1// Copyright 2013 The Chromium Authors. All rights reserved. 2// Use of this source code is governed by a BSD-style license that can be 3// found in the LICENSE file. 4 5#ifndef REMOTING_PROTOCOL_THIRD_PARTY_AUTHENTICATOR_BASE_H_ 6#define REMOTING_PROTOCOL_THIRD_PARTY_AUTHENTICATOR_BASE_H_ 7 8#include <string> 9 10#include "base/callback.h" 11#include "base/memory/scoped_ptr.h" 12#include "remoting/protocol/authenticator.h" 13#include "third_party/webrtc/libjingle/xmllite/qname.h" 14 15namespace buzz { 16 17class XmlElement; 18 19} // namespace buzz 20 21namespace remoting { 22namespace protocol { 23 24// Implements an authentication method that relies on a third party server for 25// authentication of both client and host. 26// When third party authentication is being used, the client must request both a 27// token and a shared secret from a third-party server (which may require the 28// user to authenticate themselves). The client then sends only the token to the 29// host. The host signs the token, then contacts the third-party server to 30// exchange the token for the shared secret. Once both client and host have the 31// shared secret, they use an underlying |V2Authenticator| (SPAKE2) to negotiate 32// an authentication key, which is used to establish the connection. 33class ThirdPartyAuthenticatorBase : public Authenticator { 34 public: 35 virtual ~ThirdPartyAuthenticatorBase(); 36 37 // Authenticator interface. 38 virtual State state() const OVERRIDE; 39 virtual bool started() const OVERRIDE; 40 virtual RejectionReason rejection_reason() const OVERRIDE; 41 virtual void ProcessMessage(const buzz::XmlElement* message, 42 const base::Closure& resume_callback) OVERRIDE; 43 virtual scoped_ptr<buzz::XmlElement> GetNextMessage() OVERRIDE; 44 virtual scoped_ptr<ChannelAuthenticator> 45 CreateChannelAuthenticator() const OVERRIDE; 46 47 protected: 48 // XML tag names for third party authentication fields. 49 static const buzz::StaticQName kTokenUrlTag; 50 static const buzz::StaticQName kTokenScopeTag; 51 static const buzz::StaticQName kTokenTag; 52 53 explicit ThirdPartyAuthenticatorBase(State initial_state); 54 55 // Gives the message to the underlying authenticator for processing. 56 void ProcessUnderlyingMessage( 57 const buzz::XmlElement* message, 58 const base::Closure& resume_callback); 59 60 // Processes the token-related elements of the message. 61 virtual void ProcessTokenMessage( 62 const buzz::XmlElement* message, 63 const base::Closure& resume_callback) = 0; 64 65 // Adds the token related XML elements to the message. 66 virtual void AddTokenElements(buzz::XmlElement* message) = 0; 67 68 scoped_ptr<Authenticator> underlying_; 69 State token_state_; 70 bool started_; 71 RejectionReason rejection_reason_; 72 73 private: 74 DISALLOW_COPY_AND_ASSIGN(ThirdPartyAuthenticatorBase); 75}; 76 77} // namespace protocol 78} // namespace remoting 79 80#endif // REMOTING_PROTOCOL_THIRD_PARTY_AUTHENTICATOR_BASE_H_ 81