src/content/browser/ssl/ssl_client_auth_handler.h

   1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
   2 // Use of this source code is governed by a BSD-style license that can be
   3 // found in the LICENSE file.
   4
   5 #ifndef CONTENT_BROWSER_SSL_SSL_CLIENT_AUTH_HANDLER_H_
   6 #define CONTENT_BROWSER_SSL_SSL_CLIENT_AUTH_HANDLER_H_
   7
   8 #include "base/basictypes.h"
   9 #include "base/memory/ref_counted.h"
  10 #include "base/sequenced_task_runner_helpers.h"
  11 #include "content/common/content_export.h"
  12 #include "content/public/browser/browser_thread.h"
  13 #include "net/ssl/ssl_cert_request_info.h"
  14
  15 namespace net {
  16 class ClientCertStore;
  17 class HttpNetworkSession;
  18 class URLRequest;
  19 class X509Certificate;
  20 }  // namespace net
  21
  22 namespace content {
  23
  24 class ResourceContext;
  25
  26 // This class handles the approval and selection of a certificate for SSL client
  27 // authentication by the user.
  28 // It is self-owned and deletes itself when the UI reports the user selection or
  29 // when the net::URLRequest is cancelled.
  30 class CONTENT_EXPORT SSLClientAuthHandler
  31     : public base::RefCountedThreadSafe<
  32           SSLClientAuthHandler, BrowserThread::DeleteOnIOThread> {
  33  public:
  34   SSLClientAuthHandler(scoped_ptr<net::ClientCertStore> client_cert_store,
  35                        net::URLRequest* request,
  36                        net::SSLCertRequestInfo* cert_request_info);
  37
  38   // Selects a certificate and resumes the URL request with that certificate.
  39   // Should only be called on the IO thread.
  40   void SelectCertificate();
  41
  42   // Invoked when the request associated with this handler is cancelled.
  43   // Should only be called on the IO thread.
  44   void OnRequestCancelled();
  45
  46   // Calls DoCertificateSelected on the I/O thread.
  47   // Called on the UI thread after the user has made a selection (which may
  48   // be long after DoSelectCertificate returns, if the UI is modeless/async.)
  49   void CertificateSelected(net::X509Certificate* cert);
  50
  51  protected:
  52   virtual ~SSLClientAuthHandler();
  53
  54  private:
  55   friend class base::RefCountedThreadSafe<
  56       SSLClientAuthHandler, BrowserThread::DeleteOnIOThread>;
  57   friend class BrowserThread;
  58   friend class base::DeleteHelper<SSLClientAuthHandler>;
  59
  60   // Called when ClientCertStore is done retrieving the cert list.
  61   void DidGetClientCerts();
  62
  63   // Notifies that the user has selected a cert.
  64   // Called on the IO thread.
  65   void DoCertificateSelected(net::X509Certificate* cert);
  66
  67   // Selects a client certificate on the UI thread.
  68   void DoSelectCertificate(int render_process_host_id,
  69                            int render_view_host_id);
  70
  71   // The net::URLRequest that triggered this client auth.
  72   net::URLRequest* request_;
  73
  74   // The HttpNetworkSession |request_| is associated with.
  75   const net::HttpNetworkSession* http_network_session_;
  76
  77   // The certs to choose from.
  78   scoped_refptr<net::SSLCertRequestInfo> cert_request_info_;
  79
  80   scoped_ptr<net::ClientCertStore> client_cert_store_;
  81
  82   DISALLOW_COPY_AND_ASSIGN(SSLClientAuthHandler);
  83 };
  84
  85 }  // namespace content
  86
  87 #endif  // CONTENT_BROWSER_SSL_SSL_CLIENT_AUTH_HANDLER_H_