net/android/http_android_auth_negotiate.h - Issue 1128043007: Support Kerberos on Android

Side by Side Diff: net/android/http_android_auth_negotiate.h

Issue 1128043007: Support Kerberos on Android (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Fix mistake in previous Windows fixes Created 5 years, 7 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch

OLD	NEW
(Empty)
	1 // Copyright 2015 The Chromium Authors. All rights reserved.

	2 // Use of this source code is governed by a BSD-style license that can be

	3 // found in the LICENSE file.

	4

	5 #ifndef NET_HTTP_HTTP_ANDROID_AUTH_NEGOTIATE_H_

	6 #define NET_HTTP_HTTP_ANDROID_AUTH_NEGOTIATE_H_

	7

	8 #include <jni.h>

	9 #include <string>

	10

	11 #include "base/android/jni_android.h"

	12 #include "base/macros.h"

	13
	Bernhard Bauer 2015/06/01 14:51:13 Remove empty line? Remove empty line? aberent 2015/06/10 15:48:56 Done. Show quoted text On 2015/06/01 14:51:13, Bernhard Bauer wrote: > Remove empty line? Done.
	14 #include "net/base/completion_callback.h"

	15 #include "net/http/http_auth.h"

	16

	17 namespace net {

	18

	19 class HttpAuthChallengeTokenizer;

	20

	21 namespace android {

	22

	23 class NET_EXPORT_PRIVATE AndroidAuthNegotiate {

	24 public:

	25 AndroidAuthNegotiate(const std::string& account_type,

	26 const std::string& scheme);

	27 ~AndroidAuthNegotiate();

	28 bool Init();

	29

	30 bool NeedsIdentity() const;

	31

	32 bool AllowsExplicitCredentials() const;

	33

	34 HttpAuth::AuthorizationResult ParseChallenge(

	35 net::HttpAuthChallengeTokenizer* tok);

	36

	37 // Generates an authentication token.

	38 // The return value is an error code. If it's not \|OK\|, the value of

	39 // \|*auth_token\| is unspecified.

	40 // The function may return \|IO_PENDING\|, and call \|callback\| on completion.
	Bernhard Bauer 2015/05/15 15:06:16 Do we want to mention that the callback will not e Do we want to mention that the callback will not end up being called if this object is destroyed before? Also, now that doing authentication might not lock up the IO thread anymore, do we have to deal with more than one request calling this method before the initial one is finished? aberent 2015/05/18 13:45:28 Other similar examples typically don't. I would te Show quoted text On 2015/05/15 at 15:06:16, Bernhard Bauer wrote: > Do we want to mention that the callback will not end up being called if this object is destroyed before? Other similar examples typically don't. I would tend to assume this. See, for example, Resolver in https://cs.corp.google.com/#clankium/src/net/dns/host_resolver.h&q=host_resol.... Is there any particular reason for concern in this case? Show quoted text > > Also, now that doing authentication might not lock up the IO thread anymore, do we have to deal with more than one request calling this method before the initial one is finished? Other stages of the authentication process are already potentially asynchronous (for example resolving the canonical name), The existing code already deals with this, and which stage failed to complete synchronously isn't visible outside HttpAuthHandlerNegotiate. I don't think making this step (potentially) asynchronous introduces any new problems. Bernhard Bauer 2015/05/18 15:11:53 Not in this particular case, but it's good to be a Show quoted text On 2015/05/18 13:45:28, aberent wrote: > On 2015/05/15 at 15:06:16, Bernhard Bauer wrote: > > Do we want to mention that the callback will not end up being called if this > object is destroyed before? > > Other similar examples typically don't. I would tend to assume this. See, for > example, Resolver in > https://cs.corp.google.com/#clankium/src/net/dns/host_resolver.h&q=host_resol.... > > Is there any particular reason for concern in this case? Not in this particular case, but it's good to be able to guarantee a caller that the callback they pass only has to be valid as long as the object lives (which is necessary for using base::Unretained, for example). I like the way the comment on HostResolver is phrased, BTW. Can we use that here as well? Show quoted text > > > > Also, now that doing authentication might not lock up the IO thread anymore, > do we have to deal with more than one request calling this method before the > initial one is finished? > > Other stages of the authentication process are already potentially asynchronous > (for example resolving the canonical name), The existing code already deals with > this, and which stage failed to complete synchronously isn't visible outside > HttpAuthHandlerNegotiate. I don't think making this step (potentially) > asynchronous introduces any new problems. > OK, good. Can we add a DCHECK just to make sure? aberent 2015/05/18 17:07:30 Done. Show quoted text On 2015/05/18 at 15:11:53, Bernhard Bauer wrote: > On 2015/05/18 13:45:28, aberent wrote: > > On 2015/05/15 at 15:06:16, Bernhard Bauer wrote: > > > Do we want to mention that the callback will not end up being called if this > > object is destroyed before? > > > > Other similar examples typically don't. I would tend to assume this. See, for > > example, Resolver in > > https://cs.corp.google.com/#clankium/src/net/dns/host_resolver.h&q=host_resol.... > > > > Is there any particular reason for concern in this case? > > Not in this particular case, but it's good to be able to guarantee a caller that the callback they pass only has to be valid as long as the object lives (which is necessary for using base::Unretained, for example). > > I like the way the comment on HostResolver is phrased, BTW. Can we use that here as well? Done. Show quoted text > > > > > > > Also, now that doing authentication might not lock up the IO thread anymore, > > do we have to deal with more than one request calling this method before the > > initial one is finished? > > > > Other stages of the authentication process are already potentially asynchronous > > (for example resolving the canonical name), The existing code already deals with > > this, and which stage failed to complete synchronously isn't visible outside > > HttpAuthHandlerNegotiate. I don't think making this step (potentially) > > asynchronous introduces any new problems. > > > > OK, good. Can we add a DCHECK just to make sure? No obvious way in AndroidAuthNegotiate. HttpAuthHandlerNegotiate (which is the owner and only caller of AndroidAuthNegotiate) already contains DCHECKs that will fail if callers attempt to start a second authentication with the same object. Bernhard Bauer 2015/06/01 14:51:13 You could add a DCHECK(completion_callback_.is_nul Show quoted text On 2015/05/18 17:07:30, aberent wrote: > On 2015/05/18 at 15:11:53, Bernhard Bauer wrote: > > On 2015/05/18 13:45:28, aberent wrote: > > > On 2015/05/15 at 15:06:16, Bernhard Bauer wrote: > > > > Do we want to mention that the callback will not end up being called if > this > > > object is destroyed before? > > > > > > Other similar examples typically don't. I would tend to assume this. See, > for > > > example, Resolver in > > > > https://cs.corp.google.com/#clankium/src/net/dns/host_resolver.h&q=host_resol.... > > > > > > Is there any particular reason for concern in this case? > > > > Not in this particular case, but it's good to be able to guarantee a caller > that the callback they pass only has to be valid as long as the object lives > (which is necessary for using base::Unretained, for example). > > > > I like the way the comment on HostResolver is phrased, BTW. Can we use that > here as well? > > Done. > > > > > > > > > > Also, now that doing authentication might not lock up the IO thread > anymore, > > > do we have to deal with more than one request calling this method before the > > > initial one is finished? > > > > > > Other stages of the authentication process are already potentially > asynchronous > > > (for example resolving the canonical name), The existing code already deals > with > > > this, and which stage failed to complete synchronously isn't visible outside > > > HttpAuthHandlerNegotiate. I don't think making this step (potentially) > > > asynchronous introduces any new problems. > > > > > > > OK, good. Can we add a DCHECK just to make sure? > No obvious way in AndroidAuthNegotiate. HttpAuthHandlerNegotiate (which is the > owner and only caller of AndroidAuthNegotiate) already contains DCHECKs that > will fail if callers attempt to start a second authentication with the same > object. You could add a DCHECK(completion_callback_.is_null()) and reset the callback after running it. But if you feel that the existing DCHECK in the caller is sufficient, that's fine with me. aberent 2015/06/10 15:48:56 Done, together with a couple of other checks. Show quoted text On 2015/06/01 14:51:13, Bernhard Bauer wrote: > On 2015/05/18 17:07:30, aberent wrote: > > On 2015/05/18 at 15:11:53, Bernhard Bauer wrote: > > > On 2015/05/18 13:45:28, aberent wrote: > > > > On 2015/05/15 at 15:06:16, Bernhard Bauer wrote: > > > > > Do we want to mention that the callback will not end up being called if > > this > > > > object is destroyed before? > > > > > > > > Other similar examples typically don't. I would tend to assume this. See, > > for > > > > example, Resolver in > > > > > > > https://cs.corp.google.com/#clankium/src/net/dns/host_resolver.h&q=host_resol.... > > > > > > > > Is there any particular reason for concern in this case? > > > > > > Not in this particular case, but it's good to be able to guarantee a caller > > that the callback they pass only has to be valid as long as the object lives > > (which is necessary for using base::Unretained, for example). > > > > > > I like the way the comment on HostResolver is phrased, BTW. Can we use that > > here as well? > > > > Done. > > > > > > > > > > > > > Also, now that doing authentication might not lock up the IO thread > > anymore, > > > > do we have to deal with more than one request calling this method before > the > > > > initial one is finished? > > > > > > > > Other stages of the authentication process are already potentially > > asynchronous > > > > (for example resolving the canonical name), The existing code already > deals > > with > > > > this, and which stage failed to complete synchronously isn't visible > outside > > > > HttpAuthHandlerNegotiate. I don't think making this step (potentially) > > > > asynchronous introduces any new problems. > > > > > > > > > > OK, good. Can we add a DCHECK just to make sure? > > No obvious way in AndroidAuthNegotiate. HttpAuthHandlerNegotiate (which is the > > owner and only caller of AndroidAuthNegotiate) already contains DCHECKs that > > will fail if callers attempt to start a second authentication with the same > > object. > > You could add a DCHECK(completion_callback_.is_null()) and reset the callback > after running it. But if you feel that the existing DCHECK in the caller is > sufficient, that's fine with me. Done, together with a couple of other checks.
	41 // \|auth_token\| must remain valid until the callback has been called.

	42 // \|spn\| is the Service Principal Name of the server that the token is

	43 // being generated for.

	44 // If this is the first round of a multiple round scheme, credentials are

	45 // obtained using \|*credentials\|. If \|credentials\| is NULL, the default

	46 // credentials are used instead.

	47 int GenerateAuthToken(const AuthCredentials* credentials,

	48 const std::string& spn,

	49 std::string* auth_token,

	50 const net::CompletionCallback& callback);

	51

	52 // Delegation is allowed on the Kerberos ticket. This allows certain servers

	53 // to act as the user, such as an IIS server retrieiving data from a

	54 // Kerberized MSSQL server.

	55 void Delegate();

	56 void SetResult(JNIEnv* env, jobject obj, bool result, jstring token);

	57

	58 private:

	59 std::string account_type_;

	60 std::string scheme_;

	61 bool can_delegate_;

	62 bool first_challenge_;

	63 std::string server_auth_token_;

	64 std::string* auth_token_;

	65 base::android::ScopedJavaGlobalRef<jobject> java_authenticator_;

	66 net::CompletionCallback completion_callback_;

	67

	68 DISALLOW_COPY_AND_ASSIGN(AndroidAuthNegotiate);

	69 };

	70

	71 bool RegisterHttpNegotiateAuthenticator(JNIEnv* env);

	72

	73 } // namespace android

	74 } // namespace net

	75

	76 #endif // NET_HTTP_HTTP_ANDROID_AUTH_NEGOTIATE_H_

OLD	NEW

« no previous file with comments | « net/BUILD.gn ('k') | net/android/http_android_auth_negotiate.cc » ('j') | net/http/http_auth_gssapi_posix.cc » ('J')