api/4.0/qgsauthconfig_8h_source.html

/***************************************************************************

    qgsauthconfig.h

    ---------------------

    begin                : October 5, 2014

    copyright            : (C) 2014 by Boundless Spatial, Inc. USA

    author               : Larry Shaffer

    email                : lshaffer at boundlessgeo dot com

 ***************************************************************************

 *                                                                         *

 *   This program is free software; you can redistribute it and/or modify  *

 *   it under the terms of the GNU General Public License as published by  *

 *   the Free Software Foundation; either version 2 of the License, or     *

 *   (at your option) any later version.                                   *

 *                                                                         *

 ***************************************************************************/


#ifndef QGSAUTHCONFIG_H

#define QGSAUTHCONFIG_H


#include "qgis_core.h"

#include "qgis_sip.h"


#include <QDomDocument>

#include <QDomElement>

#include <QHash>

#include <QString>


#ifndef QT_NO_SSL

#include <QSslCertificate>

#include <QSslKey>

#include <QSslError>

#include <QSslSocket>

#endif


#include "qgis.h"


class CORE_EXPORT QgsAuthMethodConfig

{

  public:

    QgsAuthMethodConfig( const QString &method = QString(), int version = 0 );


    // TODO c++20 - replace with = default


    bool operator==( const QgsAuthMethodConfig &other ) const;

    bool operator!=( const QgsAuthMethodConfig &other ) const;


    const QString id() const { return mId; }

    void setId( const QString &id ) { mId = id; }


    const QString name() const { return mName; }

    void setName( const QString &name ) { mName = name; }


    const QString uri() const { return mUri; }

    void setUri( const QString &uri ) { mUri = uri; }


    QString method() const { return mMethod; }

    void setMethod( const QString &method ) { mMethod = method; }


    int version() const { return mVersion; }

    void setVersion( int version ) { mVersion = version; }


    bool isValid( bool validateid = false ) const;


    const QString configString() const;


    void loadConfigString( const QString &configstr );


    QgsStringMap configMap() const { return mConfigMap; }


    void setConfigMap( const QgsStringMap &map ) { mConfigMap = map; }


    void setConfig( const QString &key, const QString &value );


    void setConfigList( const QString &key, const QStringList &value );


    int removeConfig( const QString &key );


    QString config( const QString &key, const QString &defaultvalue = QString() ) const;


    QStringList configList( const QString &key ) const;


    bool hasConfig( const QString &key ) const;


    void clearConfigMap() { mConfigMap.clear(); }


    static bool uriToResource( const QString &accessurl, QString *resource, bool withpath = false );


    bool writeXml( QDomElement &parentElement, QDomDocument &document );


    bool readXml( const QDomElement &element );


  private:

    QString mId;

    QString mName;

    QString mUri;

    QString mMethod;

    int mVersion;


    QgsStringMap mConfigMap;


    static const QString CONFIG_SEP;

    static const QString CONFIG_KEY_SEP;

    static const QString CONFIG_LIST_SEP;


    static const int CONFIG_VERSION;

};


typedef QHash<QString, QgsAuthMethodConfig> QgsAuthMethodConfigsMap;


#ifndef QT_NO_SSL


class CORE_EXPORT QgsPkiBundle

{

  public:

    QgsPkiBundle( const QSslCertificate &clientCert = QSslCertificate(), const QSslKey &clientKey = QSslKey(), const QList<QSslCertificate> &caChain = QList<QSslCertificate>() );


    static const QgsPkiBundle fromPemPaths( const QString &certPath, const QString &keyPath, const QString &keyPass = QString(), const QList<QSslCertificate> &caChain = QList<QSslCertificate>() );


    static const QgsPkiBundle fromPkcs12Paths( const QString &bundlepath, const QString &bundlepass = QString() );


    bool isNull() const;


    bool isValid() const;


    const QString certId() const;


    const QSslCertificate clientCert() const { return mCert; }

    void setClientCert( const QSslCertificate &cert );


    const QSslKey clientKey() const { return mCertKey; }

    void setClientKey( const QSslKey &certkey );


    const QList<QSslCertificate> caChain() const { return mCaChain; }

    void setCaChain( const QList<QSslCertificate> &cachain ) { mCaChain = cachain; }


  private:

    QSslCertificate mCert;

    QSslKey mCertKey;

    QList<QSslCertificate> mCaChain;

};


class CORE_EXPORT QgsPkiConfigBundle

{

  public:

    QgsPkiConfigBundle( const QgsAuthMethodConfig &config, const QSslCertificate &cert, const QSslKey &certkey, const QList<QSslCertificate> &cachain = QList<QSslCertificate>() );


    bool isValid();


    const QgsAuthMethodConfig config() const { return mConfig; }


    void setConfig( const QgsAuthMethodConfig &config ) { mConfig = config; }


    const QSslCertificate clientCert() const { return mCert; }


    void setClientCert( const QSslCertificate &cert ) { mCert = cert; }


    const QSslKey clientCertKey() const { return mCertKey; }


    void setClientCertKey( const QSslKey &certkey ) { mCertKey = certkey; }


    QList<QSslCertificate> caChain() const { return mCaChain; }


    void setCaChain( const QList<QSslCertificate> &caChain ) { mCaChain = caChain; }


  private:

    QgsAuthMethodConfig mConfig;

    QSslCertificate mCert;

    QSslKey mCertKey;

    QList<QSslCertificate> mCaChain;

};


#ifdef SIP_RUN // should not be required, but mingw workflow needs it..

SIP_INSERT_QLIST_ENUM_CONVERSION_CODE( QSslError::SslError, "<QSslError>" );

#endif


class CORE_EXPORT QgsAuthConfigSslServer

{

  public:

    QgsAuthConfigSslServer();


    const QSslCertificate sslCertificate() const { return mSslCert; }

    void setSslCertificate( const QSslCertificate &cert ) { mSslCert = cert; }


    const QString sslHostPort() const { return mSslHostPort; }

    void setSslHostPort( const QString &hostport ) { mSslHostPort = hostport; }


    QSsl::SslProtocol sslProtocol() const { return mSslProtocol; }

    void setSslProtocol( QSsl::SslProtocol protocol ) { mSslProtocol = protocol; }


    const QList<QSslError> sslIgnoredErrors() const;

    const QList<QSslError::SslError> sslIgnoredErrorEnums() const { return mSslIgnoredErrors; }

    void setSslIgnoredErrorEnums( const QList<QSslError::SslError> &errors ) { mSslIgnoredErrors = errors; }


    QSslSocket::PeerVerifyMode sslPeerVerifyMode() const { return mSslPeerVerifyMode; }

    void setSslPeerVerifyMode( QSslSocket::PeerVerifyMode mode ) { mSslPeerVerifyMode = mode; }


    int sslPeerVerifyDepth() const { return mSslPeerVerifyDepth; }


    void setSslPeerVerifyDepth( int depth ) { mSslPeerVerifyDepth = depth; }


    int version() const { return mVersion; }

    void setVersion( int version ) { mVersion = version; }


    int qtVersion() const { return mQtVersion; }

    void setQtVersion( int version ) { mQtVersion = version; }


    const QString configString() const;

    void loadConfigString( const QString &config = QString() );


    bool isNull() const;


  private:

    QString mSslHostPort;

    QSslCertificate mSslCert;


    static QSsl::SslProtocol decodeSslProtocol( const QString &protocol );

    static QString encodeSslProtocol( QSsl::SslProtocol protocol );


    QSsl::SslProtocol mSslProtocol;

    int mQtVersion;

    QList<QSslError::SslError> mSslIgnoredErrors;

    QSslSocket::PeerVerifyMode mSslPeerVerifyMode = QSslSocket::VerifyPeer;

    int mSslPeerVerifyDepth = 0;

    int mVersion = 1;


    static const QString CONF_SEP;

};


#endif


#endif // QGSAUTHCONFIG_H

QgsAuthConfigSslServer::setSslProtocol
void setSslProtocol(QSsl::SslProtocol protocol)
Sets SSL server protocol to use in connections.
Definition qgsauthconfig.h:348

QgsAuthConfigSslServer::setSslCertificate
void setSslCertificate(const QSslCertificate &cert)
Sets server certificate object.
Definition qgsauthconfig.h:338

QgsAuthConfigSslServer::setSslHostPort
void setSslHostPort(const QString &hostport)
Sets server host:port string.
Definition qgsauthconfig.h:343

QgsAuthConfigSslServer::version
int version() const
Version of the configuration (used for future upgrading).
Definition qgsauthconfig.h:375

QgsAuthConfigSslServer::sslProtocol
QSsl::SslProtocol sslProtocol() const
SSL server protocol to use in connections.
Definition qgsauthconfig.h:346

QgsAuthConfigSslServer::setSslPeerVerifyMode
void setSslPeerVerifyMode(QSslSocket::PeerVerifyMode mode)
Sets SSL client's peer verify mode to use in connections.
Definition qgsauthconfig.h:360

QgsAuthConfigSslServer::setVersion
void setVersion(int version)
Sets version of the configuration (used for future upgrading).
Definition qgsauthconfig.h:377

QgsAuthConfigSslServer::setSslPeerVerifyDepth
void setSslPeerVerifyDepth(int depth)
Set number or SSL client's peer to verify in connections.
Definition qgsauthconfig.h:372

QgsAuthConfigSslServer::sslPeerVerifyDepth
int sslPeerVerifyDepth() const
Number or SSL client's peer to verify in connections.
Definition qgsauthconfig.h:366

QgsAuthConfigSslServer::setSslIgnoredErrorEnums
void setSslIgnoredErrorEnums(const QList< QSslError::SslError > &errors)
Sets SSL server errors (as enum list) to ignore in connections.
Definition qgsauthconfig.h:355

QgsAuthConfigSslServer::qtVersion
int qtVersion() const
Qt version when the configuration was made (SSL protocols may differ).
Definition qgsauthconfig.h:380

QgsAuthConfigSslServer::sslIgnoredErrorEnums
const QList< QSslError::SslError > sslIgnoredErrorEnums() const
SSL server errors (as enum list) to ignore in connections.
Definition qgsauthconfig.h:353

QgsAuthConfigSslServer::sslPeerVerifyMode
QSslSocket::PeerVerifyMode sslPeerVerifyMode() const
SSL client's peer verify mode to use in connections.
Definition qgsauthconfig.h:358

QgsAuthConfigSslServer::sslCertificate
const QSslCertificate sslCertificate() const
Server certificate object.
Definition qgsauthconfig.h:336

QgsAuthConfigSslServer::sslHostPort
const QString sslHostPort() const
Server host:port string.
Definition qgsauthconfig.h:341

QgsAuthConfigSslServer::setQtVersion
void setQtVersion(int version)
Sets Qt version when the configuration was made (SSL protocols may differ).
Definition qgsauthconfig.h:382

QgsAuthConfigSslServer::QgsAuthConfigSslServer
QgsAuthConfigSslServer()
Construct a default SSL server configuration.
Definition qgsauthconfig.cpp:341

QgsAuthMethodConfig
Configuration storage class for authentication method configurations.
Definition qgsauthconfig.h:43

QgsAuthMethodConfig::method
QString method() const
Textual key of the associated authentication method.
Definition qgsauthconfig.h:75

QgsAuthMethodConfig::uri
const QString uri() const
A URI to auto-select a config when connecting to a resource.
Definition qgsauthconfig.h:71

QgsAuthMethodConfig::setName
void setName(const QString &name)
Sets name of configuration.
Definition qgsauthconfig.h:68

QgsAuthMethodConfig::setConfigMap
void setConfigMap(const QgsStringMap &map)
Set extended configuration map.
Definition qgsauthconfig.h:108

QgsAuthMethodConfig::setVersion
void setVersion(int version)
Sets version of the configuration.
Definition qgsauthconfig.h:81

QgsAuthMethodConfig::name
const QString name() const
Gets name of configuration.
Definition qgsauthconfig.h:66

QgsAuthMethodConfig::id
const QString id() const
Gets 'authcfg' 7-character alphanumeric ID of the config.
Definition qgsauthconfig.h:61

QgsAuthMethodConfig::clearConfigMap
void clearConfigMap()
Clear all configs.
Definition qgsauthconfig.h:153

QgsAuthMethodConfig::version
int version() const
Gets version of the configuration.
Definition qgsauthconfig.h:79

QgsAuthMethodConfig::configMap
QgsStringMap configMap() const
Gets extended configuration, mapped to key/value pairs of QStrings.
Definition qgsauthconfig.h:102

QgsAuthMethodConfig::QgsAuthMethodConfig
QgsAuthMethodConfig(const QString &method=QString(), int version=0)
Construct a configuration for an authentication method.
Definition qgsauthconfig.cpp:43

QgsAuthMethodConfig::setMethod
void setMethod(const QString &method)
Definition qgsauthconfig.h:76

QgsAuthMethodConfig::setUri
void setUri(const QString &uri)
Definition qgsauthconfig.h:72

QgsAuthMethodConfig::setId
void setId(const QString &id)
Sets auth config ID.
Definition qgsauthconfig.h:63

QgsPkiBundle::certId
const QString certId() const
The sha hash of the client certificate.
Definition qgsauthconfig.cpp:290

QgsPkiBundle::isNull
bool isNull() const
Whether the bundle, either its certificate or private key, is null.
Definition qgsauthconfig.cpp:280

QgsPkiBundle::QgsPkiBundle
QgsPkiBundle(const QSslCertificate &clientCert=QSslCertificate(), const QSslKey &clientKey=QSslKey(), const QList< QSslCertificate > &caChain=QList< QSslCertificate >())
Construct a bundle from existing PKI components.
Definition qgsauthconfig.cpp:202

QgsPkiBundle::fromPkcs12Paths
static const QgsPkiBundle fromPkcs12Paths(const QString &bundlepath, const QString &bundlepass=QString())
Construct a bundle of PKI components from a PKCS#12 file path.
Definition qgsauthconfig.cpp:236

QgsPkiBundle::clientKey
const QSslKey clientKey() const
Private key object.
Definition qgsauthconfig.h:249

QgsPkiBundle::setCaChain
void setCaChain(const QList< QSslCertificate > &cachain)
Sets chain of Certificate Authorities for client certificate.
Definition qgsauthconfig.h:256

QgsPkiBundle::caChain
const QList< QSslCertificate > caChain() const
Chain of Certificate Authorities for client certificate.
Definition qgsauthconfig.h:254

QgsPkiBundle::fromPemPaths
static const QgsPkiBundle fromPemPaths(const QString &certPath, const QString &keyPath, const QString &keyPass=QString(), const QList< QSslCertificate > &caChain=QList< QSslCertificate >())
Construct a bundle of PKI components from PEM-formatted file paths.
Definition qgsauthconfig.cpp:211

QgsPkiBundle::clientCert
const QSslCertificate clientCert() const
Client certificate object.
Definition qgsauthconfig.h:244

QgsPkiBundle::isValid
bool isValid() const
Whether the bundle is valid.
Definition qgsauthconfig.cpp:285

QgsPkiConfigBundle::caChain
QList< QSslCertificate > caChain() const
caChain return the CA chain
Definition qgsauthconfig.h:306

QgsPkiConfigBundle::setClientCertKey
void setClientCertKey(const QSslKey &certkey)
Sets private key object.
Definition qgsauthconfig.h:300

QgsPkiConfigBundle::clientCert
const QSslCertificate clientCert() const
Client certificate object.
Definition qgsauthconfig.h:291

QgsPkiConfigBundle::config
const QgsAuthMethodConfig config() const
Authentication method configuration.
Definition qgsauthconfig.h:285

QgsPkiConfigBundle::setConfig
void setConfig(const QgsAuthMethodConfig &config)
Sets authentication method configuration.
Definition qgsauthconfig.h:288

QgsPkiConfigBundle::clientCertKey
const QSslKey clientCertKey() const
Private key object.
Definition qgsauthconfig.h:297

QgsPkiConfigBundle::setClientCert
void setClientCert(const QSslCertificate &cert)
Sets client certificate object.
Definition qgsauthconfig.h:294

QgsPkiConfigBundle::setCaChain
void setCaChain(const QList< QSslCertificate > &caChain)
setCaChain set the CA chain
Definition qgsauthconfig.h:312

QgsPkiConfigBundle::QgsPkiConfigBundle
QgsPkiConfigBundle(const QgsAuthMethodConfig &config, const QSslCertificate &cert, const QSslKey &certkey, const QList< QSslCertificate > &cachain=QList< QSslCertificate >())
Construct a bundle from existing PKI components and authentication method configuration.
Definition qgsauthconfig.cpp:322

QgsPkiConfigBundle::isValid
bool isValid()
Whether the bundle is valid.
Definition qgsauthconfig.cpp:329

qgis.h

QgsStringMap
QMap< QString, QString > QgsStringMap
Definition qgis.h:7475

qgis_sip.h

SIP_INSERT_QLIST_ENUM_CONVERSION_CODE
#define SIP_INSERT_QLIST_ENUM_CONVERSION_CODE(class_name,...)
Definition qgis_sip.h:296

QgsAuthMethodConfigsMap
QHash< QString, QgsAuthMethodConfig > QgsAuthMethodConfigsMap
Definition qgsauthconfig.h:197

operator==
bool operator==(const QgsFeatureIterator &fi1, const QgsFeatureIterator &fi2)
Definition qgsfeatureiterator.h:427

operator!=
bool operator!=(const QgsFeatureIterator &fi1, const QgsFeatureIterator &fi2)
Definition qgsfeatureiterator.h:432