Gitiles
Code Review Sign In
gerrit.named-data.net / ChronoChat / 30cf2bf00980ce0d1395f131ba6e7c7705732e34 / . / src / invitation-policy-manager.h
blob: f2cfc1cca9b22f228f80c2a152405a30de7f1d06 [file] [log] [blame]
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil -*- */
2/*
3 * Copyright (c) 2013, Regents of the University of California
4 * Yingdi Yu
5 *
6 * BSD license, See the LICENSE file for more information
7 *
8 * Author: Yingdi Yu <yingdi@cs.ucla.edu>
9 */
10
11#ifndef INVITATION_POLICY_MANAGER_H
12#define INVITATION_POLICY_MANAGER_H
13
14#include <ndn.cxx/security/policy/policy-manager.h>
15#include <ndn.cxx/security/policy/identity-policy-rule.h>
Yingdi Yu53eb8a72013-10-23 11:50:51 -0700[diff] [blame]16#include <ndn.cxx/security/cache/certificate-cache.h>
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]17#include <ndn.cxx/regex/regex.h>
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]18#include <map>
19
Yingdi Yu53eb8a72013-10-23 11:50:51 -0700[diff] [blame]20#include "endorse-certificate.h"
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]21#include "chat-policy-rule.h"
Yingdi Yu53eb8a72013-10-23 11:50:51 -0700[diff] [blame]22
23class InvitationPolicyManager : public ndn::security::PolicyManager
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]24{
25public:
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]26 InvitationPolicyManager(const std::string& chatroomName,
Yingdi Yub35b8652013-11-07 11:32:40 -0800[diff] [blame]27 const ndn::Name& signingIdentity,
28 int stepLimit = 10,
29 ndn::Ptr<ndn::security::CertificateCache> certificateCache = NULL);
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]30
31 virtual
32 ~InvitationPolicyManager();
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]33
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]34 bool
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]35 skipVerifyAndTrust (const ndn::Data& data);
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]36
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]37 bool
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]38 requireVerify (const ndn::Data& data);
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]39
Yingdi Yu53eb8a72013-10-23 11:50:51 -0700[diff] [blame]40 ndn::Ptr<ndn::security::ValidationRequest>
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]41 checkVerificationPolicy(ndn::Ptr<ndn::Data> data,
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]42 const int& stepCount,
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]43 const ndn::DataCallback& verifiedCallback,
44 const ndn::UnverifiedCallback& unverifiedCallback);
45
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]46 bool
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]47 checkSigningPolicy(const ndn::Name& dataName,
48 const ndn::Name& certificateName);
49
Yingdi Yu53eb8a72013-10-23 11:50:51 -0700[diff] [blame]50 ndn::Name
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]51 inferSigningIdentity(const ndn::Name& dataName);
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]52
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]53 void
Yingdi Yu53eb8a72013-10-23 11:50:51 -0700[diff] [blame]54 addTrustAnchor(const EndorseCertificate& selfEndorseCertificate);
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]55
56 // void
57 // addChatDataRule(const ndn::Name& prefix,
58 // const ndn::security::IdentityCertificate identityCertificate);
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]59
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]60 ndn::Ptr<ndn::security::IdentityCertificate>
61 getValidatedDskCertificate(const ndn::Name& certName);
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]62
63private:
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]64 void
65 onDskCertificateVerified(ndn::Ptr<ndn::Data> certData,
66 ndn::Ptr<ndn::Data> originalData,
67 const ndn::DataCallback& verifiedCallback,
68 const ndn::UnverifiedCallback& unverifiedCallback);
69
70 void
71 onDskCertificateUnverified(ndn::Ptr<ndn::Data> certData,
72 ndn::Ptr<ndn::Data> originalData,
73 const ndn::UnverifiedCallback& unverifiedCallback);
74
75private:
76 std::string m_chatroomName;
Yingdi Yub35b8652013-11-07 11:32:40 -0800[diff] [blame]77 ndn::Name m_signingIdentity;
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]78
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]79 int m_stepLimit;
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]80
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]81 ndn::Ptr<ndn::security::CertificateCache> m_certificateCache;
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]82
83 ndn::Ptr<ndn::security::IdentityPolicyRule> m_invitationPolicyRule;
Yingdi Yu53eb8a72013-10-23 11:50:51 -0700[diff] [blame]84 ndn::Ptr<ndn::security::IdentityPolicyRule> m_dskRule;
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]85 std::map<ndn::Name, ChatPolicyRule> m_chatDataRules;
86
Yingdi Yued8cfc42013-11-01 17:37:51 -0700[diff] [blame]87 ndn::Ptr<ndn::Regex> m_kskRegex;
Yingdi Yu53eb8a72013-10-23 11:50:51 -0700[diff] [blame]88 ndn::Ptr<ndn::Regex> m_keyNameRegex;
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]89
Yingdi Yu53eb8a72013-10-23 11:50:51 -0700[diff] [blame]90 std::map<ndn::Name, ndn::security::Publickey> m_trustAnchors;
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]91
92 std::map<ndn::Name, ndn::Ptr<ndn::security::IdentityCertificate> > m_dskCertificates;
93
Yingdi Yuea5f1c62013-10-22 16:59:43 -0700[diff] [blame]94};
95
Yingdi Yu42f66462013-10-31 17:38:22 -0700[diff] [blame]96#endif //CHATROOM_POLICY_MANAGER_H