87 lines
2.9 KiB
C++
87 lines
2.9 KiB
C++
// Copyright 2019 The Chromium Authors
|
|
// Use of this source code is governed by a BSD-style license that can be
|
|
// found in the LICENSE file.
|
|
|
|
#ifndef NET_HTTP_HTTP_AUTH_NTLM_MECHANISM_H_
|
|
#define NET_HTTP_HTTP_AUTH_NTLM_MECHANISM_H_
|
|
|
|
#include <stdint.h>
|
|
|
|
#include <string>
|
|
|
|
#include "net/base/auth.h"
|
|
#include "net/base/net_export.h"
|
|
#include "net/http/http_auth_mechanism.h"
|
|
#include "net/ntlm/ntlm_client.h"
|
|
|
|
namespace net {
|
|
|
|
class NET_EXPORT_PRIVATE HttpAuthNtlmMechanism : public HttpAuthMechanism {
|
|
public:
|
|
explicit HttpAuthNtlmMechanism(const HttpAuthPreferences* preferences);
|
|
~HttpAuthNtlmMechanism() override;
|
|
|
|
HttpAuthNtlmMechanism(const HttpAuthNtlmMechanism&) = delete;
|
|
HttpAuthNtlmMechanism& operator=(const HttpAuthNtlmMechanism&) = delete;
|
|
|
|
// A function that returns the time as the number of 100 nanosecond ticks
|
|
// since Jan 1, 1601 (UTC).
|
|
using GetMSTimeProc = uint64_t (*)();
|
|
|
|
// A function that generates n random bytes in the output buffer.
|
|
using GenerateRandomProc = void (*)(uint8_t* output, size_t n);
|
|
|
|
// A function that returns the local host name. Returns an empty string if
|
|
// the local host name is not available.
|
|
using HostNameProc = std::string (*)();
|
|
|
|
// For unit tests to override and restore the GenerateRandom and
|
|
// GetHostName functions.
|
|
class ScopedProcSetter {
|
|
public:
|
|
ScopedProcSetter(GetMSTimeProc ms_time_proc,
|
|
GenerateRandomProc random_proc,
|
|
HostNameProc host_name_proc);
|
|
~ScopedProcSetter();
|
|
|
|
ScopedProcSetter(const ScopedProcSetter&) = delete;
|
|
ScopedProcSetter& operator=(const ScopedProcSetter&) = delete;
|
|
|
|
private:
|
|
GetMSTimeProc old_ms_time_proc_;
|
|
GenerateRandomProc old_random_proc_;
|
|
HostNameProc old_host_name_proc_;
|
|
};
|
|
|
|
// HttpAuthMechanism
|
|
bool Init(const NetLogWithSource& net_log) override;
|
|
bool NeedsIdentity() const override;
|
|
bool AllowsExplicitCredentials() const override;
|
|
HttpAuth::AuthorizationResult ParseChallenge(
|
|
HttpAuthChallengeTokenizer* tok) override;
|
|
int GenerateAuthToken(const AuthCredentials* credentials,
|
|
const std::string& spn,
|
|
const std::string& channel_bindings,
|
|
std::string* auth_token,
|
|
const NetLogWithSource& net_log,
|
|
CompletionOnceCallback callback) override;
|
|
void SetDelegation(HttpAuth::DelegationType delegation_type) override;
|
|
|
|
private:
|
|
ntlm::NtlmClient ntlm_client_;
|
|
|
|
// Decoded authentication token that the server returned as part of an NTLM
|
|
// challenge.
|
|
std::string challenge_token_;
|
|
|
|
// Keep track of whether we sent the negotiate token. While it is still spec
|
|
// compliant to respond to any challenge without a token with a negotiate
|
|
// token, this mechanism considers it an error to respond to a negotiate token
|
|
// with an empty token.
|
|
bool first_token_sent_ = false;
|
|
};
|
|
|
|
} // namespace net
|
|
|
|
#endif // NET_HTTP_HTTP_AUTH_NTLM_MECHANISM_H_
|