[net/http auth] Make HttpAuthHandler challenge handling asynchronous.

net/http/http_auth.h

 // Copyright (c) 2011 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #ifndef NET_HTTP_HTTP_AUTH_H_
 #define NET_HTTP_HTTP_AUTH_H_
 
 #include <set>
 #include <string>
 
@@ skipping 75 matching lines @@
     IDENT_SRC_DEFAULT_CREDENTIALS,
   };
 
   // Helper structure used by HttpNetworkTransaction to track the current
   // identity being used for authorization.
   struct Identity {
     Identity();
     ~Identity();
 
     IdentitySource source;
-    bool invalid;
+    bool invalid;  // TODO(asanka): Invert this.
     AuthCredentials credentials;
   };
 
   // Get the name of the header containing the auth challenge (either
   // WWW-Authenticate or Proxy-Authenticate).
   static std::string GetChallengeHeaderName(Target target);
 
   // Get the name of the header where the credentials go
   // (either Authorization or Proxy-Authorization).
   static std::string GetAuthorizationHeaderName(Target target);
 
   // Returns a string representation of a Target value that can be used in log
   // messages.
   static std::string GetAuthTargetString(Target target);
 
-  // Iterate through the challenge headers, and pick the best one that we
-  // support. Obtains the implementation class for handling the challenge, and
-  // passes it back in |*handler|. If no supported challenge was found,
-  // |*handler| is set to NULL.
-  //
-  // |disabled_schemes| is the set of schemes that we should not use.
-  //
-  // |origin| is used by the NTLM and Negotiation authentication scheme to
-  // construct the service principal name.  It is ignored by other schemes.
-  static void ChooseBestChallenge(
-      HttpAuthHandlerFactory* http_auth_handler_factory,
-      const HttpResponseHeaders* headers,
-      Target target,
-      const GURL& origin,
-      const HttpAuthSchemeSet& disabled_schemes,
-      const BoundNetLog& net_log,
-      scoped_ptr<HttpAuthHandler>* handler);
-
-  // Handle a 401/407 response from a server/proxy after a previous
-  // authentication attempt. For connection-based authentication schemes, the
-  // new response may be another round in a multi-round authentication sequence.
-  // For request-based schemes, a 401/407 response is typically treated like a
-  // rejection of the previous challenge, except in the Digest case when a
-  // "stale" attribute is present.
-  //
-  // |handler| must be non-NULL, and is the HttpAuthHandler from the previous
-  // authentication round.
-  //
-  // |headers| must be non-NULL and contain the new HTTP response.
-  //
-  // |target| specifies whether the authentication challenge response came
-  // from a server or a proxy.
-  //
-  // |disabled_schemes| are the authentication schemes to ignore.
-  //
-  // |challenge_used| is the text of the authentication challenge used in
-  // support of the returned AuthorizationResult. If no headers were used for
-  // the result (for example, all headers have unknown authentication schemes),
-  // the value is cleared.
-  static AuthorizationResult HandleChallengeResponse(
-      HttpAuthHandler* handler,
-      const HttpResponseHeaders* headers,
-      Target target,
-      const HttpAuthSchemeSet& disabled_schemes,
-      std::string* challenge_used);
-
   // RFC 7235 states that an authentication scheme is a case insensitive token.
   // This function checks whether |scheme| is a token AND is lowercase.
   static bool IsValidNormalizedScheme(const std::string& scheme);
 };
 
 }  // namespace net
 
 #endif  // NET_HTTP_HTTP_AUTH_H_