Update chrome.identity API documentation to mention best practices.

This adds a tip on best practices to the documentation for getAuthToken, and also updates the tip on launchWebAuthFlow to correct an inaccuracy. BUG=372279 Review URL: https://codereview.chromium.org/305843003 git-svn-id: svn://svn.chromium.org/chrome/trunk/src@274184 0039d316-1c4b-4281-b951-d872f2087c98

Update chrome.identity API documentation to mention best practices.
This adds a tip on best practices to the documentation for getAuthToken, and also updates the tip on launchWebAuthFlow to correct an inaccuracy. BUG=372279 Review URL: https://codereview.chromium.org/305843003 git-svn-id: svn://svn.chromium.org/chrome/trunk/src@274184 0039d316-1c4b-4281-b951-d872f2087c98
b342daee · benwells@chromium.org · 71625337 · b342daee
Commit b342daee authored Jun 02, 2014 by benwells@chromium.org
Show whitespace changes
Inline Side-by-side

Showing with 10 additions and 4 deletions

chrome/common/extensions/api/identity.idl chrome/common/extensions/api/identity.idl +10 -4

No files found.
--- a/chrome/common/extensions/api/identity.idl
+++ b/chrome/common/extensions/api/identity.idl
@@ -62,9 +62,16 @@ namespace identity {
    // section of manifest.json</a>.
    //
    // The Identity API caches access tokens in memory, so it's ok to
-    // call <code>getAuthToken</code> any time a token is
+    // call <code>getAuthToken</code> non-interactively any time a token is
    // required. The token cache automatically handles expiration.
    //
+    // For a good user experience it is important interactive token requests are
+    // initiated by UI in your app explaining what the authorization is for.
+    // Failing to do this will cause your users to get authorization requests,
+    // or Chrome sign in screens if they are not signed in, with with no
+    // context. In particular, do not use <code>getAuthToken</code>
+    // interactively when your app is first launched.
+    //
    // |details| : Token options.
    // |callback| : Called with an OAuth2 access token as specified by the
    // manifest, or undefined if there was an error.
@@ -96,9 +103,8 @@ namespace identity {
    // For a good user experience it is important interactive auth flows are
    // initiated by UI in your app explaining what the authorization is for.
    // Failing to do this will cause your users to get authorization requests
-    // - or even Chrome sign in screens if they are not signed in - with
+    // with no context. In particular, do not launch an interactive auth flow
-    // no context. In particular, do not launch an interactive auth flow when
+    // when your app is first launched.
-    // your app is first launched.
    //
    // |details| : WebAuth flow options.
    // |callback| : Called with the URL redirected back to your application.