1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
|
// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef NET_HTTP_PROXY_CLIENT_SOCKET_H_
#define NET_HTTP_PROXY_CLIENT_SOCKET_H_
#include <string>
#include "net/socket/ssl_client_socket.h"
#include "net/socket/stream_socket.h"
class GURL;
namespace net {
class HostPortPair;
class HttpAuthController;
class HttpStream;
class HttpResponseInfo;
class HttpRequestHeaders;
struct HttpRequestInfo;
class HttpAuthController;
class NET_EXPORT_PRIVATE ProxyClientSocket : public StreamSocket {
public:
ProxyClientSocket() {}
virtual ~ProxyClientSocket() {}
// Returns the HttpResponseInfo (including HTTP Headers) from
// the response to the CONNECT request.
virtual const HttpResponseInfo* GetConnectResponseInfo() const = 0;
// Transfers ownership of a newly created HttpStream to the caller
// which can be used to read the response body.
virtual HttpStream* CreateConnectResponseStream() = 0;
// Returns the HttpAuthController which can be used
// to interact with an HTTP Proxy Authorization Required (407) request.
virtual const scoped_refptr<HttpAuthController>& GetAuthController() const
= 0;
// If Connect (or its callback) returns PROXY_AUTH_REQUESTED, then
// credentials should be added to the HttpAuthController before calling
// RestartWithAuth. Not all ProxyClientSocket implementations will be
// restartable. Such implementations should disconnect themselves and
// return OK.
virtual int RestartWithAuth(const CompletionCallback& callback) = 0;
// Returns true of the connection to the proxy is using SPDY.
virtual bool IsUsingSpdy() const = 0;
// Returns the protocol negotiated with the proxy.
virtual NextProto GetProtocolNegotiated() const = 0;
protected:
// The HTTP CONNECT method for establishing a tunnel connection is documented
// in draft-luotonen-web-proxy-tunneling-01.txt and RFC 2817, Sections 5.2
// and 5.3.
static void BuildTunnelRequest(const HttpRequestInfo& request_info,
const HttpRequestHeaders& auth_headers,
const HostPortPair& endpoint,
std::string* request_line,
HttpRequestHeaders* request_headers);
// When an auth challenge (407 response) is received during tunnel
// construction/ this method should be called.
static int HandleProxyAuthChallenge(HttpAuthController* auth,
HttpResponseInfo* response,
const BoundNetLog& net_log);
// Logs (to the log and in a histogram) a blocked CONNECT response.
static void LogBlockedTunnelResponse(int http_response_code,
const GURL& url,
bool is_https_proxy);
// When a redirect (e.g. 302 response) is received during tunnel
// construction, this method should be called to strip everything
// but the Location header from the redirect response. If it returns
// false, the response should be discarded and tunnel construction should
// fail. |url| is for logging purposes.
static bool SanitizeProxyRedirect(HttpResponseInfo* response,
const GURL& url);
private:
DISALLOW_COPY_AND_ASSIGN(ProxyClientSocket);
};
} // namespace net
#endif // NET_HTTP_PROXY_CLIENT_SOCKET_H_
|
