api/3.0/qgsauthsslconfigwidget_8cpp_source.html

 /***************************************************************************
     qgsauthsslconfigwidget.cpp
     ---------------------
     begin                : May 17, 2015
     copyright            : (C) 2015 by Boundless Spatial, Inc. USA
     author               : Larry Shaffer
     email                : lshaffer at boundlessgeo dot com
  ***************************************************************************
  *                                                                         *
  *   This program is free software; you can redistribute it and/or modify  *
  *   it under the terms of the GNU General Public License as published by  *
  *   the Free Software Foundation; either version 2 of the License, or     *
  *   (at your option) any later version.                                   *
  *                                                                         *
  ***************************************************************************/

 #include "qgsauthsslconfigwidget.h"
 #include "qgsauthcertificateinfo.h"

 #include <QDialogButtonBox>
 #include <QPushButton>
 #include <QSpinBox>
 #include <QUrl>

 #include "qgsauthguiutils.h"
 #include "qgsauthmanager.h"
 #include "qgslogger.h"
 #include "qgsapplication.h"


 static void setItemBold_( QTreeWidgetItem *item )
 {
   item->setFirstColumnSpanned( true );
   QFont secf( item->font( 0 ) );
   secf.setBold( true );
   item->setFont( 0, secf );
 }

 static const QString configFoundText_() { return QObject::tr( "Configuration loaded from database" ); }
 static const QString configNotFoundText_() { return QObject::tr( "Configuration not found in database" ); }

 QgsAuthSslConfigWidget::QgsAuthSslConfigWidget( QWidget *parent,
     const QSslCertificate &cert,
     const QString &hostport,
     const QList<QSslCertificate> &connectionCAs )
   : QWidget( parent )
   , mCert( nullptr )
   , mConnectionCAs( connectionCAs )
 {
   if ( QgsApplication::authManager()->isDisabled() )
   {
     mDisabled = true;
     mAuthNotifyLayout = new QVBoxLayout;
     this->setLayout( mAuthNotifyLayout );
     mAuthNotify = new QLabel( QgsApplication::authManager()->disabledMessage(), this );
     mAuthNotifyLayout->addWidget( mAuthNotify );
   }
   else
   {
     setupUi( this );
     connect( btnCertInfo, &QToolButton::clicked, this, &QgsAuthSslConfigWidget::btnCertInfo_clicked );

     connect( grpbxSslConfig, &QGroupBox::toggled, this, &QgsAuthSslConfigWidget::configEnabledChanged );
     connect( this, &QgsAuthSslConfigWidget::configEnabledChanged, this, &QgsAuthSslConfigWidget::readyToSave );
     connect( this, &QgsAuthSslConfigWidget::hostPortValidityChanged, this, &QgsAuthSslConfigWidget::readyToSave );

     setUpSslConfigTree();

     lblLoadedConfig->setVisible( false );
     lblLoadedConfig->clear();

     connect( leHost, &QLineEdit::textChanged,
              this, &QgsAuthSslConfigWidget::validateHostPortText );

     if ( !cert.isNull() )
     {
       setSslCertificate( cert, hostport );
     }
   }
 }

 QGroupBox *QgsAuthSslConfigWidget::certificateGroupBox()
 {
   if ( mDisabled )
   {
     return nullptr;
   }
   return grpbxCert;
 }

 QGroupBox *QgsAuthSslConfigWidget::sslConfigGroupBox()
 {
   if ( mDisabled )
   {
     return nullptr;
   }
   return grpbxSslConfig;
 }

 // private
 QTreeWidgetItem *QgsAuthSslConfigWidget::addRootItem( const QString &label )
 {
   QTreeWidgetItem *item = new QTreeWidgetItem(
     QStringList() << label,
     ( int )ConfigParent );
   setItemBold_( item );
   item->setTextAlignment( 0, Qt::AlignVCenter );
   item->setFlags( item->flags() & ~Qt::ItemIsSelectable );
   treeSslConfig->insertTopLevelItem( treeSslConfig->topLevelItemCount(), item );

   return item;
 }

 void QgsAuthSslConfigWidget::setUpSslConfigTree()
 {
   treeSslConfig->setColumnCount( 1 );

   // add config field names
   mProtocolItem = addRootItem( tr( "Protocol" ) );
   mProtocolCmbBx = new QComboBox( treeSslConfig );
   mProtocolCmbBx->addItem( QgsAuthCertUtils::getSslProtocolName( QSsl::SecureProtocols ),
                            ( int )QSsl::SecureProtocols );
   mProtocolCmbBx->addItem( QgsAuthCertUtils::getSslProtocolName( QSsl::TlsV1SslV3 ),
                            ( int )QSsl::TlsV1SslV3 );
   mProtocolCmbBx->addItem( QgsAuthCertUtils::getSslProtocolName( QSsl::TlsV1 ),
                            ( int )QSsl::TlsV1 );
   mProtocolCmbBx->addItem( QgsAuthCertUtils::getSslProtocolName( QSsl::SslV3 ),
                            ( int )QSsl::SslV3 );
   mProtocolCmbBx->addItem( QgsAuthCertUtils::getSslProtocolName( QSsl::SslV2 ),
                            ( int )QSsl::SslV2 );
   mProtocolCmbBx->setMaximumWidth( 300 );
   mProtocolCmbBx->setCurrentIndex( 0 );
   QTreeWidgetItem *protocolitem = new QTreeWidgetItem(
     mProtocolItem,
     QStringList() << QLatin1String( "" ),
     ( int )ConfigItem );
   protocolitem->setFlags( protocolitem->flags() & ~Qt::ItemIsSelectable );
   treeSslConfig->setItemWidget( protocolitem, 0, mProtocolCmbBx );
   mProtocolItem->setExpanded( true );

   mVerifyModeItem = addRootItem( tr( "Peer verification" ) );
   mVerifyPeerCmbBx = new QComboBox( treeSslConfig );
   mVerifyPeerCmbBx->addItem( tr( "Verify peer certs" ),
                              ( int )QSslSocket::VerifyPeer );
   mVerifyPeerCmbBx->addItem( tr( "Do not verify peer certs" ),
                              ( int )QSslSocket::VerifyNone );
   mVerifyPeerCmbBx->setMaximumWidth( 300 );
   mVerifyPeerCmbBx->setCurrentIndex( 0 );
   QTreeWidgetItem *peerverifycmbxitem = new QTreeWidgetItem(
     mVerifyModeItem,
     QStringList() << QLatin1String( "" ),
     ( int )ConfigItem );
   peerverifycmbxitem->setFlags( peerverifycmbxitem->flags() & ~Qt::ItemIsSelectable );
   treeSslConfig->setItemWidget( peerverifycmbxitem, 0, mVerifyPeerCmbBx );
   mVerifyModeItem->setExpanded( true );

   mVerifyDepthItem = addRootItem( tr( "Peer verification depth (0 = complete cert chain)" ) );
   mVerifyDepthSpnBx = new QSpinBox( treeSslConfig );
   mVerifyDepthSpnBx->setMinimum( 0 );
   mVerifyDepthSpnBx->setMaximum( 10 );
   mVerifyDepthSpnBx->setMaximumWidth( 200 );
   mVerifyDepthSpnBx->setAlignment( Qt::AlignHCenter );
   QTreeWidgetItem *peerverifyspnbxitem = new QTreeWidgetItem(
     mVerifyDepthItem,
     QStringList() << QLatin1String( "" ),
     ( int )ConfigItem );
   peerverifyspnbxitem->setFlags( peerverifyspnbxitem->flags() & ~Qt::ItemIsSelectable );
   treeSslConfig->setItemWidget( peerverifyspnbxitem, 0, mVerifyDepthSpnBx );
   mVerifyDepthItem->setExpanded( true );

   mIgnoreErrorsItem = addRootItem( tr( "Ignore errors" ) );

   QList<QPair<QSslError::SslError, QString> > errenums = QgsAuthCertUtils::sslErrorEnumStrings();
   for ( int i = 0; i < errenums.size(); i++ )
   {
     QTreeWidgetItem *item = new QTreeWidgetItem(
       mIgnoreErrorsItem,
       QStringList() << errenums.at( i ).second,
       ( int )ConfigItem );
     item->setCheckState( 0, Qt::Unchecked );
     item->setTextAlignment( 0, Qt::AlignVCenter );
     item->setFlags( item->flags() & ~Qt::ItemIsSelectable );
     item->setData( 0, Qt::UserRole, errenums.at( i ).first );
   }
   mIgnoreErrorsItem->setExpanded( true );
 }

 const QgsAuthConfigSslServer QgsAuthSslConfigWidget::sslCustomConfig()
 {
   QgsAuthConfigSslServer config;
   if ( mDisabled )
   {
     return config;
   }
   config.setSslCertificate( mCert );
   config.setSslHostPort( leHost->text() );
   config.setSslProtocol( sslProtocol() );
   config.setSslIgnoredErrorEnums( sslIgnoreErrorEnums() );
   config.setSslPeerVerifyMode( sslPeerVerifyMode() );
   config.setSslPeerVerifyDepth( sslPeerVerifyDepth() );
   return config;
 }

 const QSslCertificate QgsAuthSslConfigWidget::sslCertificate()
 {
   if ( mDisabled )
   {
     return QSslCertificate();
   }
   return mCert;
 }

 const QString QgsAuthSslConfigWidget::sslHost()
 {
   if ( mDisabled )
   {
     return QString();
   }
   return leHost->text();
 }

 void QgsAuthSslConfigWidget::enableSslCustomOptions( bool enable )
 {
   if ( mDisabled )
   {
     return;
   }
   if ( grpbxSslConfig->isCheckable() )
   {
     grpbxSslConfig->setChecked( enable );
   }
 }

 void QgsAuthSslConfigWidget::setSslCertificate( const QSslCertificate &cert, const QString &hostport )
 {
   if ( mDisabled )
   {
     return;
   }
   if ( cert.isNull() )
   {
     return;
   }
   mCert = cert;

   if ( !hostport.isEmpty() )
   {
     setSslHost( hostport );
   }

   QString sha( QgsAuthCertUtils::shaHexForCert( cert ) );
   QgsAuthConfigSslServer config(
     QgsApplication::authManager()->sslCertCustomConfig( sha, hostport.isEmpty() ? sslHost() : hostport ) );

   emit certFoundInAuthDatabase( !config.isNull() );

   lblLoadedConfig->setVisible( true );
   if ( !config.isNull() )
   {
     loadSslCustomConfig( config );
     leCommonName->setStyleSheet( QgsAuthGuiUtils::greenTextStyleSheet() );
   }
   else
   {
     lblLoadedConfig->setText( configNotFoundText_() );
     leCommonName->setText( QgsAuthCertUtils::resolvedCertName( mCert ) );
     leCommonName->setStyleSheet( QgsAuthGuiUtils::orangeTextStyleSheet() );
   }
   validateHostPortText( leHost->text() );
 }

 void QgsAuthSslConfigWidget::loadSslCustomConfig( const QgsAuthConfigSslServer &config )
 {
   if ( mDisabled )
   {
     return;
   }
   resetSslCertConfig();
   if ( config.isNull() )
   {
     QgsDebugMsg( "Passed-in SSL custom config is null" );
     return;
   }

   QSslCertificate cert( config.sslCertificate() );
   if ( cert.isNull() )
   {
     QgsDebugMsg( "SSL custom config's cert is null" );
     return;
   }

   enableSslCustomOptions( true );
   mCert = cert;
   leCommonName->setText( QgsAuthCertUtils::resolvedCertName( cert ) );
   leHost->setText( config.sslHostPort() );
   setSslIgnoreErrorEnums( config.sslIgnoredErrorEnums() );
   setSslProtocol( config.sslProtocol() );
   setSslPeerVerify( config.sslPeerVerifyMode(), config.sslPeerVerifyDepth() );

   lblLoadedConfig->setVisible( true );
   lblLoadedConfig->setText( configFoundText_() );
 }

 void QgsAuthSslConfigWidget::saveSslCertConfig()
 {
   if ( mDisabled )
   {
     return;
   }
   if ( !QgsApplication::authManager()->storeSslCertCustomConfig( sslCustomConfig() ) )
   {
     QgsDebugMsg( "SSL custom config FAILED to store in authentication database" );
   }
 }

 void QgsAuthSslConfigWidget::resetSslCertConfig()
 {
   if ( mDisabled )
   {
     return;
   }
   mCert.clear();
   mConnectionCAs.clear();
   leCommonName->clear();
   leCommonName->setStyleSheet( QLatin1String( "" ) );
   leHost->clear();

   lblLoadedConfig->setVisible( false );
   lblLoadedConfig->clear();
   resetSslProtocol();
   resetSslIgnoreErrors();
   resetSslPeerVerify();
   enableSslCustomOptions( false );
 }

 QSsl::SslProtocol QgsAuthSslConfigWidget::sslProtocol()
 {
   if ( mDisabled )
   {
     return QSsl::UnknownProtocol;
   }
   return ( QSsl::SslProtocol )mProtocolCmbBx->currentData().toInt();
 }

 void QgsAuthSslConfigWidget::setSslProtocol( QSsl::SslProtocol protocol )
 {
   if ( mDisabled )
   {
     return;
   }
   int indx( mProtocolCmbBx->findData( ( int )protocol ) );
   mProtocolCmbBx->setCurrentIndex( indx );
 }

 void QgsAuthSslConfigWidget::resetSslProtocol()
 {
   if ( mDisabled )
   {
     return;
   }
   mProtocolCmbBx->setCurrentIndex( 0 );
 }

 void QgsAuthSslConfigWidget::appendSslIgnoreErrors( const QList<QSslError> &errors )
 {
   if ( mDisabled )
   {
     return;
   }
   enableSslCustomOptions( true );

   QList<QSslError::SslError> errenums;
   Q_FOREACH ( const QSslError &err, errors )
   {
     errenums << err.error();
   }

   for ( int i = 0; i < mIgnoreErrorsItem->childCount(); i++ )
   {
     QTreeWidgetItem *item( mIgnoreErrorsItem->child( i ) );
     if ( errenums.contains( ( QSslError::SslError )item->data( 0, Qt::UserRole ).toInt() ) )
     {
       item->setCheckState( 0, Qt::Checked );
     }
   }
 }

 void QgsAuthSslConfigWidget::setSslIgnoreErrorEnums( const QList<QSslError::SslError> &errorenums )
 {
   if ( mDisabled )
   {
     return;
   }
   QList<QSslError> errors;
   Q_FOREACH ( QSslError::SslError errorenum, errorenums )
   {
     errors << QSslError( errorenum );
   }
   setSslIgnoreErrors( errors );
 }

 void QgsAuthSslConfigWidget::setSslIgnoreErrors( const QList<QSslError> &errors )
 {
   if ( mDisabled )
   {
     return;
   }
   if ( errors.isEmpty() )
   {
     return;
   }

   enableSslCustomOptions( true );

   QList<QSslError::SslError> errenums;
   Q_FOREACH ( const QSslError &err, errors )
   {
     errenums << err.error();
   }

   for ( int i = 0; i < mIgnoreErrorsItem->childCount(); i++ )
   {
     QTreeWidgetItem *item( mIgnoreErrorsItem->child( i ) );
     bool enable( errenums.contains( ( QSslError::SslError )item->data( 0, Qt::UserRole ).toInt() ) );
     item->setCheckState( 0, enable ? Qt::Checked : Qt::Unchecked );
   }
 }

 void QgsAuthSslConfigWidget::resetSslIgnoreErrors()
 {
   if ( mDisabled )
   {
     return;
   }
   for ( int i = 0; i < mIgnoreErrorsItem->childCount(); i++ )
   {
     mIgnoreErrorsItem->child( i )->setCheckState( 0, Qt::Unchecked );
   }
 }

 const QList<QSslError::SslError> QgsAuthSslConfigWidget::sslIgnoreErrorEnums()
 {
   QList<QSslError::SslError> errs;
   if ( mDisabled )
   {
     return errs;
   }
   for ( int i = 0; i < mIgnoreErrorsItem->childCount(); i++ )
   {
     QTreeWidgetItem *item( mIgnoreErrorsItem->child( i ) );
     if ( item->checkState( 0 ) == Qt::Checked )
     {
       errs.append( ( QSslError::SslError )item->data( 0, Qt::UserRole ).toInt() );
     }
   }
   return errs;
 }

 QSslSocket::PeerVerifyMode QgsAuthSslConfigWidget::sslPeerVerifyMode()
 {
   if ( mDisabled )
   {
     return QSslSocket::AutoVerifyPeer;
   }
   return ( QSslSocket::PeerVerifyMode )mVerifyPeerCmbBx->currentData().toInt();
 }

 int QgsAuthSslConfigWidget::sslPeerVerifyDepth()
 {
   if ( mDisabled )
   {
     return 0;
   }
   return mVerifyDepthSpnBx->value();
 }

 void QgsAuthSslConfigWidget::setSslPeerVerify( QSslSocket::PeerVerifyMode mode, int modedepth )
 {
   if ( mDisabled )
   {
     return;
   }
   enableSslCustomOptions( true );

   int indx( mVerifyPeerCmbBx->findData( ( int )mode ) );
   mVerifyPeerCmbBx->setCurrentIndex( indx );

   mVerifyDepthSpnBx->setValue( modedepth );
 }

 void QgsAuthSslConfigWidget::resetSslPeerVerify()
 {
   if ( mDisabled )
   {
     return;
   }
   mVerifyPeerCmbBx->setCurrentIndex( 0 );
   mVerifyDepthSpnBx->setValue( 0 );
 }

 bool QgsAuthSslConfigWidget::readyToSave()
 {
   if ( mDisabled )
   {
     return false;
   }
   bool cansave = ( isEnabled()
                    && ( grpbxSslConfig->isCheckable() ? grpbxSslConfig->isChecked() : true )
                    && validateHostPort( leHost->text() ) );
   if ( mCanSave != cansave )
   {
     mCanSave = cansave;
     emit readyToSaveChanged( cansave );
   }
   return cansave;
 }

 void QgsAuthSslConfigWidget::setSslHost( const QString &host )
 {
   if ( mDisabled )
   {
     return;
   }
   leHost->setText( host );
 }

 bool QgsAuthSslConfigWidget::validateHostPort( const QString &txt )
 {
   QString hostport( txt );
   if ( hostport.isEmpty() )
   {
     return false;
   }

   // TODO: add QRegex checks against valid IP and domain.tld input
   //       i.e., currently accepts unlikely (though maybe valid) host:port combo, like 'a:1'
   QString urlbase( QStringLiteral( "https://%1" ).arg( hostport ) );
   QUrl url( urlbase );
   return ( !url.host().isEmpty() && QString::number( url.port() ).size() > 0
            && QStringLiteral( "https://%1:%2" ).arg( url.host() ).arg( url.port() ) == urlbase );
 }

 void QgsAuthSslConfigWidget::validateHostPortText( const QString &txt )
 {
   if ( mDisabled )
   {
     return;
   }
   bool valid = validateHostPort( txt );
   leHost->setStyleSheet( valid ? QgsAuthGuiUtils::greenTextStyleSheet()
                          : QgsAuthGuiUtils::redTextStyleSheet() );
   emit hostPortValidityChanged( valid );
 }

 void QgsAuthSslConfigWidget::setConfigCheckable( bool checkable )
 {
   if ( mDisabled )
   {
     return;
   }
   grpbxSslConfig->setCheckable( checkable );
   if ( !checkable )
   {
     grpbxSslConfig->setEnabled( true );
   }
 }

 void QgsAuthSslConfigWidget::btnCertInfo_clicked()
 {
   if ( mCert.isNull() )
   {
     return;
   }

   QgsAuthCertInfoDialog *dlg = new QgsAuthCertInfoDialog( mCert, false, this, mConnectionCAs );
   dlg->setWindowModality( Qt::WindowModal );
   dlg->resize( 675, 500 );
   dlg->exec();
   dlg->deleteLater();
 }


 QgsAuthSslConfigDialog::QgsAuthSslConfigDialog( QWidget *parent, const QSslCertificate &cert, const QString &hostport )
   : QDialog( parent )

 {
   setWindowTitle( tr( "Custom Certificate Configuration" ) );
   QVBoxLayout *layout = new QVBoxLayout( this );
   layout->setMargin( 6 );

   mSslConfigWdgt = new QgsAuthSslConfigWidget( this, cert, hostport );
   connect( mSslConfigWdgt, &QgsAuthSslConfigWidget::readyToSaveChanged,
            this, &QgsAuthSslConfigDialog::checkCanSave );
   layout->addWidget( mSslConfigWdgt );

   QDialogButtonBox *buttonBox = new QDialogButtonBox(
     QDialogButtonBox::Close | QDialogButtonBox::Save, Qt::Horizontal, this );

   buttonBox->button( QDialogButtonBox::Close )->setDefault( true );
   mSaveButton = buttonBox->button( QDialogButtonBox::Save );
   connect( buttonBox, &QDialogButtonBox::rejected, this, &QWidget::close );
   connect( buttonBox, &QDialogButtonBox::accepted, this, &QgsAuthSslConfigDialog::accept );
   layout->addWidget( buttonBox );

   setLayout( layout );
   mSaveButton->setEnabled( mSslConfigWdgt->readyToSave() );
 }

 void QgsAuthSslConfigDialog::accept()
 {
   mSslConfigWdgt->saveSslCertConfig();
   QDialog::accept();
 }

 void QgsAuthSslConfigDialog::checkCanSave( bool cansave )
 {
   mSaveButton->setEnabled( cansave );
 }
QgsAuthConfigSslServer::isNull
bool isNull() const
Whether configuration is null (missing components)
Definition: qgsauthconfig.cpp:386

QgsAuthSslConfigWidget::resetSslProtocol
void resetSslProtocol()
Reset the SSL protocol to use in connections to the default.
Definition: qgsauthsslconfigwidget.cpp:355

qgsauthmanager.h

QgsAuthSslConfigWidget::sslProtocol
QSsl::SslProtocol sslProtocol()
Get the SSL protocl used for connections.
Definition: qgsauthsslconfigwidget.cpp:336

QgsAuthConfigSslServer::sslPeerVerifyDepth
int sslPeerVerifyDepth() const
Number or SSL client&#39;s peer to verify in connections.
Definition: qgsauthconfig.h:408

QgsDebugMsg
#define QgsDebugMsg(str)
Definition: qgslogger.h:38

qgsauthcertificateinfo.h

QgsAuthSslConfigWidget::sslConfigGroupBox
QGroupBox * sslConfigGroupBox()
Access to the SSL configuration&#39;s group box widget.
Definition: qgsauthsslconfigwidget.cpp:91

QgsAuthConfigSslServer
Configuration container for SSL server connection exceptions or overrides.
Definition: qgsauthconfig.h:371

QgsAuthSslConfigWidget::enableSslCustomOptions
void enableSslCustomOptions(bool enable)
Enable or disable the custom options widget.
Definition: qgsauthsslconfigwidget.cpp:222

qgsauthsslconfigwidget.h

QgsAuthSslConfigWidget::resetSslCertConfig
void resetSslCertConfig()
Clear the current SSL server configuration and disabled it.
Definition: qgsauthsslconfigwidget.cpp:316

QgsAuthSslConfigWidget::certificateGroupBox
QGroupBox * certificateGroupBox()
Access to the certificate&#39;s group box widget.
Definition: qgsauthsslconfigwidget.cpp:82

QgsAuthConfigSslServer::sslProtocol
QSsl::SslProtocol sslProtocol() const
SSL server protocol to use in connections.
Definition: qgsauthconfig.h:388

QgsAuthSslConfigWidget::sslPeerVerifyDepth
int sslPeerVerifyDepth()
Get the client&#39;s peer verify depth for connections.
Definition: qgsauthsslconfigwidget.cpp:468

QgsAuthConfigSslServer::sslPeerVerifyMode
QSslSocket::PeerVerifyMode sslPeerVerifyMode() const
SSL client&#39;s peer verify mode to use in connections.
Definition: qgsauthconfig.h:400

QgsAuthConfigSslServer::setSslPeerVerifyMode
void setSslPeerVerifyMode(QSslSocket::PeerVerifyMode mode)
Set SSL client&#39;s peer verify mode to use in connections.
Definition: qgsauthconfig.h:402

QgsAuthSslConfigWidget::resetSslPeerVerify
void resetSslPeerVerify()
Reset the client&#39;s peer verify mode for connections to default.
Definition: qgsauthsslconfigwidget.cpp:491

QgsAuthSslConfigWidget::certFoundInAuthDatabase
void certFoundInAuthDatabase(bool found)
Emitted when an certificate of same SHA hash is found in authentication database. ...

QgsAuthSslConfigWidget::setSslProtocol
void setSslProtocol(QSsl::SslProtocol protocol)
Set the SSL protocol to use in connections.
Definition: qgsauthsslconfigwidget.cpp:345

QgsAuthSslConfigWidget::QgsAuthSslConfigWidget
QgsAuthSslConfigWidget(QWidget *parent=nullptr, const QSslCertificate &cert=QSslCertificate(), const QString &hostport=QString(), const QList< QSslCertificate > &connectionCAs=QList< QSslCertificate >())
Construct a widget for editing an SSL server certificate configuration.
Definition: qgsauthsslconfigwidget.cpp:42

QgsAuthCertInfoDialog
Dialog wrapper for widget displaying detailed info on a certificate and its hierarchical trust chain...
Definition: qgsauthcertificateinfo.h:145

QgsAuthGuiUtils::greenTextStyleSheet
static QString greenTextStyleSheet(const QString &selector="*")
Green text stylesheet representing valid, trusted, etc. certificate.
Definition: qgsauthguiutils.cpp:51

QgsAuthSslConfigWidget::validateHostPortText
void validateHostPortText(const QString &txt)
Parse string for host:port.
Definition: qgsauthsslconfigwidget.cpp:543

QgsAuthSslConfigWidget::configEnabledChanged
void configEnabledChanged(bool enabled)
Emitted when the enabled state of the configuration changes.

QgsAuthSslConfigWidget::sslHost
const QString sslHost()
Get the host:port to associate with the server certificate.
Definition: qgsauthsslconfigwidget.cpp:213

qgsapplication.h

QgsAuthSslConfigDialog::QgsAuthSslConfigDialog
QgsAuthSslConfigDialog(QWidget *parent=nullptr, const QSslCertificate &cert=QSslCertificate(), const QString &hostport=QString())
Construct wrapper dialog for the SSL config widget.
Definition: qgsauthsslconfigwidget.cpp:585

QgsAuthSslConfigWidget::setSslIgnoreErrors
void setSslIgnoreErrors(const QList< QSslError > &errors)
Set the SSL errors to ignore for the connection.
Definition: qgsauthsslconfigwidget.cpp:402

qgsauthguiutils.h

QgsAuthSslConfigWidget
Widget for editing an SSL server configuration.
Definition: qgsauthsslconfigwidget.h:39

QgsAuthSslConfigWidget::appendSslIgnoreErrors
void appendSslIgnoreErrors(const QList< QSslError > &errors)
Add to SSL errors to ignore for the connection.
Definition: qgsauthsslconfigwidget.cpp:364

QgsAuthSslConfigWidget::setSslCertificate
void setSslCertificate(const QSslCertificate &cert, const QString &hostport=QString())
Set SSl certificate and any associated host:port.
Definition: qgsauthsslconfigwidget.cpp:234

QgsAuthConfigSslServer::sslHostPort
const QString sslHostPort() const
Server host:port string.
Definition: qgsauthconfig.h:383

QgsAuthConfigSslServer::sslIgnoredErrorEnums
const QList< QSslError::SslError > sslIgnoredErrorEnums() const
SSL server errors (as enum list) to ignore in connections.
Definition: qgsauthconfig.h:395

QgsAuthConfigSslServer::setSslHostPort
void setSslHostPort(const QString &hostport)
Set server host:port string.
Definition: qgsauthconfig.h:385

QgsAuthSslConfigWidget::setSslIgnoreErrorEnums
void setSslIgnoreErrorEnums(const QList< QSslError::SslError > &errorenums)
Set the SSL errors (as enums) to ignore for the connection.
Definition: qgsauthsslconfigwidget.cpp:388

QgsAuthSslConfigWidget::setConfigCheckable
void setConfigCheckable(bool checkable)
Set whether the config group box is checkable.
Definition: qgsauthsslconfigwidget.cpp:555

QgsAuthCertUtils::getSslProtocolName
static QString getSslProtocolName(QSsl::SslProtocol protocol)
SSL Protocol name strings per enum.
Definition: qgsauthcertutils.cpp:36

QgsAuthSslConfigWidget::setSslPeerVerify
void setSslPeerVerify(QSslSocket::PeerVerifyMode mode, int modedepth)
Set the client&#39;s peer verify mode for connections.
Definition: qgsauthsslconfigwidget.cpp:477

QgsAuthConfigSslServer::setSslProtocol
void setSslProtocol(QSsl::SslProtocol protocol)
Set SSL server protocol to use in connections.
Definition: qgsauthconfig.h:390

QgsAuthCertUtils::shaHexForCert
static QString shaHexForCert(const QSslCertificate &cert, bool formatted=false)
Get the sha1 hash for certificate.
Definition: qgsauthcertutils.cpp:738

QgsApplication::authManager
static QgsAuthManager * authManager()
Returns the application&#39;s authentication manager instance.
Definition: qgsapplication.cpp:1025

QgsAuthSslConfigWidget::hostPortValidityChanged
void hostPortValidityChanged(bool valid)
Emitted when the validity of the host:port changes.

QgsAuthSslConfigWidget::resetSslIgnoreErrors
void resetSslIgnoreErrors()
Clear the SSL errors to ignore for the connection.
Definition: qgsauthsslconfigwidget.cpp:429

QgsAuthGuiUtils::redTextStyleSheet
static QString redTextStyleSheet(const QString &selector="*")
Red text stylesheet representing invalid, untrusted, etc. certificate.
Definition: qgsauthguiutils.cpp:61

QgsAuthSslConfigWidget::readyToSave
bool readyToSave()
Verify if the configuration if ready to save.
Definition: qgsauthsslconfigwidget.cpp:501

QgsAuthConfigSslServer::sslCertificate
const QSslCertificate sslCertificate() const
Server certificate object.
Definition: qgsauthconfig.h:378

QgsAuthSslConfigWidget::loadSslCustomConfig
void loadSslCustomConfig(const QgsAuthConfigSslServer &config=QgsAuthConfigSslServer())
Load an existing SSL server configuration.
Definition: qgsauthsslconfigwidget.cpp:272

QgsAuthConfigSslServer::setSslIgnoredErrorEnums
void setSslIgnoredErrorEnums(const QList< QSslError::SslError > &errors)
Set SSL server errors (as enum list) to ignore in connections.
Definition: qgsauthconfig.h:397

QgsAuthSslConfigWidget::setSslHost
void setSslHost(const QString &host)
Set the host of the server.
Definition: qgsauthsslconfigwidget.cpp:518

QgsAuthSslConfigWidget::sslCertificate
const QSslCertificate sslCertificate()
Get the SSL server certificate.
Definition: qgsauthsslconfigwidget.cpp:204

QgsAuthSslConfigWidget::readyToSaveChanged
void readyToSaveChanged(bool cansave)
Emitted when the configuration can be saved changes.

QgsAuthSslConfigWidget::sslPeerVerifyMode
QSslSocket::PeerVerifyMode sslPeerVerifyMode()
Get the client&#39;s peer verify mode for connections.
Definition: qgsauthsslconfigwidget.cpp:459

QgsAuthConfigSslServer::setSslPeerVerifyDepth
void setSslPeerVerifyDepth(int depth)
Set number or SSL client&#39;s peer to verify in connections.
Definition: qgsauthconfig.h:414

QgsAuthSslConfigWidget::saveSslCertConfig
void saveSslCertConfig()
Save the current SSL server configuration to the authentication database.
Definition: qgsauthsslconfigwidget.cpp:304

QgsAuthSslConfigDialog::accept
void accept() override
Definition: qgsauthsslconfigwidget.cpp:611

QgsAuthCertUtils::sslErrorEnumStrings
static QList< QPair< QSslError::SslError, QString > > sslErrorEnumStrings()
Get short strings describing SSL errors.
Definition: qgsauthcertutils.cpp:1209

QgsAuthConfigSslServer::setSslCertificate
void setSslCertificate(const QSslCertificate &cert)
Set server certificate object.
Definition: qgsauthconfig.h:380

QgsAuthCertUtils::resolvedCertName
static QString resolvedCertName(const QSslCertificate &cert, bool issuer=false)
Get the general name via RFC 5280 resolution.
Definition: qgsauthcertutils.cpp:615

QgsAuthSslConfigWidget::sslCustomConfig
const QgsAuthConfigSslServer sslCustomConfig()
Get the SSL configuration.
Definition: qgsauthsslconfigwidget.cpp:188

QgsAuthGuiUtils::orangeTextStyleSheet
static QString orangeTextStyleSheet(const QString &selector="*")
Orange text stylesheet representing loaded component, but not stored in database. ...
Definition: qgsauthguiutils.cpp:56

QgsAuthSslConfigWidget::sslIgnoreErrorEnums
const QList< QSslError::SslError > sslIgnoreErrorEnums()
Get list of the SSL errors (as enums) to be ignored for connections.
Definition: qgsauthsslconfigwidget.cpp:441

qgslogger.h