chrome/common/extensions/api/certificate_provider.idl - Issue 2094333002: Implementation for chrome.certificateProvider.requestPin/stopPinRequest

Side by Side Diff: chrome/common/extensions/api/certificate_provider.idl

Issue 2094333002: Implementation for chrome.certificateProvider.requestPin/stopPinRequest (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Fixed compile error and removed duplicate method Created 4 years, 3 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch

« no previous file with comments | « chrome/browser/extensions/api/certificate_provider/certificate_provider_apitest.cc ('k') | chrome/test/data/extensions/api_test/certificate_provider/request_pin/basic.html » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

OLD	NEW
1 // Copyright 2015 The Chromium Authors. All rights reserved.	1 // Copyright 2015 The Chromium Authors. All rights reserved.

2 // Use of this source code is governed by a BSD-style license that can be	2 // Use of this source code is governed by a BSD-style license that can be

3 // found in the LICENSE file.	3 // found in the LICENSE file.

4	4

5 // Use this API to expose certificates to the platform which can use these	5 // Use this API to expose certificates to the platform which can use these

6 // certificates for TLS authentications.	6 // certificates for TLS authentications.

7 namespace certificateProvider {	7 namespace certificateProvider {

8 enum Hash {	8 enum Hash {

9 MD5_SHA1,	9 MD5_SHA1,

10 SHA1,	10 SHA1,

11 SHA256,	11 SHA256,

12 SHA384,	12 SHA384,

13 SHA512	13 SHA512

14 };	14 };

15	15

	16 enum PinRequestType {

	17 PIN,

	18 PUK

	19 };

	20

	21 enum PinRequestErrorType {

	22 INVALID_PIN,

	23 INVALID_PUK,

	24 MAX_ATTEMPTS_EXCEEDED,

	25 UNKNOWN_ERROR

	26 };

	27

16 [noinline_doc] dictionary CertificateInfo {	28 [noinline_doc] dictionary CertificateInfo {

17 // Must be the DER encoding of a X.509 certificate. Currently, only	29 // Must be the DER encoding of a X.509 certificate. Currently, only

18 // certificates of RSA keys are supported.	30 // certificates of RSA keys are supported.

19 ArrayBuffer certificate;	31 ArrayBuffer certificate;

20	32

21 // Must be set to all hashes supported for this certificate. This extension	33 // Must be set to all hashes supported for this certificate. This extension

22 // will only be asked for signatures of digests calculated with one of these	34 // will only be asked for signatures of digests calculated with one of these

23 // hash algorithms. This should be in order of decreasing hash preference.	35 // hash algorithms. This should be in order of decreasing hash preference.

24 Hash[] supportedHashes;	36 Hash[] supportedHashes;

25 };	37 };

26	38

27 [noinline_doc] dictionary SignRequest {	39 [noinline_doc] dictionary SignRequest {

	40 // The unique ID to be used by the extension should it need to call a method

	41 // that requires it, e.g. requestPin.

	42 long signRequestId;

	43

28 // The digest that must be signed.	44 // The digest that must be signed.

29 ArrayBuffer digest;	45 ArrayBuffer digest;

30	46

31 // Refers to the hash algorithm that was used to create <code>digest</code>.	47 // Refers to the hash algorithm that was used to create <code>digest</code>.

32 Hash hash;	48 Hash hash;

33	49

34 // The DER encoding of a X.509 certificate. The extension must sign	50 // The DER encoding of a X.509 certificate. The extension must sign

35 // <code>digest</code> using the associated private key.	51 // <code>digest</code> using the associated private key.

36 ArrayBuffer certificate;	52 ArrayBuffer certificate;

37 };	53 };

38	54

	55 dictionary RequestPinDetails {

	56 // The ID given by Chrome in SignRequest.

	57 long signRequestId;

	58

	59 // The type of code requested, PIN or PUK. Default is PIN.
	Devlin 2016/09/21 17:31:20 remove ', PIN or PUK' - this is implied by the enu remove ', PIN or PUK' - this is implied by the enum values. igorcov 2016/10/17 14:42:20 Done. Show quoted text On 2016/09/21 17:31:20, Devlin wrote: > remove ', PIN or PUK' - this is implied by the enum values. Done.
	60 PinRequestType? requestType;

	61

	62 // The error template displayed for user. This should be set if the previous
	Devlin 2016/09/21 17:31:20 display for -> displayed to the Also, what is an display for -> displayed to the Also, what is an error template? igorcov 2016/10/17 14:42:20 The error template is the text displayed in the di Show quoted text On 2016/09/21 17:31:20, Devlin wrote: > display for -> displayed to the > > Also, what is an error template? The error template is the text displayed in the dialog as an error with some possible variables to be filled like attempts_left. We defined the templates because don't want to allow the extensions to show any text they want as an error (for security reasons).
	63 // request failed, to notify the user of the failure reason.

	64 PinRequestErrorType? errorType;

	65

	66 // The number of attempts left. This is provided so that any UI can present

	67 // this information to the user. Chrome is not expected to enforce this,

	68 // instead stopPinRequest will be called with
	Devlin 2016/09/21 17:31:20 what will call stopPinRequest? what will call stopPinRequest? igorcov 2016/10/17 14:42:20 Extension is expected to make that call. Included Show quoted text On 2016/09/21 17:31:20, Devlin wrote: > what will call stopPinRequest? Extension is expected to make that call. Included this info in the comment.
	69 // errorType = MAX_ATTEMPTS_EXCEEDED when the number of pin requests is

	70 // exceeded.

	71 long? attemptsLeft;

	72 };

	73

	74 dictionary StopPinRequestDetails {

	75 // The ID given by Chrome in SignRequest.

	76 long signRequestId;

	77

	78 // The error template. If present it is displayed to user. Intended to

	79 // contain the reason for stopping the flow if it was caused by an error,

	80 // e.g. MAX_ATTEMPTS_EXCEEDED.

	81 PinRequestErrorType? errorType;

	82 };

	83

	84 dictionary PinResponseDetails {

	85 // The code provided by the user. Empty if user closed the dialog or some

	86 // other error occurred. If some error occurred, it will be provided using
	Devlin 2016/09/21 17:31:20 We typically don't explicitly document that runtim We typically don't explicitly document that runtime.lastError will be set, since that's the assumption. Also, this seems like a list that's doomed to get out of date with the rest of the code. I'd probably just remove this. igorcov 2016/10/17 14:42:20 Done. Show quoted text On 2016/09/21 17:31:20, Devlin wrote: > We typically don't explicitly document that runtime.lastError will be set, since > that's the assumption. Also, this seems like a list that's doomed to get out of > date with the rest of the code. I'd probably just remove this. Done.
	87 // chrome.runtime.lastError variable. The error can be:

	88 // OTHER_FLOW_IN_PROGRESS - A request PIN flow is ongoing already.

	89 // INVALID_ID - The value of signRequestId is invalid.

	90 // UNEXPECTED_ERROR - Some unexpected error occurred in the code.

	91 DOMString? userInput;

	92 };

	93

	94 // A callback called when the dialog gets resolved with the user input, or
	Devlin 2016/09/21 17:31:20 Callback types don't need documentation; their use Callback types don't need documentation; their use in the function is documentation itself. igorcov 2016/10/17 14:42:20 Done. Show quoted text On 2016/09/21 17:31:20, Devlin wrote: > Callback types don't need documentation; their use in the function is > documentation itself. Done.
	95 // when the dialog request finishes unsuccessfully (e.g. the dialog was

	96 // canceled by the user or was not allowed to be shown).

	97 callback RequestPinCallback = void (optional PinResponseDetails details);

	98

	99 // The callback to be used by Chrome to send to the extension the status from

	100 // their request to close PIN dialog for user.

	101 callback StopPinRequestCallback = void ();

	102

39 // The callback provided by the extension that Chrome uses to report back	103 // The callback provided by the extension that Chrome uses to report back

40 // rejected certificates. See <code>CertificatesCallback</code>.	104 // rejected certificates. See <code>CertificatesCallback</code>.

41 callback ResultCallback = void (ArrayBuffer[] rejectedCertificates);	105 callback ResultCallback = void (ArrayBuffer[] rejectedCertificates);

42	106

43 // If no error occurred, this function must be called with the signature of	107 // If no error occurred, this function must be called with the signature of

44 // the digest using the private key of the requested certificate.	108 // the digest using the private key of the requested certificate.

45 // For an RSA key, the signature must be a PKCS#1 signature. The extension	109 // For an RSA key, the signature must be a PKCS#1 signature. The extension

46 // is responsible for prepending the DigestInfo prefix and adding PKCS#1	110 // is responsible for prepending the DigestInfo prefix and adding PKCS#1

47 // padding. If an <code>MD5_SHA1</code> hash is to be signed, the extension	111 // padding. If an <code>MD5_SHA1</code> hash is to be signed, the extension

48 // must not prepend a DigestInfo prefix but only add PKCS#1 padding.	112 // must not prepend a DigestInfo prefix but only add PKCS#1 padding.

(...skipping 20 matching lines...) Expand all Loading...
69 // certificate provided by this extension in reply to an	133 // certificate provided by this extension in reply to an

70 // $(ref:onCertificatesRequested) event.	134 // $(ref:onCertificatesRequested) event.

71 // The extension must sign the data in <code>request</code> using the	135 // The extension must sign the data in <code>request</code> using the

72 // appropriate algorithm and private key and return it by calling	136 // appropriate algorithm and private key and return it by calling

73 // <code>reportCallback</code>. <code>reportCallback</code> must be called	137 // <code>reportCallback</code>. <code>reportCallback</code> must be called

74 // exactly once.	138 // exactly once.

75 // \|request\|: Contains the details about the sign request.	139 // \|request\|: Contains the details about the sign request.

76 static void onSignDigestRequested(SignRequest request,	140 static void onSignDigestRequested(SignRequest request,

77 SignCallback reportCallback);	141 SignCallback reportCallback);

78 };	142 };

	143

	144 interface Functions {

	145 // Requests the PIN from user. Only one ongoing request at a time is

	146 // allowed. The requests issued while other flow is ongoing are rejected.
	Devlin 2016/09/21 17:31:20 while other -> while another while other -> while another igorcov 2016/10/17 14:42:20 Done. Show quoted text On 2016/09/21 17:31:20, Devlin wrote: > while other -> while another Done.
	147 // It's extension's responsibility to try again later if other flow is in
	Devlin 2016/09/21 17:31:20 It's extension's -> It is the extension's if othe It's extension's -> It is the extension's if other -> if another igorcov 2016/10/17 14:42:20 Done. Show quoted text On 2016/09/21 17:31:20, Devlin wrote: > It's extension's -> It is the extension's > > if other -> if another Done.
	148 // progress.

	149 static void requestPin(RequestPinDetails details,

	150 RequestPinCallback callback);

	151

	152 // Stops the pin request started by $(ref:requestPin) function.
	Devlin 2016/09/21 17:31:20 by $ -> by the $ by $ -> by the $ igorcov 2016/10/17 14:42:20 Done. Show quoted text On 2016/09/21 17:31:20, Devlin wrote: > by $ -> by the $ Done.
	153 static void stopPinRequest(StopPinRequestDetails details,

	154 StopPinRequestCallback callback);

	155 };

79 };	156 };

OLD	NEW