Extension API enterprise.platformKeys.

chrome/browser/chromeos/platform_keys/platform_keys.h

+// Copyright 2014 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#ifndef CHROME_BROWSER_CHROMEOS_PLATFORM_KEYS_PLATFORM_KEYS_H_
+#define CHROME_BROWSER_CHROMEOS_PLATFORM_KEYS_PLATFORM_KEYS_H_
+
+#include <string>
+#include <vector>
+
+#include "base/callback_forward.h"
+#include "base/macros.h"
+#include "base/memory/ref_counted.h"
+#include "base/memory/scoped_ptr.h"
+
+class Profile;
+
+namespace net {
+class X509Certificate;
+typedef std::vector<scoped_refptr<X509Certificate> > CertificateList;
+}
+
+namespace chromeos {
+
+namespace platform_keys {
+
+typedef base::Callback<
+    void(const std::string& public_key_str, const std::string& error_message)>
+    GenerateKeyCallback;
+
+// Generates a RSA key with |modulus_length|. |token_id| is currently ignored,
+// instead always the user token associated to |profile| is used. |callback|
+// will be called back with the DER enoding of the SubjectPublicKeyInfo of the
+// generated key or an error message.
+void GenerateRSAKey(const std::string& token_id,
+                    int modulus_length,
+                    const GenerateKeyCallback& callback,
+                    Profile* profile);
+
+typedef base::Callback<void(const std::string& signature,
+                            const std::string& error_message)> SignCallback;
+
+// Signs |data| with the private key matching |public_key|, if that key is
+// stored in the given token. |token_id| is currently ignored, instead always
+// the user token associated to |profile| is used. |public_key| must be the DER
+// encoding of a SubjectPublicKeyInfo. |callback| will be called back with the
+// signature or an error message.
+// Currently supports RSA keys only.
+void Sign(const std::string& token_id,
+          const std::string& public_key,
+          const std::string& data,
+          const SignCallback& callback,
+          Profile* profile);
+
+typedef base::Callback<void(scoped_ptr<net::CertificateList> certs,
+                            const std::string& error_message)>
+    GetCertificatesCallback;
+
+// Returns the list of all client certificates available from the given
+// token. |token_id| is currently ignored, instead always the user token
+// associated to |profile| is used. |callback| will be called back with the list
+// of the available certificates in DER encoding or an error message.
+void GetCertificates(const std::string& token_id,
+                     const GetCertificatesCallback& callback,
+                     Profile* profile);
+
+typedef base::Callback<void(const std::string& error_message)>
+    ImportCertificateCallback;
+
+// Imports |certificate| to the given token if the certified key is already
+// stored in this token. |token_id| is currently ignored, instead always the
+// user token associated to |profile| is used.|callback| will be called back
+// when the import is finished, possibly with an error message.
+void ImportCertificate(const std::string& token_id,
+                       scoped_refptr<net::X509Certificate> certificate,
+                       const ImportCertificateCallback& callback,
+                       Profile* profile);
+
+typedef base::Callback<void(const std::string& error_message)>
+    RemoveCertificateCallback;
+
+// Removes |certificate| from the given token if present. |token_id| is
+// currently ignored, instead always the user token associated to |profile| is
+// used. |callback| will be called back when the removal is finished, possibly
+// with an error message.
+void RemoveCertificate(const std::string& token_id,
+                       scoped_refptr<net::X509Certificate> certificate,
+                       const RemoveCertificateCallback& callback,
+                       Profile* profile);
+
+}  // namespace  platform_keys
+
+}  // namespace chromeos
+
+#endif  // CHROME_BROWSER_CHROMEOS_PLATFORM_KEYS_PLATFORM_KEYS_H_