blob: 969c8245b605864bbdceb83722506fa0cd1a44b4 [file] [log] [blame]
// Copyright 2014 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef CHROMEOS_LOGIN_AUTH_KEY_H_
#define CHROMEOS_LOGIN_AUTH_KEY_H_
#include <string>
#include "chromeos/chromeos_export.h"
namespace chromeos {
// Key for user authentication. The class supports hashing of plain text
// passwords to generate keys as well as the use of pre-hashed keys.
class CHROMEOS_EXPORT Key {
public:
enum KeyType {
// Plain text password.
KEY_TYPE_PASSWORD_PLAIN = 0,
// SHA256 of salt + password, first half only, lower-case hex encoded.
KEY_TYPE_SALTED_SHA256_TOP_HALF = 1,
// PBKDF2 with 256 bit AES and 1234 iterations, base64 encoded.
KEY_TYPE_SALTED_PBKDF2_AES256_1234 = 2,
// SHA256 of salt + password, base64 encoded.
KEY_TYPE_SALTED_SHA256 = 3,
// Sentinel. Must be last.
KEY_TYPE_COUNT
};
Key();
Key(const Key& other);
explicit Key(const std::string& plain_text_password);
Key(KeyType key_type, const std::string& salt, const std::string& secret);
~Key();
bool operator==(const Key& other) const;
KeyType GetKeyType() const;
const std::string& GetSecret() const;
const std::string& GetLabel() const;
void SetLabel(const std::string& label);
void ClearSecret();
void Transform(KeyType target_key_type, const std::string& salt);
private:
KeyType key_type_;
std::string salt_;
std::string secret_;
std::string label_;
};
} // namespace chromeos
#endif // CHROMEOS_LOGIN_AUTH_KEY_H_