src/privet/security_delegate.h - weave/libweave - Git at Google

 // Copyright 2015 The Weave Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef LIBWEAVE_SRC_PRIVET_SECURITY_DELEGATE_H_
 #define LIBWEAVE_SRC_PRIVET_SECURITY_DELEGATE_H_

 #include <memory>
 #include <set>
 #include <string>

 #include <base/time/time.h>

 #include "src/privet/privet_types.h"

 namespace weave {
 namespace privet {

 // Interface to provide Security related logic for |PrivetHandler|.
 class SecurityDelegate {
  public:
   virtual ~SecurityDelegate() {}

   // Creates access token for the given scope, user id and |time|.
   virtual bool CreateAccessToken(AuthType auth_type,
                                  const std::string& auth_code,
                                  AuthScope desired_scope,
                                  std::string* access_token,
                                  AuthScope* granted_scope,
                                  base::TimeDelta* ttl,
                                  ErrorPtr* error) = 0;

   // Validates |token| and returns scope, user id parsed from that.
   virtual bool ParseAccessToken(const std::string& token,
                                 UserInfo* user_info,
                                 ErrorPtr* error) const = 0;

   // Returns list of pairing methods by device.
   virtual std::set<PairingType> GetPairingTypes() const = 0;

   // Returns list of crypto methods supported by devices.
   virtual std::set<CryptoType> GetCryptoTypes() const = 0;

   // Returns list of auth methods supported by devices.
   virtual std::set<AuthType> GetAuthTypes() const = 0;

   // Returns Root Client Authorization Token.
   virtual std::string ClaimRootClientAuthToken(ErrorPtr* error) = 0;

   // Confirms pending token claim or checks that token is valid for the active
   // secret.
   virtual bool ConfirmClientAuthToken(const std::string& token,
                                       ErrorPtr* error) = 0;

   virtual bool StartPairing(PairingType mode,
                             CryptoType crypto,
                             std::string* session_id,
                             std::string* device_commitment,
                             ErrorPtr* error) = 0;

   virtual bool ConfirmPairing(const std::string& session_id,
                               const std::string& client_commitment,
                               std::string* fingerprint,
                               std::string* signature,
                               ErrorPtr* error) = 0;

   virtual bool CancelPairing(const std::string& session_id,
                              ErrorPtr* error) = 0;

   virtual std::string CreateSessionId() = 0;
 };

 }  // namespace privet
 }  // namespace weave

 #endif  // LIBWEAVE_SRC_PRIVET_SECURITY_DELEGATE_H_
	// Copyright 2015 The Weave Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef LIBWEAVE_SRC_PRIVET_SECURITY_DELEGATE_H_
	#define LIBWEAVE_SRC_PRIVET_SECURITY_DELEGATE_H_

	#include <memory>
	#include <set>
	#include <string>

	#include <base/time/time.h>

	#include "src/privet/privet_types.h"

	namespace weave {
	namespace privet {

	// Interface to provide Security related logic for \|PrivetHandler\|.
	class SecurityDelegate {
	public:
	virtual ~SecurityDelegate() {}

	// Creates access token for the given scope, user id and \|time\|.
	virtual bool CreateAccessToken(AuthType auth_type,
	const std::string& auth_code,
	AuthScope desired_scope,
	std::string* access_token,
	AuthScope* granted_scope,
	base::TimeDelta* ttl,
	ErrorPtr* error) = 0;

	// Validates \|token\| and returns scope, user id parsed from that.
	virtual bool ParseAccessToken(const std::string& token,
	UserInfo* user_info,
	ErrorPtr* error) const = 0;

	// Returns list of pairing methods by device.
	virtual std::set<PairingType> GetPairingTypes() const = 0;

	// Returns list of crypto methods supported by devices.
	virtual std::set<CryptoType> GetCryptoTypes() const = 0;

	// Returns list of auth methods supported by devices.
	virtual std::set<AuthType> GetAuthTypes() const = 0;

	// Returns Root Client Authorization Token.
	virtual std::string ClaimRootClientAuthToken(ErrorPtr* error) = 0;

	// Confirms pending token claim or checks that token is valid for the active
	// secret.
	virtual bool ConfirmClientAuthToken(const std::string& token,
	ErrorPtr* error) = 0;

	virtual bool StartPairing(PairingType mode,
	CryptoType crypto,
	std::string* session_id,
	std::string* device_commitment,
	ErrorPtr* error) = 0;

	virtual bool ConfirmPairing(const std::string& session_id,
	const std::string& client_commitment,
	std::string* fingerprint,
	std::string* signature,
	ErrorPtr* error) = 0;

	virtual bool CancelPairing(const std::string& session_id,
	ErrorPtr* error) = 0;

	virtual std::string CreateSessionId() = 0;
	};

	} // namespace privet
	} // namespace weave

	#endif // LIBWEAVE_SRC_PRIVET_SECURITY_DELEGATE_H_