1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
|
// Copyright 2014 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef COMPONENTS_DATA_REDUCTION_PROXY_CORE_BROWSER_DATA_REDUCTION_PROXY_AUTH_REQUEST_HANDLER_H_
#define COMPONENTS_DATA_REDUCTION_PROXY_CORE_BROWSER_DATA_REDUCTION_PROXY_AUTH_REQUEST_HANDLER_H_
#include <stddef.h>
#include <stdint.h>
#include <string>
#include <vector>
#include "base/gtest_prod_util.h"
#include "base/macros.h"
#include "base/strings/string16.h"
#include "base/threading/thread_checker.h"
#include "base/time/time.h"
#include "build/build_config.h"
#include "components/data_reduction_proxy/core/common/data_reduction_proxy_util.h"
namespace net {
class HttpRequestHeaders;
}
namespace data_reduction_proxy {
extern const char kSessionHeaderOption[];
extern const char kCredentialsHeaderOption[];
extern const char kSecureSessionHeaderOption[];
extern const char kBuildNumberHeaderOption[];
extern const char kPatchNumberHeaderOption[];
extern const char kClientHeaderOption[];
extern const char kExperimentsOption[];
#if defined(OS_ANDROID)
extern const char kAndroidWebViewProtocolVersion[];
#endif
class DataReductionProxyConfig;
class DataReductionProxyRequestOptions {
public:
static bool IsKeySetOnCommandLine();
// Constructs a DataReductionProxyRequestOptions object with the given
// client type, and config.
DataReductionProxyRequestOptions(Client client,
DataReductionProxyConfig* config);
virtual ~DataReductionProxyRequestOptions();
// Sets |key_| to the default key and initializes the credentials, version,
// client, and lo-fi header values. Generates the |header_value_| string,
// which is concatenated to the Chrome-proxy header. Called on the UI thread.
void Init();
// Adds a 'Chrome-Proxy' header to |request_headers| with the data reduction
// proxy authentication credentials.
void AddRequestHeader(net::HttpRequestHeaders* request_headers);
// Stores the supplied key and sets up credentials suitable for authenticating
// with the data reduction proxy.
// This can be called more than once. For example on a platform that does not
// have a default key defined, this function will be called some time after
// this class has been constructed. Android WebView is a platform that does
// this. The caller needs to make sure |this| pointer is valid when
// SetKeyOnIO is called.
void SetKeyOnIO(const std::string& key);
// Sets the credentials for sending to the Data Reduction Proxy.
void SetSecureSession(const std::string& secure_session);
// Retrieves the credentials for sending to the Data Reduction Proxy.
const std::string& GetSecureSession() const;
// Invalidates the secure session credentials.
void Invalidate();
// Parses |request_headers| and returns the value of the session key.
std::string GetSessionKeyFromRequestHeaders(
const net::HttpRequestHeaders& request_headers) const;
protected:
// Returns a UTF16 string that's the hash of the configured authentication
// |key| and |salt|. Returns an empty UTF16 string if no key is configured or
// the data reduction proxy feature isn't available.
static base::string16 AuthHashForSalt(int64_t salt, const std::string& key);
// Visible for testing.
virtual base::Time Now() const;
virtual void RandBytes(void* output, size_t length) const;
// Visible for testing.
virtual std::string GetDefaultKey() const;
// Visible for testing.
DataReductionProxyRequestOptions(Client client,
const std::string& version,
DataReductionProxyConfig* config);
// Returns the chrome proxy header. Protected so that it is available for
// testing.
std::string GetHeaderValueForTesting() const;
private:
FRIEND_TEST_ALL_PREFIXES(DataReductionProxyRequestOptionsTest,
AuthHashForSalt);
// Updates the value of the experiments to be run and regenerate the header if
// necessary.
void UpdateExperiments();
// Adds the server-side experiment from the field trial.
void AddServerExperimentFromFieldTrial();
// Generates a session ID and credentials suitable for authenticating with
// the data reduction proxy.
void ComputeCredentials(const base::Time& now,
std::string* session,
std::string* credentials) const;
// Generates and updates the session ID and credentials.
void UpdateCredentials();
// Regenerates the |header_value_| string which is concatenated to the
// Chrome-proxy header.
void RegenerateRequestHeaderValue();
// The Chrome-Proxy header value.
std::string header_value_;
// Authentication state.
std::string key_;
// Name of the client and version of the data reduction proxy protocol to use.
std::string client_;
std::string session_;
std::string credentials_;
std::string secure_session_;
std::string build_;
std::string patch_;
std::vector<std::string> experiments_;
// The time at which the session expires. Used to ensure that a session is
// never used for more than twenty-four hours.
base::Time credentials_expiration_time_;
// Whether the authentication headers are sourced by |this| or injected via
// |SetCredentials|.
bool use_assigned_credentials_;
// Must outlive |this|.
DataReductionProxyConfig* data_reduction_proxy_config_;
// Enforce usage on the IO thread.
base::ThreadChecker thread_checker_;
DISALLOW_COPY_AND_ASSIGN(DataReductionProxyRequestOptions);
};
} // namespace data_reduction_proxy
#endif // COMPONENTS_DATA_REDUCTION_PROXY_CORE_BROWSER_DATA_REDUCTION_PROXY_AUTH_REQUEST_HANDLER_H_
|
