blob: 2bc359cd9a5f3a0c251bacf4281bc90d2d52c1ed [file] [log] [blame]
[email protected]e53c02322013-12-17 00:09:001// Copyright 2013 The Chromium Authors. All rights reserved.
2// Use of this source code is governed by a BSD-style license that can be
3// found in the LICENSE file.
4
5#ifndef NET_SSL_CLIENT_CERT_STORE_CHROMEOS_H_
6#define NET_SSL_CLIENT_CERT_STORE_CHROMEOS_H_
7
8#include <string>
9
pneubecka23ed1a2014-11-03 15:40:4210#include "base/memory/scoped_ptr.h"
[email protected]e53c02322013-12-17 00:09:0011#include "net/ssl/client_cert_store_nss.h"
12
13namespace net {
14
pneubecka23ed1a2014-11-03 15:40:4215class X509Certificate;
16
[email protected]e53c02322013-12-17 00:09:0017class NET_EXPORT ClientCertStoreChromeOS : public ClientCertStoreNSS {
18 public:
pneubecka23ed1a2014-11-03 15:40:4219 class CertFilter {
20 public:
21 virtual ~CertFilter() {}
22
23 // Initializes this filter. Returns true if it finished initialization,
24 // otherwise returns false and calls |callback| once the initialization is
25 // completed.
26 // Must be called at most once.
27 virtual bool Init(const base::Closure& callback) = 0;
28
29 // Returns true if |cert| is allowed to be used as a client certificate
30 // (e.g. for a certain browser context or user).
31 // This is only called once initialization is finished, see Init().
32 virtual bool IsCertAllowed(
33 const scoped_refptr<X509Certificate>& cert) const = 0;
34 };
35
36 // This ClientCertStore will return only client certs that pass the filter
37 // |cert_filter|.
[email protected]e53c02322013-12-17 00:09:0038 ClientCertStoreChromeOS(
pneubecka23ed1a2014-11-03 15:40:4239 scoped_ptr<CertFilter> cert_filter,
[email protected]e53c02322013-12-17 00:09:0040 const PasswordDelegateFactory& password_delegate_factory);
dcheng8ccc40c2015-01-23 01:47:5641 ~ClientCertStoreChromeOS() override;
[email protected]e53c02322013-12-17 00:09:0042
43 // ClientCertStoreNSS:
dcheng8ccc40c2015-01-23 01:47:5644 void GetClientCerts(const SSLCertRequestInfo& cert_request_info,
45 CertificateList* selected_certs,
46 const base::Closure& callback) override;
[email protected]e53c02322013-12-17 00:09:0047
48 protected:
49 // ClientCertStoreNSS:
dcheng8ccc40c2015-01-23 01:47:5650 void GetClientCertsImpl(CERTCertList* cert_list,
51 const SSLCertRequestInfo& request,
52 bool query_nssdb,
53 CertificateList* selected_certs) override;
[email protected]e53c02322013-12-17 00:09:0054
55 private:
pneubecka23ed1a2014-11-03 15:40:4256 void CertFilterInitialized(const SSLCertRequestInfo* request,
57 CertificateList* selected_certs,
58 const base::Closure& callback);
[email protected]e53c02322013-12-17 00:09:0059
pneubecka23ed1a2014-11-03 15:40:4260 scoped_ptr<CertFilter> cert_filter_;
[email protected]e53c02322013-12-17 00:09:0061
62 DISALLOW_COPY_AND_ASSIGN(ClientCertStoreChromeOS);
63};
64
65} // namespace net
66
67#endif // NET_SSL_CLIENT_CERT_STORE_CHROMEOS_H_