Extension API enterprise.platformKeys.

chrome/browser/chromeos/platform_keys/platform_keys.h

Index: chrome/browser/chromeos/platform_keys/platform_keys.h
diff --git a/chrome/browser/chromeos/platform_keys/platform_keys.h b/chrome/browser/chromeos/platform_keys/platform_keys.h
new file mode 100644
index 0000000000000000000000000000000000000000..ac997a8662cc0a0b1660d2ce11543d3731ad87b4
--- /dev/null
+++ b/chrome/browser/chromeos/platform_keys/platform_keys.h
@@ -0,0 +1,95 @@
+// Copyright 2014 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#ifndef CHROME_BROWSER_CHROMEOS_PLATFORM_KEYS_PLATFORM_KEYS_H_
+#define CHROME_BROWSER_CHROMEOS_PLATFORM_KEYS_PLATFORM_KEYS_H_
+
+#include <string>
+#include <vector>
+
+#include "base/callback_forward.h"
+#include "base/macros.h"
+#include "base/memory/ref_counted.h"
+#include "base/memory/scoped_ptr.h"
+
+class Profile;
+
+namespace net {
+class X509Certificate;
+typedef std::vector<scoped_refptr<X509Certificate> > CertificateList;
+}
+
+namespace chromeos {
+
+namespace platform_keys {
+
+typedef base::Callback<
+    void(const std::string& public_key_str, const std::string& error_message)>
+    GenerateKeyCallback;
+
+// Generates a RSA key with |modulus_length|. |token_id| is currently ignored,
+// instead always the user token associated to |profile| is used. |callback|
+// will be called back with the DER enoding of the SubjectPublicKeyInfo of the
+// generated key or an error message.

[not at google - send to devlin, 2014/05/14 18:11:01]

maybe put the description of the arguments on the typedef?

it's the case that if |error_message| is non-empty then it's a failure? you
should say that.

same comment for everythng else in this file.

[pneubeck (no reviews), 2014/05/15 09:25:10]

Done.

+void GenerateRSAKey(const std::string& token_id,
+                    int modulus_length,
+                    const GenerateKeyCallback& callback,
+                    Profile* profile);
+
+typedef base::Callback<void(const std::string& signature,
+                            const std::string& error_message)> SignCallback;
+
+// Signs |data| with the private key matching |public_key|, if that key is
+// stored in the given token. |token_id| is currently ignored, instead always
+// the user token associated to |profile| is used. |public_key| must be the DER
+// encoding of a SubjectPublicKeyInfo. |callback| will be called back with the
+// signature or an error message.
+// Currently supports RSA keys only.
+void Sign(const std::string& token_id,
+          const std::string& public_key,
+          const std::string& data,
+          const SignCallback& callback,
+          Profile* profile);
+
+typedef base::Callback<void(scoped_ptr<net::CertificateList> certs,
+                            const std::string& error_message)>
+    GetCertificatesCallback;
+
+// Returns the list of all certificates with stored private key available from
+// the given token. |token_id| is currently ignored, instead always the user
+// token associated to |profile| is used. |callback| will be called back with
+// the list of the available certificates in DER encoding or an error message.
+void GetCertificates(const std::string& token_id,
+                     const GetCertificatesCallback& callback,
+                     Profile* profile);
+
+typedef base::Callback<void(const std::string& error_message)>
+    ImportCertificateCallback;
+
+// Imports |certificate| to the given token if the certified key is already
+// stored in this token. |token_id| is currently ignored, instead always the
+// user token associated to |profile| is used.|callback| will be called back
+// when the import is finished, possibly with an error message.
+void ImportCertificate(const std::string& token_id,
+                       scoped_refptr<net::X509Certificate> certificate,
+                       const ImportCertificateCallback& callback,
+                       Profile* profile);
+
+typedef base::Callback<void(const std::string& error_message)>
+    RemoveCertificateCallback;
+
+// Removes |certificate| from the given token if present. |token_id| is
+// currently ignored, instead always the user token associated to |profile| is
+// used. |callback| will be called back when the removal is finished, possibly
+// with an error message.
+void RemoveCertificate(const std::string& token_id,
+                       scoped_refptr<net::X509Certificate> certificate,
+                       const RemoveCertificateCallback& callback,
+                       Profile* profile);
+
+}  // namespace  platform_keys
+
+}  // namespace chromeos
+
+#endif  // CHROME_BROWSER_CHROMEOS_PLATFORM_KEYS_PLATFORM_KEYS_H_