| OLD | NEW |
|---|
| (Empty) | |
| 1 // Copyright 2013 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. |
| 4 |
| 5 #ifndef CHROME_BROWSER_CHROMEOS_POLICY_POLICY_CERT_SERVICE_H_ |
| 6 #define CHROME_BROWSER_CHROMEOS_POLICY_POLICY_CERT_SERVICE_H_ |
| 7 |
| 8 #include <vector> |
| 9 |
| 10 #include "base/basictypes.h" |
| 11 #include "base/compiler_specific.h" |
| 12 #include "base/memory/ref_counted.h" |
| 13 #include "base/memory/scoped_ptr.h" |
| 14 #include "base/memory/weak_ptr.h" |
| 15 #include "chrome/browser/chromeos/policy/user_network_configuration_updater.h" |
| 16 #include "components/browser_context_keyed_service/browser_context_keyed_service
.h" |
| 17 |
| 18 class PrefService; |
| 19 |
| 20 namespace net { |
| 21 class X509Certificate; |
| 22 typedef std::vector<scoped_refptr<X509Certificate> > CertificateList; |
| 23 } |
| 24 |
| 25 namespace policy { |
| 26 |
| 27 class PolicyCertVerifier; |
| 28 |
| 29 // This service is the counterpart of PolicyCertVerifier on the UI thread. It's |
| 30 // responsible for pushing the current list of trust anchors to the CertVerifier |
| 31 // and marking the profile's prefs if any of the trust anchors was used. |
| 32 // Except for unit tests, PolicyCertVerifier should only be created through this |
| 33 // class. |
| 34 class PolicyCertService |
| 35 : public BrowserContextKeyedService, |
| 36 public UserNetworkConfigurationUpdater::WebTrustedCertsObserver { |
| 37 public: |
| 38 PolicyCertService(UserNetworkConfigurationUpdater* net_conf_updater, |
| 39 PrefService* user_prefs); |
| 40 virtual ~PolicyCertService(); |
| 41 |
| 42 // Creates an associated PolicyCertVerifier. The returned object must only be |
| 43 // used on the IO thread and must outlive this object. |
| 44 scoped_ptr<PolicyCertVerifier> CreatePolicyCertVerifier(); |
| 45 |
| 46 // Returns true if the profile with |user_prefs| has used certificates |
| 47 // installed via policy to establish a secure connection before. This means |
| 48 // that it may have cached content from an untrusted source. |
| 49 bool UsedPolicyCertificates() const; |
| 50 |
| 51 // UserNetworkConfigurationUpdater::WebTrustedCertsObserver: |
| 52 virtual void OnTrustAnchorsChanged(const net::CertificateList& trust_anchors) |
| 53 OVERRIDE; |
| 54 |
| 55 // BrowserContextKeyedService: |
| 56 virtual void Shutdown() OVERRIDE; |
| 57 |
| 58 private: |
| 59 void SetUsedPolicyCertificatesOnce(); |
| 60 |
| 61 PolicyCertVerifier* cert_verifier_; |
| 62 UserNetworkConfigurationUpdater* net_conf_updater_; |
| 63 PrefService* user_prefs_; |
| 64 |
| 65 // Weak pointers to handle callbacks from PolicyCertVerifier on the IO thread. |
| 66 // The factory and the created WeakPtrs must only be used on the UI thread. |
| 67 base::WeakPtrFactory<PolicyCertService> weak_ptr_factory_; |
| 68 |
| 69 DISALLOW_COPY_AND_ASSIGN(PolicyCertService); |
| 70 }; |
| 71 |
| 72 } // namespace policy |
| 73 |
| 74 #endif // CHROME_BROWSER_CHROMEOS_POLICY_POLICY_CERT_SERVICE_H_ |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 24153012:
Fix cyclic dependency between ProfilePolicyConnector and PrefService. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src