Gitiles
Code Review Sign In
gerrit.named-data.net / ndncert / 75a8384a99506634cb70c1dc20534a06b2174d36 / . / src / detail / ca-profile.hpp
blob: 69adf43d15054b01ef7c59901128a842615bc544 [file] [log] [blame]
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
2/**
3 * Copyright (c) 2017-2020, Regents of the University of California.
4 *
5 * This file is part of ndncert, a certificate management system based on NDN.
6 *
7 * ndncert is free software: you can redistribute it and/or modify it under the terms
8 * of the GNU General Public License as published by the Free Software Foundation, either
9 * version 3 of the License, or (at your option) any later version.
10 *
11 * ndncert is distributed in the hope that it will be useful, but WITHOUT ANY
12 * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
13 * PARTICULAR PURPOSE. See the GNU General Public License for more details.
14 *
15 * You should have received copies of the GNU General Public License along with
16 * ndncert, e.g., in COPYING.md file. If not, see <http://www.gnu.org/licenses/>.
17 *
18 * See AUTHORS.md for complete list of ndncert authors and contributors.
19 */
20
21#ifndef NDNCERT_DETAIL_CA_PROFILE_HPP
22#define NDNCERT_DETAIL_CA_PROFILE_HPP
23
Zhiyi Zhang1e418f22020-11-19 19:49:32 -0800[diff] [blame]24#include "detail/ndncert-common.hpp"
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]25
26namespace ndn {
27namespace ndncert {
28
29// used in parsing CA configuration file and Client CA profile storage file
30const std::string CONFIG_CA_PREFIX = "ca-prefix";
31const std::string CONFIG_CA_INFO = "ca-info";
32const std::string CONFIG_MAX_VALIDITY_PERIOD = "max-validity-period";
33const std::string CONFIG_MAX_SUFFIX_LENGTH = "max-suffix-length";
34const std::string CONFIG_PROBE_PARAMETERS = "probe-parameters";
35const std::string CONFIG_PROBE_PARAMETER = "probe-parameter-key";
36const std::string CONFIG_SUPPORTED_CHALLENGES = "supported-challenges";
37const std::string CONFIG_CHALLENGE = "challenge";
38const std::string CONFIG_CERTIFICATE = "certificate";
39const std::string CONFIG_REDIRECTION = "redirect-to";
40const std::string CONFIG_NAME_ASSIGNMENT = "name-assignment";
41
tylerliuf2e6bb52020-12-13 13:23:05 -0800[diff] [blame]42class CaProfile
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]43{
44public:
45 /**
tylerliuf2e6bb52020-12-13 13:23:05 -0800[diff] [blame]46 * Parse the configuration json.
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]47 * @param configJson the configuration json to parse
tylerliuf2e6bb52020-12-13 13:23:05 -0800[diff] [blame]48 * @return the CaProfile according to this json
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]49 */
Zhiyi Zhang1e418f22020-11-19 19:49:32 -0800[diff] [blame]50 static CaProfile
51 fromJson(const JsonSection& json);
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]52
53 /**
54 * @return the JSON representation of this profile.
55 */
56 JsonSection
57 toJson() const;
58
59public:
60 /**
Zhiyi Zhang84e11842020-11-19 20:03:23 -0800[diff] [blame]61 * @brief CA Name prefix (without /CA suffix).
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]62 */
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]63 Name caPrefix;
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]64 /**
Zhiyi Zhang84e11842020-11-19 20:03:23 -0800[diff] [blame]65 * @brief CA Information.
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]66 */
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]67 std::string caInfo;
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]68 /**
Zhiyi Zhang84e11842020-11-19 20:03:23 -0800[diff] [blame]69 * @brief A list of parameter-keys for PROBE.
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]70 */
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]71 std::vector<std::string> probeParameterKeys;
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]72 /**
Zhiyi Zhang84e11842020-11-19 20:03:23 -0800[diff] [blame]73 * @brief Maximum allowed validity period of the certificate being requested.
74 *
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]75 * The value is in the unit of second.
76 * Default: one day (86400 seconds).
77 */
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]78 time::seconds maxValidityPeriod;
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]79 /**
Zhiyi Zhang84e11842020-11-19 20:03:23 -0800[diff] [blame]80 * @brief Maximum allowed suffix length of requested name.
81 *
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]82 * E.g., When its value is 2, at most 2 name components can be assigned after m_caPrefix.
83 * Default: none.
84 */
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]85 optional<size_t> maxSuffixLength = nullopt;
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]86 /**
Zhiyi Zhang84e11842020-11-19 20:03:23 -0800[diff] [blame]87 * @brief A list of supported challenges. Only CA side will have m_supportedChallenges.
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]88 */
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]89 std::vector<std::string> supportedChallenges;
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]90 /**
Zhiyi Zhang84e11842020-11-19 20:03:23 -0800[diff] [blame]91 * @brief CA's certificate. Only Client side will have m_cert.
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]92 */
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]93 std::shared_ptr<security::Certificate> cert;
Zhiyi Zhang3f20f952020-11-19 19:26:43 -0800[diff] [blame]94};
95
96} // namespace ndncert
97} // namespace ndn
98
99#endif // NDNCERT_DETAIL_CA_PROFILE_HPP