Chromium Code Reviews| OLD | NEW |
|---|---|
| 1 // Copyright 2013 The Chromium Authors. All rights reserved. | 1 // Copyright 2013 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #ifndef NET_SSL_CLIENT_CERT_STORE_CHROMEOS_H_ | 5 #ifndef NET_SSL_CLIENT_CERT_STORE_CHROMEOS_H_ |
| 6 #define NET_SSL_CLIENT_CERT_STORE_CHROMEOS_H_ | 6 #define NET_SSL_CLIENT_CERT_STORE_CHROMEOS_H_ |
| 7 | 7 |
| 8 #include <string> | 8 #include <string> |
| 9 | 9 |
| 10 #include "crypto/scoped_nss_types.h" | 10 #include "base/memory/scoped_ptr.h" |
| 11 #include "net/cert/nss_profile_filter_chromeos.h" | |
| 12 #include "net/ssl/client_cert_store_nss.h" | 11 #include "net/ssl/client_cert_store_nss.h" |
| 13 | 12 |
| 14 namespace net { | 13 namespace net { |
| 15 | 14 |
| 15 class X509Certificate; | |
| 16 | |
| 16 class NET_EXPORT ClientCertStoreChromeOS : public ClientCertStoreNSS { | 17 class NET_EXPORT ClientCertStoreChromeOS : public ClientCertStoreNSS { |
| 17 public: | 18 public: |
| 18 // Constructs a ClientCertStore that will return client certs available on | 19 class CertFilter { |
| 19 // the user's private and public slots. If |use_system_slot| is true, certs on | 20 public: |
| 20 // the system slot will also be returned. | 21 virtual ~CertFilter() {} |
| 22 // Initializes this filter. Returns true if it finished initialization, | |
|
Ryan Sleevi
2014/10/29 23:48:08
nit: newline
pneubeck (no reviews)
2014/10/30 08:24:40
Done.
| |
| 23 // otherwise returns false and calls |callback| once the initialization is | |
| 24 // completed. | |
| 25 // Must be called at most once. | |
| 26 virtual bool Init(const base::Closure& callback) = 0; | |
| 27 | |
| 28 // Returns true if |cert| is allowed to be used as a client certificate | |
| 29 // (e.g. for a certain browser context or user). | |
| 30 // This is only called once initialization is finished, see Init(). | |
| 31 virtual bool IsCertAllowed( | |
| 32 const scoped_refptr<X509Certificate>& cert) const = 0; | |
| 33 }; | |
| 34 | |
| 35 // This ClientCertStore will createy a filter using |profile_filter_factory| | |
|
Ryan Sleevi
2014/10/29 23:48:08
nit: creaty -> create
This comment is no longer a
pneubeck (no reviews)
2014/10/30 08:24:40
Done.
| |
| 36 // and only return client certs that pass this filter. | |
| 21 ClientCertStoreChromeOS( | 37 ClientCertStoreChromeOS( |
| 22 bool use_system_slot, | 38 scoped_ptr<CertFilter> cert_filter, |
| 23 const std::string& username_hash, | |
| 24 const PasswordDelegateFactory& password_delegate_factory); | 39 const PasswordDelegateFactory& password_delegate_factory); |
| 25 virtual ~ClientCertStoreChromeOS(); | 40 virtual ~ClientCertStoreChromeOS(); |
| 26 | 41 |
| 27 // ClientCertStoreNSS: | 42 // ClientCertStoreNSS: |
| 28 virtual void GetClientCerts(const SSLCertRequestInfo& cert_request_info, | 43 virtual void GetClientCerts(const SSLCertRequestInfo& cert_request_info, |
| 29 CertificateList* selected_certs, | 44 CertificateList* selected_certs, |
| 30 const base::Closure& callback) override; | 45 const base::Closure& callback) override; |
| 31 | 46 |
| 32 protected: | 47 protected: |
| 33 // ClientCertStoreNSS: | 48 // ClientCertStoreNSS: |
| 34 virtual void GetClientCertsImpl(CERTCertList* cert_list, | 49 virtual void GetClientCertsImpl(CERTCertList* cert_list, |
| 35 const SSLCertRequestInfo& request, | 50 const SSLCertRequestInfo& request, |
| 36 bool query_nssdb, | 51 bool query_nssdb, |
| 37 CertificateList* selected_certs) override; | 52 CertificateList* selected_certs) override; |
| 38 | 53 |
| 39 private: | 54 private: |
| 40 void DidGetSystemAndPrivateSlot(const SSLCertRequestInfo* request, | 55 void CertFilterInitialized(const SSLCertRequestInfo* request, |
| 41 CertificateList* selected_certs, | 56 CertificateList* selected_certs, |
| 42 const base::Closure& callback, | 57 const base::Closure& callback); |
| 43 crypto::ScopedPK11Slot system_slot, | |
| 44 crypto::ScopedPK11Slot private_slot); | |
| 45 | 58 |
| 46 bool use_system_slot_; | 59 scoped_ptr<CertFilter> cert_filter_; |
| 47 std::string username_hash_; | |
| 48 NSSProfileFilterChromeOS profile_filter_; | |
| 49 | 60 |
| 50 DISALLOW_COPY_AND_ASSIGN(ClientCertStoreChromeOS); | 61 DISALLOW_COPY_AND_ASSIGN(ClientCertStoreChromeOS); |
| 51 }; | 62 }; |
| 52 | 63 |
| 53 } // namespace net | 64 } // namespace net |
| 54 | 65 |
| 55 #endif // NET_SSL_CLIENT_CERT_STORE_CHROMEOS_H_ | 66 #endif // NET_SSL_CLIENT_CERT_STORE_CHROMEOS_H_ |
| OLD | NEW |