chrome/browser/ash/authpolicy/kerberos_files_handler.h - chromium/src - Git at Google

 // Copyright 2019 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef CHROME_BROWSER_ASH_AUTHPOLICY_KERBEROS_FILES_HANDLER_H_
 #define CHROME_BROWSER_ASH_AUTHPOLICY_KERBEROS_FILES_HANDLER_H_

 #include <string>

 #include "base/callback.h"
 #include "base/macros.h"
 #include "base/memory/weak_ptr.h"
 #include "base/optional.h"
 #include "components/prefs/pref_member.h"

 namespace ash {

 // Kerberos defaults for canonicalization SPN. (see
 // https://web.mit.edu/kerberos/krb5-1.12/doc/admin/conf_files/krb5_conf.html)
 // Exported for browsertests.
 extern const char kKrb5CnameSettings[];

 // Environment variable pointing to credential cache file.
 extern const char kKrb5CCEnvName[];
 // Environment variable pointing to Kerberos config file.
 extern const char kKrb5ConfEnvName[];
 // Prefix for KRB5CCNAME environment variable. Defines credential cache type.
 extern const char kKrb5CCFilePrefix[];
 // Directory in the user home to store Kerberos files.
 extern const char kKrb5Directory[];
 // Credential cache file name.
 extern const char kKrb5CCFile[];
 // Kerberos config file name.
 extern const char kKrb5ConfFile[];

 // Helper class to update Kerberos credential cache and config files used by
 // Chrome for Kerberos authentication.
 class KerberosFilesHandler {
  public:
   explicit KerberosFilesHandler(base::RepeatingClosure get_kerberos_files);
   virtual ~KerberosFilesHandler();

   // Writes the Kerberos credentials to disk asynchronously.
   void SetFiles(base::Optional<std::string> krb5cc,
                 base::Optional<std::string> krb5conf);

   // Deletes the Kerberos credentials from disk asynchronously.
   virtual void DeleteFiles();

   // Sets a callback for when disk IO task posted by SetFiles has finished.
   void SetFilesChangedForTesting(base::OnceClosure callback);

  private:
   // Called whenever prefs::kDisableAuthNegotiateCnameLookup is changed.
   void OnDisabledAuthNegotiateCnameLookupChanged();

   // Forwards to |files_changed_for_testing_| if set.
   void OnFilesChanged();

   PrefMember<bool> negotiate_disable_cname_lookup_;

   // Triggers a fetch of Kerberos files. Called when the watched pref changes.
   base::RepeatingClosure get_kerberos_files_;

   // Called when disk IO queued by SetFiles has finished.
   base::OnceClosure files_changed_for_testing_;

   base::WeakPtrFactory<KerberosFilesHandler> weak_factory_{this};
   DISALLOW_COPY_AND_ASSIGN(KerberosFilesHandler);
 };

 }  // namespace ash

 // TODO(https://crbug.com/1164001): remove when Chrome OS code migration is
 // done.
 namespace chromeos {
 using ::ash::KerberosFilesHandler;
 using ::ash::kKrb5CCEnvName;
 using ::ash::kKrb5CCFile;
 using ::ash::kKrb5CCFilePrefix;
 using ::ash::kKrb5CnameSettings;
 using ::ash::kKrb5ConfEnvName;
 using ::ash::kKrb5ConfFile;
 using ::ash::kKrb5Directory;
 }  // namespace chromeos

 #endif  // CHROME_BROWSER_ASH_AUTHPOLICY_KERBEROS_FILES_HANDLER_H_
	// Copyright 2019 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef CHROME_BROWSER_ASH_AUTHPOLICY_KERBEROS_FILES_HANDLER_H_
	#define CHROME_BROWSER_ASH_AUTHPOLICY_KERBEROS_FILES_HANDLER_H_

	#include <string>

	#include "base/callback.h"
	#include "base/macros.h"
	#include "base/memory/weak_ptr.h"
	#include "base/optional.h"
	#include "components/prefs/pref_member.h"

	namespace ash {

	// Kerberos defaults for canonicalization SPN. (see
	// https://web.mit.edu/kerberos/krb5-1.12/doc/admin/conf_files/krb5_conf.html)
	// Exported for browsertests.
	extern const char kKrb5CnameSettings[];

	// Environment variable pointing to credential cache file.
	extern const char kKrb5CCEnvName[];
	// Environment variable pointing to Kerberos config file.
	extern const char kKrb5ConfEnvName[];
	// Prefix for KRB5CCNAME environment variable. Defines credential cache type.
	extern const char kKrb5CCFilePrefix[];
	// Directory in the user home to store Kerberos files.
	extern const char kKrb5Directory[];
	// Credential cache file name.
	extern const char kKrb5CCFile[];
	// Kerberos config file name.
	extern const char kKrb5ConfFile[];

	// Helper class to update Kerberos credential cache and config files used by
	// Chrome for Kerberos authentication.
	class KerberosFilesHandler {
	public:
	explicit KerberosFilesHandler(base::RepeatingClosure get_kerberos_files);
	virtual ~KerberosFilesHandler();

	// Writes the Kerberos credentials to disk asynchronously.
	void SetFiles(base::Optional<std::string> krb5cc,
	base::Optional<std::string> krb5conf);

	// Deletes the Kerberos credentials from disk asynchronously.
	virtual void DeleteFiles();

	// Sets a callback for when disk IO task posted by SetFiles has finished.
	void SetFilesChangedForTesting(base::OnceClosure callback);

	private:
	// Called whenever prefs::kDisableAuthNegotiateCnameLookup is changed.
	void OnDisabledAuthNegotiateCnameLookupChanged();

	// Forwards to \|files_changed_for_testing_\| if set.
	void OnFilesChanged();

	PrefMember<bool> negotiate_disable_cname_lookup_;

	// Triggers a fetch of Kerberos files. Called when the watched pref changes.
	base::RepeatingClosure get_kerberos_files_;

	// Called when disk IO queued by SetFiles has finished.
	base::OnceClosure files_changed_for_testing_;

	base::WeakPtrFactory<KerberosFilesHandler> weak_factory_{this};
	DISALLOW_COPY_AND_ASSIGN(KerberosFilesHandler);
	};

	} // namespace ash

	// TODO(https://crbug.com/1164001): remove when Chrome OS code migration is
	// done.
	namespace chromeos {
	using ::ash::KerberosFilesHandler;
	using ::ash::kKrb5CCEnvName;
	using ::ash::kKrb5CCFile;
	using ::ash::kKrb5CCFilePrefix;
	using ::ash::kKrb5CnameSettings;
	using ::ash::kKrb5ConfEnvName;
	using ::ash::kKrb5ConfFile;
	using ::ash::kKrb5Directory;
	} // namespace chromeos

	#endif // CHROME_BROWSER_ASH_AUTHPOLICY_KERBEROS_FILES_HANDLER_H_