api/qgsauthconfigurationstoragedb_8h_source.html

/***************************************************************************

  qgsauthconfigurationstoragedb.h - QgsAuthConfigurationStorageDb


 ---------------------

 begin                : 20.6.2024

 copyright            : (C) 2024 by Alessandro Pasotti

 email                : elpaso at itopen dot it

 ***************************************************************************

 *                                                                         *

 *   This program is free software; you can redistribute it and/or modify  *

 *   it under the terms of the GNU General Public License as published by  *

 *   the Free Software Foundation; either version 2 of the License, or     *

 *   (at your option) any later version.                                   *

 *                                                                         *

 ***************************************************************************/

#ifndef QGSAUTHCONFIGURATIONSTORAGEDB_H

#define QGSAUTHCONFIGURATIONSTORAGEDB_H


#include "qgis_core.h"

#include "qgsauthconfigurationstorage.h"


#include <QObject>

#include <QRecursiveMutex>

#include <QSqlDatabase>


class CORE_EXPORT QgsAuthConfigurationStorageDb : public QgsAuthConfigurationStorage

{

    Q_OBJECT

  public:


    QgsAuthConfigurationStorageDb( const QMap<QString, QVariant> &settings );


    QgsAuthConfigurationStorageDb( const QString &uri );


    ~QgsAuthConfigurationStorageDb() override;


    QSqlDatabase authDatabaseConnection() const;


    // QgsAuthConfigurationStorage interface

  public:

    QString name() const override;

    QString type() const override;

    QString description() const override;

    QString id() const override;


    QgsAuthMethodConfigsMap authMethodConfigs( const QStringList &allowedMethods = QStringList() ) const override;

    QgsAuthMethodConfigsMap authMethodConfigsWithPayload( ) const override;

    QgsAuthMethodConfig loadMethodConfig( const QString &id, QString &payload SIP_OUT, bool full = false ) const override;

    bool storeMethodConfig( const QgsAuthMethodConfig &mconfig, const QString &payload ) override;

    bool removeMethodConfig( const QString &id ) override;

    bool methodConfigExists( const QString &id ) const override;

    bool storeAuthSetting( const QString &key, const QString &value ) override;

    QString loadAuthSetting( const QString &key ) const override;

    bool removeAuthSetting( const QString &key ) override;

    bool authSettingExists( const QString &key ) const override;

    bool clearMethodConfigs() override;

    bool erase() override;

    bool isReady() const override;

    bool initialize() override;

    QList<QgsAuthConfigurationStorage::SettingParameter> settingsParameters() const override;


#ifndef QT_NO_SSL


    bool storeCertIdentity( const QSslCertificate &cert, const QString &keyPem ) override;

    bool removeCertIdentity( const QSslCertificate &cert ) override;

    const QSslCertificate loadCertIdentity( const QString &id ) const override;

    const QPair<QSslCertificate, QString> loadCertIdentityBundle( const QString &id ) const override;

    const QList<QSslCertificate> certIdentities() const override;

    QStringList certIdentityIds() const override;

    bool certIdentityExists( const QString &id ) const override;

    bool removeCertIdentity( const QString &id ) override;

    bool storeSslCertCustomConfig( const QgsAuthConfigSslServer &config ) override;

    QStringList sslCertCustomConfigIds() const override;

    const QgsAuthConfigSslServer loadSslCertCustomConfig( const QString &id, const QString &hostport ) const override;

    const QgsAuthConfigSslServer loadSslCertCustomConfigByHost( const QString &hostport ) const override;

    const QList<QgsAuthConfigSslServer> sslCertCustomConfigs() const override;

    bool sslCertCustomConfigExists( const QString &id, const QString &hostport ) override;

    bool removeSslCertCustomConfig( const QString &id, const QString &hostport ) override;


    bool storeCertAuthority( const QSslCertificate &cert ) override;

    QStringList certAuthorityIds() const override;

    const QSslCertificate loadCertAuthority( const QString &id ) const override;

    bool certAuthorityExists( const QSslCertificate &cert ) const override;

    bool removeCertAuthority( const QSslCertificate &cert ) override;

    const QMap<QString, QgsAuthCertUtils::CertTrustPolicy> caCertsPolicy() const override;

    const QList<QSslCertificate> caCerts() const override;


    bool storeCertTrustPolicy( const QSslCertificate &cert, QgsAuthCertUtils::CertTrustPolicy policy ) override;

    QgsAuthCertUtils::CertTrustPolicy loadCertTrustPolicy( const QSslCertificate &cert ) const override;

    bool removeCertTrustPolicy( const QSslCertificate &cert ) override;

    bool certTrustPolicyExists( const QSslCertificate &cert ) const override;

#endif


    const QList<QgsAuthConfigurationStorage::MasterPasswordConfig> masterPasswords( ) const override;

    bool storeMasterPassword( const QgsAuthConfigurationStorage::MasterPasswordConfig &config ) override;

    bool clearMasterPasswords() override;


    // DB specific methods


    virtual QString methodConfigTableName() const;


    virtual QString authSettingsTableName() const;


    virtual QString certIdentityTableName() const;


    virtual QString certAuthorityTableName() const;


    virtual QString sslCertCustomConfigTableName() const;


    virtual QString certTrustPolicyTableName() const;


    virtual QString masterPasswordTableName() const;


    virtual bool tableExists( const QString &table ) const;


    virtual QString quotedQualifiedIdentifier( const QString &identifier, bool isIndex = false ) const;


  private:


    bool clearTables( const QStringList &tables );


    static const QMap<QString, QVariant> uriToSettings( const QString &uri );

    mutable QMap<QThread *, QMetaObject::Connection> mConnectedThreads;


  protected:


    bool authDbOpen() const;


    bool authDbQuery( QSqlQuery *query, const QString &sql = QString() ) const;


    bool authDbTransactionQuery( QSqlQuery *query );


    bool createConfigTables();


    bool createCertTables();


    virtual void checkCapabilities();


    // Storage ID

    mutable QString mId;


    // From https://doc.qt.io/qt-6/sql-driver.html

    QString mDriver;

    QString mDatabase;

    QString mHost;

    QString mUser;

    QString mPassword;

    int mPort;

    // Driver specific options

    QString mConnectOptions;


    bool mIsReady = false;


    mutable QRecursiveMutex mMutex;


};


#endif // QGSAUTHCONFIGURATIONSTORAGEDB_H

QgsAuthCertUtils::CertTrustPolicy
CertTrustPolicy
Type of certificate trust policy.
Definition qgsauthcertutils.h:59

QgsAuthConfigSslServer
Configuration container for SSL server connection exceptions or overrides.
Definition qgsauthconfig.h:342

QgsAuthConfigurationStorageDb::QgsAuthConfigurationStorageDb
QgsAuthConfigurationStorageDb(const QMap< QString, QVariant > &settings)
Creates a new QgsAuthConfigurationStorageDb instance from the specified settings.
Definition qgsauthconfigurationstoragedb.cpp:34

QgsAuthConfigurationStorageDb::authDbTransactionQuery
bool authDbTransactionQuery(QSqlQuery *query)
Executes the specified query on the database using a transaction.
Definition qgsauthconfigurationstoragedb.cpp:214

QgsAuthConfigurationStorageDb::tableExists
virtual bool tableExists(const QString &table) const
Returns true if the specified table exists in the database, false otherwise.
Definition qgsauthconfigurationstoragedb.cpp:2297

QgsAuthConfigurationStorageDb::mDriver
QString mDriver
Definition qgsauthconfigurationstoragedb.h:234

QgsAuthConfigurationStorageDb::mHost
QString mHost
Definition qgsauthconfigurationstoragedb.h:236

QgsAuthConfigurationStorageDb::checkCapabilities
virtual void checkCapabilities()
Checks the capabilities of the storage.
Definition qgsauthconfigurationstoragedb.cpp:1796

QgsAuthConfigurationStorageDb::authDbQuery
bool authDbQuery(QSqlQuery *query, const QString &sql=QString()) const
Runs the specified query on the database.
Definition qgsauthconfigurationstoragedb.cpp:168

QgsAuthConfigurationStorageDb::createCertTables
bool createCertTables()
Creates the certificate tables in the database.
Definition qgsauthconfigurationstoragedb.cpp:1596

QgsAuthConfigurationStorageDb::mPort
int mPort
Definition qgsauthconfigurationstoragedb.h:239

QgsAuthConfigurationStorageDb::certIdentityTableName
virtual QString certIdentityTableName() const
Returns the name of the table used to store the certificate identities.
Definition qgsauthconfigurationstoragedb.cpp:1464

QgsAuthConfigurationStorageDb::authDbOpen
bool authDbOpen() const
Opens the connection to the database.
Definition qgsauthconfigurationstoragedb.cpp:146

QgsAuthConfigurationStorageDb::quotedQualifiedIdentifier
virtual QString quotedQualifiedIdentifier(const QString &identifier, bool isIndex=false) const
Returns the quoted identifier, prefixed with the schema (if not null), ready for the insertion into a...
Definition qgsauthconfigurationstoragedb.cpp:1489

QgsAuthConfigurationStorageDb::methodConfigTableName
virtual QString methodConfigTableName() const
Returns the name of the table used to store the method configurations.
Definition qgsauthconfigurationstoragedb.cpp:1454

QgsAuthConfigurationStorageDb::authDatabaseConnection
QSqlDatabase authDatabaseConnection() const
Returns the database connection used by this storage.
Definition qgsauthconfigurationstoragedb.cpp:68

QgsAuthConfigurationStorageDb::mMutex
QRecursiveMutex mMutex
Definition qgsauthconfigurationstoragedb.h:245

QgsAuthConfigurationStorageDb::mId
QString mId
Definition qgsauthconfigurationstoragedb.h:231

QgsAuthConfigurationStorageDb::mIsReady
bool mIsReady
Definition qgsauthconfigurationstoragedb.h:243

QgsAuthConfigurationStorageDb::createConfigTables
bool createConfigTables()
Creates the configuration tables in the database.
Definition qgsauthconfigurationstoragedb.cpp:1542

QgsAuthConfigurationStorageDb::authSettingsTableName
virtual QString authSettingsTableName() const
Returns the name of the table used to store the auth settings.
Definition qgsauthconfigurationstoragedb.cpp:1459

QgsAuthConfigurationStorageDb::certTrustPolicyTableName
virtual QString certTrustPolicyTableName() const
Returns the name of the table used to store the certificate trust policies.
Definition qgsauthconfigurationstoragedb.cpp:1479

QgsAuthConfigurationStorageDb::sslCertCustomConfigTableName
virtual QString sslCertCustomConfigTableName() const
Returns the name of the table used to store the SSL custom configurations.
Definition qgsauthconfigurationstoragedb.cpp:1469

QgsAuthConfigurationStorageDb::mConnectOptions
QString mConnectOptions
Definition qgsauthconfigurationstoragedb.h:241

QgsAuthConfigurationStorageDb::mPassword
QString mPassword
Definition qgsauthconfigurationstoragedb.h:238

QgsAuthConfigurationStorageDb::certAuthorityTableName
virtual QString certAuthorityTableName() const
Returns the name of the table used to store the certificate authorities.
Definition qgsauthconfigurationstoragedb.cpp:1474

QgsAuthConfigurationStorageDb::mUser
QString mUser
Definition qgsauthconfigurationstoragedb.h:237

QgsAuthConfigurationStorageDb::masterPasswordTableName
virtual QString masterPasswordTableName() const
Returns the name of the table used to store the master passwords.
Definition qgsauthconfigurationstoragedb.cpp:1484

QgsAuthConfigurationStorageDb::mDatabase
QString mDatabase
Definition qgsauthconfigurationstoragedb.h:235

QgsAuthConfigurationStorage::storeAuthSetting
virtual bool storeAuthSetting(const QString &key, const QString &value)=0
Store an authentication setting in the storage.

QgsAuthConfigurationStorage::loadMethodConfig
virtual QgsAuthMethodConfig loadMethodConfig(const QString &id, QString &payload, bool full=false) const =0
Load an authentication configuration from the database.

QgsAuthConfigurationStorage::loadSslCertCustomConfigByHost
virtual const QgsAuthConfigSslServer loadSslCertCustomConfigByHost(const QString &hostport) const =0
Loads an SSL certificate custom config by hostport (host:port).

QgsAuthConfigurationStorage::storeCertTrustPolicy
virtual bool storeCertTrustPolicy(const QSslCertificate &cert, QgsAuthCertUtils::CertTrustPolicy policy)=0
Store certificate trust policy.

QgsAuthConfigurationStorage::loadAuthSetting
virtual QString loadAuthSetting(const QString &key) const =0
Load an authentication setting from the storage.

QgsAuthConfigurationStorage::removeSslCertCustomConfig
virtual bool removeSslCertCustomConfig(const QString &id, const QString &hostport)=0
Remove an SSL certificate custom config.

QgsAuthConfigurationStorage::removeCertTrustPolicy
virtual bool removeCertTrustPolicy(const QSslCertificate &cert)=0
Remove certificate trust policy.

QgsAuthConfigurationStorage::sslCertCustomConfigExists
virtual bool sslCertCustomConfigExists(const QString &id, const QString &hostport)=0
Check if SSL certificate custom config exists.

QgsAuthConfigurationStorage::description
virtual QString description() const =0
Returns a human readable localized description of the storage implementation (e.g.

QgsAuthConfigurationStorage::certTrustPolicyExists
virtual bool certTrustPolicyExists(const QSslCertificate &cert) const =0
Check if certificate trust policy exists.

QgsAuthConfigurationStorage::erase
virtual bool erase()=0
Completely erase the storage removing all configurations/certs/settings etc.

QgsAuthConfigurationStorage::loadCertAuthority
virtual const QSslCertificate loadCertAuthority(const QString &id) const =0
certAuthority get a certificate authority by id (sha hash)

QgsAuthConfigurationStorage::storeCertAuthority
virtual bool storeCertAuthority(const QSslCertificate &cert)=0
Store a certificate authority.

QgsAuthConfigurationStorage::removeMethodConfig
virtual bool removeMethodConfig(const QString &id)=0
Removes the authentication configuration with the specified id.

QgsAuthConfigurationStorage::authMethodConfigsWithPayload
virtual QgsAuthMethodConfigsMap authMethodConfigsWithPayload() const =0
Returns a mapping of authentication configurations available from this storage.

QgsAuthConfigurationStorage::caCertsPolicy
virtual const QMap< QString, QgsAuthCertUtils::CertTrustPolicy > caCertsPolicy() const =0
Returns the map of CA certificates hashes in the storages and their trust policy.

QgsAuthConfigurationStorage::sslCertCustomConfigIds
virtual QStringList sslCertCustomConfigIds() const =0
Returns the list of SSL certificate custom config ids.

QgsAuthConfigurationStorage::authMethodConfigs
virtual QgsAuthMethodConfigsMap authMethodConfigs(const QStringList &allowedMethods=QStringList()) const =0
Returns a mapping of authentication configurations available from this storage.

QgsAuthConfigurationStorage::removeCertIdentity
virtual bool removeCertIdentity(const QSslCertificate &cert)=0
Remove a certificate identity from the storage.

QgsAuthConfigurationStorage::isReady
virtual bool isReady() const =0
Returns true is the storage is ready to be used.

QgsAuthConfigurationStorage::type
virtual QString type() const =0
Returns the type of the storage implementation.

QgsAuthConfigurationStorage::certAuthorityIds
virtual QStringList certAuthorityIds() const =0
Returns the list of certificate authority IDs in the storage.

QgsAuthConfigurationStorage::initialize
virtual bool initialize()
Initializes the storage.
Definition qgsauthconfigurationstorage.h:104

QgsAuthConfigurationStorage::methodConfigExists
virtual bool methodConfigExists(const QString &id) const =0
Check if an authentication configuration exists in the storage.

QgsAuthConfigurationStorage::storeSslCertCustomConfig
virtual bool storeSslCertCustomConfig(const QgsAuthConfigSslServer &config)=0
Store an SSL certificate custom config.

QgsAuthConfigurationStorage::removeCertAuthority
virtual bool removeCertAuthority(const QSslCertificate &cert)=0
Remove a certificate authority.

QgsAuthConfigurationStorage::certIdentities
virtual const QList< QSslCertificate > certIdentities() const =0
certIdentities get certificate identities

QgsAuthConfigurationStorage::settingsParameters
virtual QList< QgsAuthConfigurationStorage::SettingParameter > settingsParameters() const =0
Returns a list of the settings accepted by the storage.

QgsAuthConfigurationStorage::certIdentityExists
virtual bool certIdentityExists(const QString &id) const =0
Check if the certificate identity exists.

QgsAuthConfigurationStorage::loadCertTrustPolicy
virtual QgsAuthCertUtils::CertTrustPolicy loadCertTrustPolicy(const QSslCertificate &cert) const =0
Load certificate trust policy.

QgsAuthConfigurationStorage::certIdentityIds
virtual QStringList certIdentityIds() const =0
certIdentityIds get list of certificate identity ids from database

QgsAuthConfigurationStorage::loadCertIdentity
virtual const QSslCertificate loadCertIdentity(const QString &id) const =0
certIdentity get a certificate identity by id (sha hash)

QgsAuthConfigurationStorage::storeCertIdentity
virtual bool storeCertIdentity(const QSslCertificate &cert, const QString &keyPem)=0
Store a certificate identity in the storage.

QgsAuthConfigurationStorage::name
virtual QString name() const =0
Returns a human readable localized short name of the storage implementation (e.g "SQLite").

QgsAuthConfigurationStorage::QgsAuthConfigurationStorage
QgsAuthConfigurationStorage(const QMap< QString, QVariant > &settings)
Creates a new authentication configuration storage.
Definition qgsauthconfigurationstorage.cpp:20

QgsAuthConfigurationStorage::clearMethodConfigs
virtual bool clearMethodConfigs()=0
Remove all authentications configurations from the storage.

QgsAuthConfigurationStorage::storeMethodConfig
virtual bool storeMethodConfig(const QgsAuthMethodConfig &config, const QString &payload)=0
Store an authentication config in the database.

QgsAuthConfigurationStorage::clearMasterPasswords
virtual bool clearMasterPasswords()=0
Remove all master passwords from the database.

QgsAuthConfigurationStorage::sslCertCustomConfigs
virtual const QList< QgsAuthConfigSslServer > sslCertCustomConfigs() const =0
sslCertCustomConfigs get SSL certificate custom configs

QgsAuthConfigurationStorage::authSettingExists
virtual bool authSettingExists(const QString &key) const =0
Check if an authentication setting exists in the storage.

QgsAuthConfigurationStorage::caCerts
virtual const QList< QSslCertificate > caCerts() const =0
Returns the list of CA certificates in the storage.

QgsAuthConfigurationStorage::certAuthorityExists
virtual bool certAuthorityExists(const QSslCertificate &cert) const =0
Check if a certificate authority exists.

QgsAuthConfigurationStorage::loadCertIdentityBundle
virtual const QPair< QSslCertificate, QString > loadCertIdentityBundle(const QString &id) const =0
Returns a certificate identity bundle by id (sha hash).

QgsAuthConfigurationStorage::storeMasterPassword
virtual bool storeMasterPassword(const QgsAuthConfigurationStorage::MasterPasswordConfig &config)=0
Store a master password in the database.

QgsAuthConfigurationStorage::id
virtual QString id() const =0
Returns the unique identifier of the storage object.

QgsAuthConfigurationStorage::masterPasswords
virtual const QList< QgsAuthConfigurationStorage::MasterPasswordConfig > masterPasswords() const =0
Returns the list of (encrypted) master passwords stored in the database.

QgsAuthConfigurationStorage::loadSslCertCustomConfig
virtual const QgsAuthConfigSslServer loadSslCertCustomConfig(const QString &id, const QString &hostport) const =0
Loads an SSL certificate custom config by id (sha hash) and hostport (host:port).

QgsAuthConfigurationStorage::removeAuthSetting
virtual bool removeAuthSetting(const QString &key)=0
Remove an authentication setting from the storage.

QgsAuthConfigurationStorage::settings
QMap< QString, QVariant > settings() const
Returns the settings of the storage.
Definition qgsauthconfigurationstorage.cpp:108

QgsAuthMethodConfig
Configuration storage class for authentication method configurations.
Definition qgsauthconfig.h:43

SIP_OUT
#define SIP_OUT
Definition qgis_sip.h:58

QgsAuthMethodConfigsMap
QHash< QString, QgsAuthMethodConfig > QgsAuthMethodConfigsMap
Definition qgsauthconfig.h:198

qgsauthconfigurationstorage.h

QgsAuthConfigurationStorage::MasterPasswordConfig
Structure that holds the (encrypted) master password elements.
Definition qgsauthconfigurationstorage.h:47