| // Copyright 2015 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #ifndef CHROME_BROWSER_EXTENSIONS_API_PLATFORM_KEYS_VERIFY_TRUST_API_H_ |
| #define CHROME_BROWSER_EXTENSIONS_API_PLATFORM_KEYS_VERIFY_TRUST_API_H_ |
| |
| #include <memory> |
| #include <string> |
| |
| #include "base/callback.h" |
| #include "base/macros.h" |
| #include "base/memory/weak_ptr.h" |
| #include "base/scoped_observer.h" |
| #include "content/public/browser/browser_thread.h" |
| #include "extensions/browser/browser_context_keyed_api_factory.h" |
| #include "extensions/browser/extension_registry.h" |
| #include "extensions/browser/extension_registry_observer.h" |
| |
| namespace content { |
| class BrowserContext; |
| } // namespace content |
| |
| namespace extensions { |
| |
| namespace api { |
| namespace platform_keys { |
| namespace VerifyTLSServerCertificate { |
| struct Params; |
| } // namespace VerifyTLSServerCertificate |
| } // namespace platform_keys |
| } // namespace api |
| |
| // This keyed service is used by the platformKeys.verifyTLSServerCertificate for |
| // caching and to reuse objects between multiple API calls (e.g. the |
| // net::CertVerifier). |
| class VerifyTrustAPI : public BrowserContextKeyedAPI, |
| public ExtensionRegistryObserver { |
| public: |
| // Will be called with |return_value| set to the verification result (net::OK |
| // if the certificate is trusted, otherwise a net error code) and |
| // |cert_status| to the bitwise-OR of CertStatus flags. If an error occured |
| // during processing the parameters, |error| is set to an english error |
| // message and |return_value| and |cert_status| must be ignored. |
| using VerifyCallback = base::Callback< |
| void(const std::string& error, int return_value, int cert_status)>; |
| using Params = api::platform_keys::VerifyTLSServerCertificate::Params; |
| |
| // Consumers should use the factory instead of this constructor. |
| explicit VerifyTrustAPI(content::BrowserContext* context); |
| ~VerifyTrustAPI() override; |
| |
| // Verifies the server certificate as described by |params| for the |
| // extension with id |extension_id|. When verification is complete |
| // (successful or not), the result will be passed to |callback|. |
| // |
| // Note: It is safe to delete this object while there are still |
| // outstanding operations. However, if this happens, |callback| |
| // will NOT be called. |
| void Verify(std::unique_ptr<Params> params, |
| const std::string& extension_id, |
| const VerifyCallback& callback); |
| |
| // ExtensionRegistryObserver: |
| void OnExtensionUnloaded(content::BrowserContext* browser_context, |
| const Extension* extension, |
| UnloadedExtensionReason reason) override; |
| |
| // BrowserContextKeyedAPI: |
| static BrowserContextKeyedAPIFactory<VerifyTrustAPI>* GetFactoryInstance(); |
| |
| protected: |
| static const bool kServiceRedirectedInIncognito = true; |
| static const bool kServiceIsCreatedWithBrowserContext = false; |
| static const bool kServiceIsNULLWhileTesting = true; |
| |
| private: |
| class IOPart; |
| friend class BrowserContextKeyedAPIFactory<VerifyTrustAPI>; |
| |
| // Calls |ui_callback| with the given parameters. |
| void FinishedVerificationOnUI(const VerifyCallback& ui_callback, |
| const std::string& error, |
| int return_value, |
| int cert_status); |
| |
| // Calls |ui_callback| on the UIThread with the given arguments. |
| static void CallBackOnUI(const VerifyCallback& ui_callback, |
| const std::string& error, |
| int return_value, |
| int cert_status); |
| |
| // BrowserContextKeyedAPI implementation. |
| static const char* service_name() { return "VerifyTrustAPI"; } |
| |
| // Created on the UIThread but must be used and destroyed only on the |
| // IOThread. |
| std::unique_ptr<IOPart, content::BrowserThread::DeleteOnIOThread> io_part_; |
| |
| ScopedObserver<ExtensionRegistry, ExtensionRegistryObserver> |
| registry_observer_; |
| |
| base::WeakPtrFactory<VerifyTrustAPI> weak_factory_; |
| |
| DISALLOW_COPY_AND_ASSIGN(VerifyTrustAPI); |
| }; |
| |
| template <> |
| void BrowserContextKeyedAPIFactory< |
| VerifyTrustAPI>::DeclareFactoryDependencies(); |
| |
| } // namespace extensions |
| |
| #endif // CHROME_BROWSER_EXTENSIONS_API_PLATFORM_KEYS_VERIFY_TRUST_API_H_ |