOKEN, mOAuthAccessToken);\r
+            mAccountMgr.setAuthToken(mAccount, mAuthTokenType, mAuthToken);\r
+            \r
+        } else if (AccountTypeUtils.getAuthTokenTypeSamlSessionCookie(MainApp.getAccountType()).equals(mAuthTokenType)) {\r
+            String username = getUserNameForSamlSso();\r
+            if (!mUsernameInput.getText().toString().equals(username)) {\r
+                // fail - not a new account, but an existing one; disallow\r
+                RemoteOperationResult result = new RemoteOperationResult(ResultCode.ACCOUNT_NOT_THE_SAME); \r
+                updateAuthStatusIconAndText(result);\r
+                showAuthStatus();\r
+                Log_OC.d(TAG, result.getLogMessage());\r
+                \r
+                return false;\r
+            }\r
+            \r
+            response.putString(AccountManager.KEY_AUTHTOKEN, mAuthToken);\r
+            // the next line is necessary; by now, notifications are calling directly to the AuthenticatorActivity to update, without AccountManager intervention\r
+            mAccountMgr.setAuthToken(mAccount, mAuthTokenType, mAuthToken);\r
+            \r
          } else {\r
              response.putString(AccountManager.KEY_AUTHTOKEN, mPasswordInput.getText().toString());\r
              mAccountMgr.setPassword(mAccount, mPasswordInput.getText().toString());\r
          }\r
          setAccountAuthenticatorResult(response);\r
          } else {\r
              response.putString(AccountManager.KEY_AUTHTOKEN, mPasswordInput.getText().toString());\r
              mAccountMgr.setPassword(mAccount, mPasswordInput.getText().toString());\r
          }\r
          setAccountAuthenticatorResult(response);\r
+        \r
+        return true;\r
      }\r
  \r
  \r
      }\r
  \r
  \r
@@ -1030,59 +1210,88 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
       * \r
       * TODO Decide how to name the OAuth accounts\r
       */\r
       * \r
       * TODO Decide how to name the OAuth accounts\r
       */\r
-    private void createAccount() {\r
+    private boolean createAccount() {\r
          /// create and save new ownCloud account\r
          /// create and save new ownCloud account\r
-        boolean isOAuth = mOAuth2Check.isChecked();\r
+        boolean isOAuth = AccountTypeUtils.getAuthTokenTypeAccessToken(MainApp.getAccountType()).equals(mAuthTokenType);\r
+        boolean isSaml =  AccountTypeUtils.getAuthTokenTypeSamlSessionCookie(MainApp.getAccountType()).equals(mAuthTokenType);\r
  \r
          Uri uri = Uri.parse(mHostBaseUrl);\r
          String username = mUsernameInput.getText().toString().trim();\r
  \r
          Uri uri = Uri.parse(mHostBaseUrl);\r
          String username = mUsernameInput.getText().toString().trim();\r
-        if (isOAuth) {\r
+        if (isSaml) {\r
+            username = getUserNameForSamlSso();\r
+            \r
+        } else if (isOAuth) {\r
              username = "OAuth_user" + (new java.util.Random(System.currentTimeMillis())).nextLong();\r
          }            \r
          String accountName = username + "@" + uri.getHost();\r
          if (uri.getPort() >= 0) {\r
              accountName += ":" + uri.getPort();\r
          }\r
              username = "OAuth_user" + (new java.util.Random(System.currentTimeMillis())).nextLong();\r
          }            \r
          String accountName = username + "@" + uri.getHost();\r
          if (uri.getPort() >= 0) {\r
              accountName += ":" + uri.getPort();\r
          }\r
-        mAccount = new Account(accountName, AccountAuthenticator.ACCOUNT_TYPE);\r
-        if (isOAuth) {\r
-            mAccountMgr.addAccountExplicitly(mAccount, "", null);  // with our implementation, the password is never input in the app\r
+        mAccount = new Account(accountName, MainApp.getAccountType());\r
+        if (AccountUtils.exists(mAccount, getApplicationContext())) {\r
+            // fail - not a new account, but an existing one; disallow\r
+            RemoteOperationResult result = new RemoteOperationResult(ResultCode.ACCOUNT_NOT_NEW); \r
+            updateAuthStatusIconAndText(result);\r
+            showAuthStatus();\r
+            Log_OC.d(TAG, result.getLogMessage());\r
+            return false;\r
+            \r
          } else {\r
          } else {\r
-            mAccountMgr.addAccountExplicitly(mAccount, mPasswordInput.getText().toString(), null);\r
-        }\r
-\r
-        /// add the new account as default in preferences, if there is none already\r
-        Account defaultAccount = AccountUtils.getCurrentOwnCloudAccount(this);\r
-        if (defaultAccount == null) {\r
-            SharedPreferences.Editor editor = PreferenceManager\r
-                    .getDefaultSharedPreferences(this).edit();\r
-            editor.putString("select_oc_account", accountName);\r
-            editor.commit();\r
+        \r
+            if (isOAuth || isSaml) {\r
+                mAccountMgr.addAccountExplicitly(mAccount, "", null);  // with external authorizations, the password is never input in the app\r
+            } else {\r
+                mAccountMgr.addAccountExplicitly(mAccount, mPasswordInput.getText().toString(), null);\r
+            }\r
+    \r
+            /// add the new account as default in preferences, if there is none already\r
+            Account defaultAccount = AccountUtils.getCurrentOwnCloudAccount(this);\r
+            if (defaultAccount == null) {\r
+                SharedPreferences.Editor editor = PreferenceManager\r
+                        .getDefaultSharedPreferences(this).edit();\r
+                editor.putString("select_oc_account", accountName);\r
+                editor.commit();\r
+            }\r
+    \r
+            /// prepare result to return to the Authenticator\r
+            //  TODO check again what the Authenticator makes with it; probably has the same effect as addAccountExplicitly, but it's not well done\r
+            final Intent intent = new Intent();       \r
+            intent.putExtra(AccountManager.KEY_ACCOUNT_TYPE,    MainApp.getAccountType());\r
+            intent.putExtra(AccountManager.KEY_ACCOUNT_NAME,    mAccount.name);\r
+            /*if (!isOAuth)\r
+                intent.putExtra(AccountManager.KEY_AUTHTOKEN,   MainApp.getAccountType()); */\r
+            intent.putExtra(AccountManager.KEY_USERDATA,        username);\r
+            if (isOAuth || isSaml) {\r
+                mAccountMgr.setAuthToken(mAccount, mAuthTokenType, mAuthToken);\r
+            }\r
+            /// add user data to the new account; TODO probably can be done in the last parameter addAccountExplicitly, or in KEY_USERDATA\r
+            mAccountMgr.setUserData(mAccount, OwnCloudAccount.Constants.KEY_OC_VERSION,    mDiscoveredVersion.toString());\r
+            mAccountMgr.setUserData(mAccount, OwnCloudAccount.Constants.KEY_OC_BASE_URL,   mHostBaseUrl);\r
+            if (isSaml) {\r
+                mAccountMgr.setUserData(mAccount, OwnCloudAccount.Constants.KEY_SUPPORTS_SAML_WEB_SSO, "TRUE"); \r
+            } else if (isOAuth) {\r
+                mAccountMgr.setUserData(mAccount, OwnCloudAccount.Constants.KEY_SUPPORTS_OAUTH2, "TRUE");  \r
+            }\r
+    \r
+            setAccountAuthenticatorResult(intent.getExtras());\r
+            setResult(RESULT_OK, intent);\r
+    \r
+            return true;\r
          }\r
          }\r
+    }\r
  \r
  \r
-        /// prepare result to return to the Authenticator\r
-        //  TODO check again what the Authenticator makes with it; probably has the same effect as addAccountExplicitly, but it's not well done\r
-        final Intent intent = new Intent();       \r
-        intent.putExtra(AccountManager.KEY_ACCOUNT_TYPE,    AccountAuthenticator.ACCOUNT_TYPE);\r
-        intent.putExtra(AccountManager.KEY_ACCOUNT_NAME,    mAccount.name);\r
-        if (!isOAuth)\r
-            intent.putExtra(AccountManager.KEY_AUTHTOKEN,   AccountAuthenticator.ACCOUNT_TYPE); // TODO check this; not sure it's right; maybe\r
-        intent.putExtra(AccountManager.KEY_USERDATA,        username);\r
-        if (isOAuth) {\r
-            mAccountMgr.setAuthToken(mAccount, AccountAuthenticator.AUTH_TOKEN_TYPE_ACCESS_TOKEN, mOAuthAccessToken);\r
+    \r
+    private String getUserNameForSamlSso() {\r
+        if (mAuthToken != null) {\r
+            String [] cookies = mAuthToken.split(";");\r
+            for (int i=0; i<cookies.length; i++) {\r
+                if (cookies[i].startsWith(KEY_OC_USERNAME_EQUALS )) {\r
+                    String value = Uri.decode(cookies[i].substring(KEY_OC_USERNAME_EQUALS.length()));\r
+                    return value;\r
+                }\r
+            }\r
          }\r
          }\r
-        /// add user data to the new account; TODO probably can be done in the last parameter addAccountExplicitly, or in KEY_USERDATA\r
-        mAccountMgr.setUserData(mAccount, AccountAuthenticator.KEY_OC_VERSION,    mDiscoveredVersion.toString());\r
-        mAccountMgr.setUserData(mAccount, AccountAuthenticator.KEY_OC_BASE_URL,   mHostBaseUrl);\r
-        if (isOAuth)\r
-            mAccountMgr.setUserData(mAccount, AccountAuthenticator.KEY_SUPPORTS_OAUTH2, "TRUE");  // TODO this flag should be unnecessary\r
-\r
-        setAccountAuthenticatorResult(intent.getExtras());\r
-        setResult(RESULT_OK, intent);\r
-\r
-        /// immediately request for the synchronization of the new account\r
-        Bundle bundle = new Bundle();\r
-        bundle.putBoolean(ContentResolver.SYNC_EXTRAS_MANUAL, true);\r
-        ContentResolver.requestSync(mAccount, AccountAuthenticator.AUTHORITY, bundle);\r
+        return "";\r
      }\r
  \r
  \r
      }\r
  \r
  \r
@@ -1185,7 +1394,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
       * @param view      'Account register' button\r
       */\r
      public void onRegisterClick(View view) {\r
       * @param view      'Account register' button\r
       */\r
      public void onRegisterClick(View view) {\r
-        Intent register = new Intent(Intent.ACTION_VIEW, Uri.parse(getString(R.string.url_account_register)));\r
+        Intent register = new Intent(Intent.ACTION_VIEW, Uri.parse(getString(R.string.welcome_link_url)));\r
          setResult(RESULT_CANCELED);\r
          startActivity(register);\r
      }\r
          setResult(RESULT_CANCELED);\r
          startActivity(register);\r
      }\r
@@ -1227,21 +1436,11 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
  \r
  \r
      private void showRefreshButton() {\r
  \r
  \r
      private void showRefreshButton() {\r
-        mHostUrlInput.setCompoundDrawablesWithIntrinsicBounds(0, 0, R.drawable.ic_action_refresh_black, 0);\r
-        mRefreshButtonEnabled = true;\r
-        \r
-        if (!mHostUrlInputEnabled){\r
-           mCheckServerButton.setVisibility(View.VISIBLE); \r
-        }\r
+        mRefreshButton.setVisibility(View.VISIBLE);\r
      }\r
  \r
      private void hideRefreshButton() {\r
      }\r
  \r
      private void hideRefreshButton() {\r
-        mHostUrlInput.setCompoundDrawablesWithIntrinsicBounds(0, 0, 0, 0);\r
-        mRefreshButtonEnabled = false;\r
-        \r
-        if (!mHostUrlInputEnabled){\r
-            mCheckServerButton.setVisibility(View.INVISIBLE); \r
-        }\r
+        mRefreshButton.setVisibility(View.GONE);\r
      }\r
  \r
      /**\r
      }\r
  \r
      /**\r
@@ -1251,7 +1450,7 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
       * \r
       * @param view      Refresh 'button'\r
       */\r
       * \r
       * @param view      Refresh 'button'\r
       */\r
-    public void onRefreshClick() {\r
+    public void onRefreshClick(View view) {\r
          checkOcServer();\r
      }\r
      \r
          checkOcServer();\r
      }\r
      \r
@@ -1281,38 +1480,48 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
       * @param view      'View password' 'button'\r
       */\r
      public void onCheckClick(View view) {\r
       * @param view      'View password' 'button'\r
       */\r
      public void onCheckClick(View view) {\r
-        CheckBox oAuth2Check = (CheckBox)view;      \r
-        changeViewByOAuth2Check(oAuth2Check.isChecked());\r
-\r
+        CheckBox oAuth2Check = (CheckBox)view;\r
+        if (oAuth2Check.isChecked()) {\r
+            mAuthTokenType = AccountTypeUtils.getAuthTokenTypeAccessToken(MainApp.getAccountType());\r
+        } else {\r
+            mAuthTokenType = AccountTypeUtils.getAuthTokenTypePass(MainApp.getAccountType());\r
+        }\r
+        adaptViewAccordingToAuthenticationMethod();\r
      }\r
  \r
      }\r
  \r
+    \r
      /**\r
      /**\r
-     * Changes the visibility of input elements depending upon the kind of authorization\r
-     * chosen by the user: basic or OAuth\r
-     * \r
-     * @param checked       'True' when OAuth is selected.\r
+     * Changes the visibility of input elements depending on\r
+     * the current authorization method.\r
       */\r
       */\r
-    public void changeViewByOAuth2Check(Boolean checked) {\r
-\r
-        if (checked) {\r
+    private void adaptViewAccordingToAuthenticationMethod () {\r
+        if (AccountTypeUtils.getAuthTokenTypeAccessToken(MainApp.getAccountType()).equals(mAuthTokenType)) {\r
+            // OAuth 2 authorization\r
              mOAuthAuthEndpointText.setVisibility(View.VISIBLE);\r
              mOAuthTokenEndpointText.setVisibility(View.VISIBLE);\r
              mUsernameInput.setVisibility(View.GONE);\r
              mPasswordInput.setVisibility(View.GONE);\r
              mOAuthAuthEndpointText.setVisibility(View.VISIBLE);\r
              mOAuthTokenEndpointText.setVisibility(View.VISIBLE);\r
              mUsernameInput.setVisibility(View.GONE);\r
              mPasswordInput.setVisibility(View.GONE);\r
+            \r
+        } else if (AccountTypeUtils.getAuthTokenTypeSamlSessionCookie(MainApp.getAccountType()).equals(mAuthTokenType)) {\r
+            // SAML-based web Single Sign On\r
+            mOAuthAuthEndpointText.setVisibility(View.GONE);\r
+            mOAuthTokenEndpointText.setVisibility(View.GONE);\r
+            mUsernameInput.setVisibility(View.GONE);\r
+            mPasswordInput.setVisibility(View.GONE);\r
          } else {\r
          } else {\r
+            // basic HTTP authorization\r
              mOAuthAuthEndpointText.setVisibility(View.GONE);\r
              mOAuthTokenEndpointText.setVisibility(View.GONE);\r
              mUsernameInput.setVisibility(View.VISIBLE);\r
              mPasswordInput.setVisibility(View.VISIBLE);\r
              mOAuthAuthEndpointText.setVisibility(View.GONE);\r
              mOAuthTokenEndpointText.setVisibility(View.GONE);\r
              mUsernameInput.setVisibility(View.VISIBLE);\r
              mPasswordInput.setVisibility(View.VISIBLE);\r
-        }     \r
-\r
-    }    \r
-\r
+        }\r
+    }\r
+    \r
      /**\r
       * Called from SslValidatorDialog when a new server certificate was correctly saved.\r
       */\r
      public void onSavedCertificate() {\r
      /**\r
       * Called from SslValidatorDialog when a new server certificate was correctly saved.\r
       */\r
      public void onSavedCertificate() {\r
-        mOperationThread = mOcServerChkOperation.retry(this, mHandler);                \r
+        checkOcServer();\r
      }\r
  \r
      /**\r
      }\r
  \r
      /**\r
@@ -1328,15 +1537,20 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
      /**\r
       *  Called when the 'action' button in an IME is pressed ('enter' in software keyboard).\r
       * \r
      /**\r
       *  Called when the 'action' button in an IME is pressed ('enter' in software keyboard).\r
       * \r
-     *  Used to trigger the authorization check when the user presses 'enter' after writing the password.\r
+     *  Used to trigger the authentication check when the user presses 'enter' after writing the password, \r
+     *  or to throw the server test when the only field on screen is the URL input field.\r
       */\r
      @Override\r
      public boolean onEditorAction(TextView inputField, int actionId, KeyEvent event) {\r
       */\r
      @Override\r
      public boolean onEditorAction(TextView inputField, int actionId, KeyEvent event) {\r
-        if (inputField != null && inputField.equals(mPasswordInput) && \r
-                actionId == EditorInfo.IME_ACTION_DONE) {\r
+        if (actionId == EditorInfo.IME_ACTION_DONE && inputField != null && inputField.equals(mPasswordInput)) {\r
              if (mOkButton.isEnabled()) {\r
                  mOkButton.performClick();\r
              }\r
              if (mOkButton.isEnabled()) {\r
                  mOkButton.performClick();\r
              }\r
+            \r
+        } else if (actionId == EditorInfo.IME_ACTION_NEXT && inputField != null && inputField.equals(mHostUrlInput)) {\r
+            if (AccountTypeUtils.getAuthTokenTypeSamlSessionCookie(MainApp.getAccountType()).equals(mAuthTokenType)) {\r
+                checkOcServer();\r
+            }\r
          }\r
          return false;   // always return false to grant that the software keyboard is hidden anyway\r
      }\r
          }\r
          return false;   // always return false to grant that the software keyboard is hidden anyway\r
      }\r
@@ -1374,4 +1588,69 @@ implements  OnRemoteOperationListener, OnSslValidatorListener, OnFocusChangeList
          public abstract boolean onDrawableTouch(final MotionEvent event);\r
      }\r
  \r
          public abstract boolean onDrawableTouch(final MotionEvent event);\r
      }\r
  \r
+\r
+    public void onSamlDialogSuccess(String sessionCookie){\r
+        mAuthToken = sessionCookie;\r
+        \r
+        if (sessionCookie != null && sessionCookie.length() > 0) {\r
+            mAuthToken = sessionCookie;\r
+            boolean success = false;\r
+            if (mAction == ACTION_CREATE) {\r
+                success = createAccount();\r
+        \r
+            } else {\r
+                success = updateToken();\r
+            }\r
+            if (success) {\r
+                finish();\r
+            }\r
+        }\r
+\r
+            \r
+    }\r
+\r
+\r
+    @Override\r
+    public void onSsoFinished(String sessionCookies) {\r
+        //Toast.makeText(this, "got cookies: " + sessionCookie, Toast.LENGTH_LONG).show();\r
+\r
+        if (sessionCookies != null && sessionCookies.length() > 0) {\r
+            Log_OC.d(TAG, "Successful SSO - time to save the account");\r
+            onSamlDialogSuccess(sessionCookies);\r
+            Fragment fd = getSupportFragmentManager().findFragmentByTag(TAG_SAML_DIALOG);\r
+            if (fd != null && fd instanceof SherlockDialogFragment) {\r
+                Dialog d = ((SherlockDialogFragment)fd).getDialog();\r
+                if (d != null && d.isShowing()) {\r
+                    d.dismiss();\r
+                }\r
+            }\r
+\r
+        } else { \r
+            // TODO - show fail\r
+            Log_OC.d(TAG, "SSO failed");\r
+        }\r
+    \r
+    }\r
+    \r
+    /** Show auth_message \r
+     * \r
+     * @param message\r
+     */\r
+    private void showAuthMessage(String message) {\r
+       mAuthMessage.setVisibility(View.VISIBLE);\r
+       mAuthMessage.setText(message);\r
+    }\r
+    \r
+    private void hideAuthMessage() {\r
+        mAuthMessage.setVisibility(View.GONE);\r
+    }\r
+\r
+    @Override\r
+    public boolean onTouchEvent(MotionEvent event) {\r
+        if (AccountTypeUtils.getAuthTokenTypeSamlSessionCookie(MainApp.getAccountType()).equals(mAuthTokenType) &&\r
+                mHostUrlInput.hasFocus() && event.getAction() == MotionEvent.ACTION_DOWN) {\r
+            checkOcServer();\r
+        }\r
+        return super.onTouchEvent(event);\r
+    }\r
  }\r
  }\r