[thirdparty/squid.git] / src / acl / CertificateData.h

/*
 * Copyright (C) 1996-2017 The Squid Software Foundation and contributors
 *
 * Squid software is distributed under GPLv2+ license and includes
 * contributions from numerous individuals and organizations.
 * Please see the COPYING and CONTRIBUTORS files for details.
 */

#ifndef SQUID_ACLCERTIFICATEDATA_H
#define SQUID_ACLCERTIFICATEDATA_H

#include "acl/Acl.h"
#include "acl/Data.h"
#include "acl/StringData.h"
#include "splay.h"
#include "ssl/support.h"
#include <string>
#include <list>

/// \ingroup ACLAPI
class ACLCertificateData : public ACLData<X509 *>
{
    MEMPROXY_CLASS(ACLCertificateData);

public:
    ACLCertificateData(Ssl::GETX509ATTRIBUTE *, const char *attributes, bool optionalAttr = false);
    ACLCertificateData(ACLCertificateData const &);
    ACLCertificateData &operator= (ACLCertificateData const &);
    virtual ~ACLCertificateData();
    bool match(X509 *);
    virtual SBufList dump() const;
    void parse();
    bool empty() const;
    virtual ACLData<X509 *> *clone() const;

    /// A '|'-delimited list of valid ACL attributes.
    /// A "*" item means that any attribute is acceptable.
    /// Assumed to be a const-string and is never duped/freed.
    /// Nil unless ACL form is: acl Name type attribute value1 ...
    const char *validAttributesStr;
    /// Parsed list of valid attribute names
    std::list<std::string> validAttributes;
    /// True if the attribute is optional (-xxx options)
    bool attributeIsOptional;
    char *attribute;
    ACLStringData values;

private:
    /// The callback used to retrieve the data from X509 cert
    Ssl::GETX509ATTRIBUTE *sslAttributeCall;
};

#endif /* SQUID_ACLCERTIFICATEDATA_H */
Commit	Line	Data
3841dd46	1	/*
4ac4a490	2	* Copyright (C) 1996-2017 The Squid Software Foundation and contributors
3841dd46	3	*
bbc27441 AJ	4	* Squid software is distributed under GPLv2+ license and includes
	5	* contributions from numerous individuals and organizations.
	6	* Please see the COPYING and CONTRIBUTORS files for details.
3841dd46	7	*/
	8
	9	#ifndef SQUID_ACLCERTIFICATEDATA_H
	10	#define SQUID_ACLCERTIFICATEDATA_H
63be0a78	11
3ad63615 AR	12	#include "acl/Acl.h"
3ad63615 AR	13	#include "acl/Data.h"
3ad63615	14	#include "acl/StringData.h"
602d9612 A	15	#include "splay.h"
602d9612 A	16	#include "ssl/support.h"
00352183 AR	17	#include <string>
00352183 AR	18	#include <list>
3841dd46	19
63be0a78	20	/// \ingroup ACLAPI
00352183	21	class ACLCertificateData : public ACLData<X509 *>
62e76326	22	{
b001e822	23	MEMPROXY_CLASS(ACLCertificateData);
3841dd46	24
741c2986	25	public:
00352183	26	ACLCertificateData(Ssl::GETX509ATTRIBUTE , const char attributes, bool optionalAttr = false);
5dee515e	27	ACLCertificateData(ACLCertificateData const &);
5dee515e	28	ACLCertificateData &operator= (ACLCertificateData const &);
3841dd46	29	virtual ~ACLCertificateData();
00352183	30	bool match(X509 *);
2cb8d372	31	virtual SBufList dump() const;
3841dd46	32	void parse();
65092baf	33	bool empty() const;
00352183	34	virtual ACLData<X509 > clone() const;
62e76326	35
00352183 AR	36	/// A '\|'-delimited list of valid ACL attributes.
	37	/// A "*" item means that any attribute is acceptable.
	38	/// Assumed to be a const-string and is never duped/freed.
	39	/// Nil unless ACL form is: acl Name type attribute value1 ...
	40	const char *validAttributesStr;
	41	/// Parsed list of valid attribute names
	42	std::list<std::string> validAttributes;
	43	/// True if the attribute is optional (-xxx options)
	44	bool attributeIsOptional;
3841dd46	45	char *attribute;
b0dd28ba	46	ACLStringData values;
62e76326	47
62e76326	48	private:
00352183 AR	49	/// The callback used to retrieve the data from X509 cert
00352183 AR	50	Ssl::GETX509ATTRIBUTE *sslAttributeCall;
3841dd46	51	};
	52
	53	#endif /* SQUID_ACLCERTIFICATEDATA_H */
f53969cc	54