-rw-r--r-- | include/opkele/basic_op.h | 3 | ||||
-rw-r--r-- | include/opkele/extension.h | 8 | ||||
-rw-r--r-- | include/opkele/verify_op.h | 10 |
3 files changed, 21 insertions, 0 deletions
diff --git a/include/opkele/basic_op.h b/include/opkele/basic_op.h index a0f0af0..0e3231d 100644 --- a/include/opkele/basic_op.h +++ b/include/opkele/basic_op.h | |||
@@ -1,42 +1,45 @@ | |||
1 | #ifndef __OPKELE_BASIC_OP_H | 1 | #ifndef __OPKELE_BASIC_OP_H |
2 | #define __OPKELE_BASIC_OP_H | 2 | #define __OPKELE_BASIC_OP_H |
3 | 3 | ||
4 | #include <string> | 4 | #include <string> |
5 | #include <opkele/types.h> | 5 | #include <opkele/types.h> |
6 | #include <opkele/extension.h> | 6 | #include <opkele/extension.h> |
7 | 7 | ||
8 | namespace opkele { | 8 | namespace opkele { |
9 | using std::string; | 9 | using std::string; |
10 | 10 | ||
11 | /** | ||
12 | * Implementation of basic OP functionality | ||
13 | */ | ||
11 | class basic_OP { | 14 | class basic_OP { |
12 | public: | 15 | public: |
13 | /** | 16 | /** |
14 | * The request mode for the request being processed | 17 | * The request mode for the request being processed |
15 | */ | 18 | */ |
16 | mode_t mode; | 19 | mode_t mode; |
17 | /** | 20 | /** |
18 | * association used in transaction. reset in case of dumb operation | 21 | * association used in transaction. reset in case of dumb operation |
19 | */ | 22 | */ |
20 | assoc_t assoc; | 23 | assoc_t assoc; |
21 | /** | 24 | /** |
22 | * true if the request is openid2 request | 25 | * true if the request is openid2 request |
23 | */ | 26 | */ |
24 | bool openid2; | 27 | bool openid2; |
25 | /** | 28 | /** |
26 | * The return_to RP endpoint | 29 | * The return_to RP endpoint |
27 | */ | 30 | */ |
28 | string return_to; | 31 | string return_to; |
29 | /** | 32 | /** |
30 | * The realm we authenticate for | 33 | * The realm we authenticate for |
31 | */ | 34 | */ |
32 | string realm; | 35 | string realm; |
33 | /** | 36 | /** |
34 | * Claimed identifier | 37 | * Claimed identifier |
35 | */ | 38 | */ |
36 | string claimed_id; | 39 | string claimed_id; |
37 | /** | 40 | /** |
38 | * The OP-Local identifier | 41 | * The OP-Local identifier |
39 | */ | 42 | */ |
40 | string identity; | 43 | string identity; |
41 | /** | 44 | /** |
42 | * The invalidate handle for the reply request | 45 | * The invalidate handle for the reply request |
diff --git a/include/opkele/extension.h b/include/opkele/extension.h index 37bcb90..38f61e3 100644 --- a/include/opkele/extension.h +++ b/include/opkele/extension.h | |||
@@ -15,47 +15,55 @@ namespace opkele { | |||
15 | * OpenID extension hooks base class | 15 | * OpenID extension hooks base class |
16 | */ | 16 | */ |
17 | class extension_t { | 17 | class extension_t { |
18 | public: | 18 | public: |
19 | 19 | ||
20 | virtual ~extension_t() { } | 20 | virtual ~extension_t() { } |
21 | 21 | ||
22 | /** | 22 | /** |
23 | * hook called by RP before submitting the message to OP. | 23 | * hook called by RP before submitting the message to OP. |
24 | * @param om openid message to be submit | 24 | * @param om openid message to be submit |
25 | */ | 25 | */ |
26 | virtual void rp_checkid_hook(basic_openid_message& om); | 26 | virtual void rp_checkid_hook(basic_openid_message& om); |
27 | 27 | ||
28 | /** | 28 | /** |
29 | * hook called by RP after verifying information received from OP. | 29 | * hook called by RP after verifying information received from OP. |
30 | * @param om openid message received | 30 | * @param om openid message received |
31 | * @param sp signed part of the message | 31 | * @param sp signed part of the message |
32 | */ | 32 | */ |
33 | virtual void rp_id_res_hook(const basic_openid_message& om, | 33 | virtual void rp_id_res_hook(const basic_openid_message& om, |
34 | const basic_openid_message& sp); | 34 | const basic_openid_message& sp); |
35 | 35 | ||
36 | /** | 36 | /** |
37 | * hook called by OP after parsing incoming message | 37 | * hook called by OP after parsing incoming message |
38 | * @param inm message received from RP | 38 | * @param inm message received from RP |
39 | */ | 39 | */ |
40 | virtual void op_checkid_hook(const basic_openid_message& inm); | 40 | virtual void op_checkid_hook(const basic_openid_message& inm); |
41 | /** | 41 | /** |
42 | * hook called by OP before signing the reply to RP | 42 | * hook called by OP before signing the reply to RP |
43 | * @param oum message to be sent to RP | 43 | * @param oum message to be sent to RP |
44 | */ | 44 | */ |
45 | virtual void op_id_res_hook(basic_openid_message& oum); | 45 | virtual void op_id_res_hook(basic_openid_message& oum); |
46 | 46 | ||
47 | /** | ||
48 | * @name deprecated hooks, used by the deprecated consumer_t and | ||
49 | * server_t implementations | ||
50 | * @{ | ||
51 | */ | ||
47 | virtual void checkid_hook(basic_openid_message& om) OPKELE_DEPRECATE; | 52 | virtual void checkid_hook(basic_openid_message& om) OPKELE_DEPRECATE; |
48 | virtual void id_res_hook(const basic_openid_message& om, | 53 | virtual void id_res_hook(const basic_openid_message& om, |
49 | const basic_openid_message& sp) OPKELE_DEPRECATE; | 54 | const basic_openid_message& sp) OPKELE_DEPRECATE; |
50 | virtual void checkid_hook(const basic_openid_message& inm,basic_openid_message& oum); | 55 | virtual void checkid_hook(const basic_openid_message& inm,basic_openid_message& oum); |
56 | /** | ||
57 | * @} | ||
58 | */ | ||
51 | 59 | ||
52 | /** | 60 | /** |
53 | * Casts the object to pointer to itself. For convenient passing | 61 | * Casts the object to pointer to itself. For convenient passing |
54 | * of pointer. | 62 | * of pointer. |
55 | */ | 63 | */ |
56 | operator extension_t*(void) { return this; } | 64 | operator extension_t*(void) { return this; } |
57 | }; | 65 | }; |
58 | 66 | ||
59 | } | 67 | } |
60 | 68 | ||
61 | #endif /* __OPKELE_EXTENSION_H */ | 69 | #endif /* __OPKELE_EXTENSION_H */ |
diff --git a/include/opkele/verify_op.h b/include/opkele/verify_op.h index 6c3c386..6b94240 100644 --- a/include/opkele/verify_op.h +++ b/include/opkele/verify_op.h | |||
@@ -1,16 +1,26 @@ | |||
1 | #ifndef __OPKELE_VERIFY_OP_H | 1 | #ifndef __OPKELE_VERIFY_OP_H |
2 | #define __OPKELE_VERIFY_OP_H | 2 | #define __OPKELE_VERIFY_OP_H |
3 | 3 | ||
4 | #include <opkele/basic_op.h> | 4 | #include <opkele/basic_op.h> |
5 | 5 | ||
6 | namespace opkele { | 6 | namespace opkele { |
7 | 7 | ||
8 | /** | ||
9 | * The OP implementation that does discovery verification on RP | ||
10 | */ | ||
8 | class verify_op : public basic_OP { | 11 | class verify_op : public basic_OP { |
9 | public: | 12 | public: |
10 | 13 | ||
14 | /** | ||
15 | * In addition to basic_OP::verify_return_to() functionality this | ||
16 | * implementation does the discovery on RP to see if return_to matches | ||
17 | * the realm | ||
18 | * @throw bad_return_to in case we fail to discover corresponding | ||
19 | * service endpoint | ||
20 | */ | ||
11 | void verify_return_to(); | 21 | void verify_return_to(); |
12 | }; | 22 | }; |
13 | 23 | ||
14 | } | 24 | } |
15 | 25 | ||
16 | #endif /* __OPKELE_VERIFY_OP_H */ | 26 | #endif /* __OPKELE_VERIFY_OP_H */ |