blob: b9c2447c7f48cdb384b37ccbbdf8355c0f8b8825 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
|
// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef CONTENT_BROWSER_SSL_SSL_CLIENT_AUTH_HANDLER_H_
#define CONTENT_BROWSER_SSL_SSL_CLIENT_AUTH_HANDLER_H_
#include "base/basictypes.h"
#include "base/callback.h"
#include "base/macros.h"
#include "base/memory/ref_counted.h"
#include "base/memory/weak_ptr.h"
#include "content/common/content_export.h"
#include "content/public/browser/browser_thread.h"
#include "net/ssl/ssl_cert_request_info.h"
namespace net {
class ClientCertStore;
class URLRequest;
class X509Certificate;
} // namespace net
namespace content {
// This class handles the approval and selection of a certificate for SSL client
// authentication by the user. Should only be used on the IO thread. If the
// SSLClientAuthHandler is destroyed before the certificate is selected, the
// selection is canceled and the delegate never called.
class SSLClientAuthHandler {
public:
// Delegate interface for SSLClientAuthHandler. Method implementations may
// delete the handler when called.
class CONTENT_EXPORT Delegate {
public:
Delegate() {}
// Called to continue the request with |cert|. |cert| may be nullptr.
virtual void ContinueWithCertificate(net::X509Certificate* cert) = 0;
// Called to cancel the certificate selection and abort the request.
virtual void CancelCertificateSelection() = 0;
protected:
virtual ~Delegate() {}
private:
DISALLOW_COPY_AND_ASSIGN(Delegate);
};
// Creates a new SSLClientAuthHandler. The caller ensures that the handler
// does not outlive |request| or |delegate|.
SSLClientAuthHandler(scoped_ptr<net::ClientCertStore> client_cert_store,
net::URLRequest* request,
net::SSLCertRequestInfo* cert_request_info,
Delegate* delegate);
~SSLClientAuthHandler();
// Selects a certificate and resumes the URL request with that certificate.
void SelectCertificate();
// Called to continue the request associated with |handler| using |cert|. This
// is static to avoid deleting |handler| while it is on the stack.
static void ContinueWithCertificate(
const base::WeakPtr<SSLClientAuthHandler>& handler,
net::X509Certificate* cert);
// Called to abort the request associated with |handler|. This is static to
// avoid deleting |handler| while it is on the stack.
static void CancelCertificateSelection(
const base::WeakPtr<SSLClientAuthHandler>& handler);
private:
class Core;
// Called when |core_| is done retrieving the cert list.
void DidGetClientCerts();
// A reference-counted core so the ClientCertStore may outlive
// SSLClientAuthHandler if the handler is destroyed while an operation on the
// ClientCertStore is in progress.
scoped_refptr<Core> core_;
// The net::URLRequest that triggered this client auth.
net::URLRequest* request_;
// The certs to choose from.
scoped_refptr<net::SSLCertRequestInfo> cert_request_info_;
// The delegate to call back with the result.
Delegate* delegate_;
base::WeakPtrFactory<SSLClientAuthHandler> weak_factory_;
DISALLOW_COPY_AND_ASSIGN(SSLClientAuthHandler);
};
} // namespace content
#endif // CONTENT_BROWSER_SSL_SSL_CLIENT_AUTH_HANDLER_H_
|
