chromeos/network/onc/onc_certificate_pattern.h - chromium/src - Git at Google

 // Copyright 2019 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef CHROMEOS_NETWORK_ONC_ONC_CERTIFICATE_PATTERN_H_
 #define CHROMEOS_NETWORK_ONC_ONC_CERTIFICATE_PATTERN_H_

 #include <memory>
 #include <string>
 #include <vector>

 #include "base/optional.h"
 #include "components/certificate_matching/certificate_principal_pattern.h"

 namespace base {
 class Value;
 }

 namespace net {
 class X509Certificate;
 }

 namespace chromeos {

 // A class to contain a certificate pattern and find existing matches to the
 // pattern in the certificate database.
 class COMPONENT_EXPORT(CHROMEOS_NETWORK) OncCertificatePattern {
  public:
   OncCertificatePattern();
   OncCertificatePattern(const OncCertificatePattern& other);
   OncCertificatePattern(OncCertificatePattern&& other);
   ~OncCertificatePattern();

   OncCertificatePattern& operator=(const OncCertificatePattern& rhs);
   OncCertificatePattern& operator=(OncCertificatePattern&& rhs);

   // Returns true if this pattern has nothing set (and so would match all
   // certs). Ignores enrollment_uri_;
   bool Empty() const;

   bool Matches(const net::X509Certificate& certificate,
                const std::string& pem_encoded_issuer_ca) const;

   const std::vector<std::string>& pem_encoded_issuer_cas() const {
     return pem_encoded_issuer_cas_;
   }
   const certificate_matching::CertificatePrincipalPattern& issuer_pattern()
       const {
     return issuer_pattern_;
   }
   const certificate_matching::CertificatePrincipalPattern& subject_pattern()
       const {
     return subject_pattern_;
   }
   const std::vector<std::string>& enrollment_uri_list() const {
     return enrollment_uri_list_;
   }

   // Reads a |OncCertificatePattern| from an ONC dictionary.
   static base::Optional<OncCertificatePattern> ReadFromONCDictionary(
       const base::Value& dictionary);

  private:
   OncCertificatePattern(
       std::vector<std::string> pem_encoded_issuer_cas,
       certificate_matching::CertificatePrincipalPattern issuer_pattern,
       certificate_matching::CertificatePrincipalPattern subject_pattern,
       std::vector<std::string> enrollment_uri_list_);

   std::vector<std::string> pem_encoded_issuer_cas_;
   certificate_matching::CertificatePrincipalPattern issuer_pattern_;
   certificate_matching::CertificatePrincipalPattern subject_pattern_;
   std::vector<std::string> enrollment_uri_list_;
 };

 }  // namespace chromeos

 #endif  // CHROMEOS_NETWORK_ONC_ONC_CERTIFICATE_PATTERN_H_
	// Copyright 2019 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef CHROMEOS_NETWORK_ONC_ONC_CERTIFICATE_PATTERN_H_
	#define CHROMEOS_NETWORK_ONC_ONC_CERTIFICATE_PATTERN_H_

	#include <memory>
	#include <string>
	#include <vector>

	#include "base/optional.h"
	#include "components/certificate_matching/certificate_principal_pattern.h"

	namespace base {
	class Value;
	}

	namespace net {
	class X509Certificate;
	}

	namespace chromeos {

	// A class to contain a certificate pattern and find existing matches to the
	// pattern in the certificate database.
	class COMPONENT_EXPORT(CHROMEOS_NETWORK) OncCertificatePattern {
	public:
	OncCertificatePattern();
	OncCertificatePattern(const OncCertificatePattern& other);
	OncCertificatePattern(OncCertificatePattern&& other);
	~OncCertificatePattern();

	OncCertificatePattern& operator=(const OncCertificatePattern& rhs);
	OncCertificatePattern& operator=(OncCertificatePattern&& rhs);

	// Returns true if this pattern has nothing set (and so would match all
	// certs). Ignores enrollment_uri_;
	bool Empty() const;

	bool Matches(const net::X509Certificate& certificate,
	const std::string& pem_encoded_issuer_ca) const;

	const std::vector<std::string>& pem_encoded_issuer_cas() const {
	return pem_encoded_issuer_cas_;
	}
	const certificate_matching::CertificatePrincipalPattern& issuer_pattern()
	const {
	return issuer_pattern_;
	}
	const certificate_matching::CertificatePrincipalPattern& subject_pattern()
	const {
	return subject_pattern_;
	}
	const std::vector<std::string>& enrollment_uri_list() const {
	return enrollment_uri_list_;
	}

	// Reads a \|OncCertificatePattern\| from an ONC dictionary.
	static base::Optional<OncCertificatePattern> ReadFromONCDictionary(
	const base::Value& dictionary);

	private:
	OncCertificatePattern(
	std::vector<std::string> pem_encoded_issuer_cas,
	certificate_matching::CertificatePrincipalPattern issuer_pattern,
	certificate_matching::CertificatePrincipalPattern subject_pattern,
	std::vector<std::string> enrollment_uri_list_);

	std::vector<std::string> pem_encoded_issuer_cas_;
	certificate_matching::CertificatePrincipalPattern issuer_pattern_;
	certificate_matching::CertificatePrincipalPattern subject_pattern_;
	std::vector<std::string> enrollment_uri_list_;
	};

	} // namespace chromeos

	#endif // CHROMEOS_NETWORK_ONC_ONC_CERTIFICATE_PATTERN_H_