Index: net/http/http_auth_handler_negotiate_parse.cc |
diff --git a/net/http/http_auth_handler_negotiate_parse.cc b/net/http/http_auth_handler_negotiate_parse.cc |
new file mode 100644 |
index 0000000000000000000000000000000000000000..e4e71137cfd315297c674b350dc26eb6d0d21f20 |
--- /dev/null |
+++ b/net/http/http_auth_handler_negotiate_parse.cc |
@@ -0,0 +1,59 @@ |
+// Copyright 2015 The Chromium Authors. All rights reserved. |
+// Use of this source code is governed by a BSD-style license that can be |
+// found in the LICENSE file. |
+ |
+#include "net/http/http_auth_handler_negotiate_parse.h" |
+ |
+#include "base/base64.h" |
+#include "base/strings/string_util.h" |
+#include "net/http/http_auth_challenge_tokenizer.h" |
+ |
+namespace net { |
+ |
+namespace { |
+ |
+bool schemeValid(const std::string& scheme, |
Ryan Sleevi
2015/06/29 13:56:45
STYLE: This is not a valid function name (drop-cap
Ryan Sleevi
2015/06/29 13:56:45
document
aberent
2015/07/02 21:13:36
Done.
aberent
2015/07/02 21:13:36
Done.
|
+ HttpAuthChallengeTokenizer* challenge) { |
+ // There is no guarantee that challenge->scheme() is valid ASCII, but |
+ // LowerCaseEqualsASCII will do the right thing even if it isn't. |
+ return base::LowerCaseEqualsASCII(challenge->scheme(), |
Ryan Sleevi
2015/06/29 13:56:45
DESIGN: Should you be using base::strcasecmp / str
aberent
2015/07/02 21:13:36
embedded NULs are actually a good reason not to us
|
+ base::StringToLowerASCII(scheme).c_str()); |
Ryan Sleevi
2015/06/29 13:56:45
DESIGN: Should you be passing scheme as std::strin
aberent
2015/07/02 21:13:36
Might be better if it were changed everywhere, but
|
+} |
+ |
+} // namespace |
+ |
+HttpAuth::AuthorizationResult ParseFirstNegotiateChallenge( |
+ std::string scheme, |
+ HttpAuthChallengeTokenizer* challenge) { |
+ // Verify the challenge's auth-scheme. |
+ if (!schemeValid(scheme, challenge)) |
+ return HttpAuth::AUTHORIZATION_RESULT_INVALID; |
+ |
+ std::string encoded_auth_token = challenge->base64_param(); |
+ if (encoded_auth_token.empty()) { |
+ return HttpAuth::AUTHORIZATION_RESULT_ACCEPT; |
+ } else { |
Ryan Sleevi
2015/06/29 13:56:45
no else after return
aberent
2015/07/02 21:13:36
Done.
|
+ return HttpAuth::AUTHORIZATION_RESULT_INVALID; |
+ } |
+} |
+ |
+HttpAuth::AuthorizationResult ParseAnotherNegotiateChallenge( |
+ std::string scheme, |
+ HttpAuthChallengeTokenizer* challenge, |
+ std::string* encoded_token, |
+ std::string* decoded_token) { |
+ // Verify the challenge's auth-scheme. |
+ if (!schemeValid(scheme, challenge)) |
+ return HttpAuth::AUTHORIZATION_RESULT_INVALID; |
+ |
+ *encoded_token = challenge->base64_param(); |
+ if (encoded_token->empty()) |
+ return HttpAuth::AUTHORIZATION_RESULT_REJECT; |
+ |
+ // Make sure the additional token is base64 encoded. |
+ if (!base::Base64Decode(*encoded_token, decoded_token)) |
+ return HttpAuth::AUTHORIZATION_RESULT_INVALID; |
+ return HttpAuth::AUTHORIZATION_RESULT_ACCEPT; |
+} |
+ |
+} // namespace net |