1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/os/security/cryptomgmtlibs/cryptotokenfw/inc/secdlg.h Fri Jun 15 03:10:57 2012 +0200
1.3 @@ -0,0 +1,290 @@
1.4 +/*
1.5 +* Copyright (c) 1997-2009 Nokia Corporation and/or its subsidiary(-ies).
1.6 +* All rights reserved.
1.7 +* This component and the accompanying materials are made available
1.8 +* under the terms of the License "Eclipse Public License v1.0"
1.9 +* which accompanies this distribution, and is available
1.10 +* at the URL "http://www.eclipse.org/legal/epl-v10.html".
1.11 +*
1.12 +* Initial Contributors:
1.13 +* Nokia Corporation - initial contribution.
1.14 +*
1.15 +* Contributors:
1.16 +*
1.17 +* Description:
1.18 +*
1.19 +*/
1.20 +
1.21 +
1.22 +/**
1.23 + @file
1.24 + @publishedPartner
1.25 + @released
1.26 +*/
1.27 +
1.28 +#ifndef __SECDLG_H__
1.29 +#define __SECDLG_H__
1.30 +
1.31 +#include <ct.h>
1.32 +#include <securitydefs.h>
1.33 +
1.34 +/** Security Dialog API */
1.35 +
1.36 +
1.37 +/** The maximum length of a PIN label */
1.38 +const TInt KPINLabelMaxLength = 64;
1.39 +
1.40 +/** TPINLabel is a human-readable name for the PIN to be entered. */
1.41 +//64 = 255 bytes / poss 4bytes per unicode character
1.42 +typedef TBuf<KPINLabelMaxLength> TPINLabel;
1.43 +
1.44 +
1.45 +/**
1.46 + * Provides information associated with the PIN,
1.47 + * to enable the dialog to display the name and do some basic correctness checking.
1.48 + */
1.49 +class TPINParams
1.50 + {
1.51 +public:
1.52 + /** The label that identifies the PIN */
1.53 + TPINLabel iPINLabel;
1.54 + /** The label of the token */
1.55 + TPINLabel iTokenLabel;
1.56 + /** The minimum length of the PIN */
1.57 + TInt iMinLength;
1.58 + /** The maximum length of the PIN */
1.59 + TInt iMaxLength;
1.60 + };
1.61 +
1.62 +/** The max PIN length should not exceed 32, because this is the maximum
1.63 + * size possible in the CEikSecretEditor class. */
1.64 +const TInt KMaxPINLength = 32;
1.65 +
1.66 +/** A PIN value */
1.67 +typedef TBuf<KMaxPINLength> TPINValue;
1.68 +
1.69 +/** Unblocking PINs can be up to 64 characters if they are entered in the clear. */
1.70 +const TInt KMaxUnblockPINLength = 64;
1.71 +
1.72 +/** An unblocking PIN value */
1.73 +typedef TBuf<KMaxUnblockPINLength> TUnblockPINValue;
1.74 +
1.75 +/**
1.76 + * Definition of the security dialog interface
1.77 + * @since 7.0
1.78 + */
1.79 +class MSecurityDialog
1.80 + {
1.81 +public:
1.82 + /**
1.83 + * TConnectionType defines the possible protocols used in EstablishSecureConnection
1.84 + * which allows the type of the certificate to be derived.
1.85 + */
1.86 + enum TConnectionType
1.87 + {
1.88 + /** WTLS */
1.89 + EWTLS,
1.90 + /** TLS */
1.91 + ETLS
1.92 + };
1.93 +
1.94 +
1.95 +public:
1.96 + /**
1.97 + * Prompts the user to enter a PIN.
1.98 + *
1.99 + * @param aPINParams Information about the PIN to enter.
1.100 + * @param aRetry Indicates whether the user is retrying.
1.101 + * @param aPINValue On return, the PIN the user entered:
1.102 + * @param aStatus This will be set to KErrNotFound if no certificates could
1.103 + * be presented to the user.
1.104 + */
1.105 + virtual void EnterPIN( const TPINParams& aPINParams, TBool aRetry, TPINValue& aPINValue,
1.106 + TRequestStatus& aStatus ) = 0;
1.107 +
1.108 + /**
1.109 + * Prompts the user to change a PIN.
1.110 + *
1.111 + * @param aPINParams Information about the PIN to change
1.112 + * @param aRetry Indicates whether the user is retrying
1.113 + * @param aOldPINValue On return, the old PIN the user entered
1.114 + * @param aNewPINValue On return, the new PIN the user entered
1.115 + * @param aStatus This will be set to KErrNotFound if no certificates could
1.116 + * be presented to the user.
1.117 + */
1.118 + virtual void ChangePIN( const TPINParams& aPINParams, TBool aRetry,
1.119 + TPINValue& aOldPINValue, TPINValue& aNewPINValue,
1.120 + TRequestStatus& aStatus ) = 0;
1.121 +
1.122 +
1.123 +
1.124 + /**
1.125 + * Prompts the user to enable a PIN.
1.126 + *
1.127 + * @param aPINParams Information about the PIN to enable.
1.128 + * @param aRetry Indicates whether the user is retrying.
1.129 + * @param aPINValue On return, the PIN the user entered:
1.130 + * @param aStatus This will be set to KErrNotFound if no certificates could
1.131 + * be presented to the user.
1.132 + */
1.133 + virtual void EnablePIN( const TPINParams& aPINParams, TBool aRetry, TPINValue& aPINValue,
1.134 + TRequestStatus& aStatus ) = 0;
1.135 +
1.136 + /**
1.137 + * Prompts the user to disable a PIN.
1.138 + *
1.139 + * @param aPINParams Information about the PIN to disable.
1.140 + * @param aRetry Indicates whether the user is retrying.
1.141 + * @param aPINValue On return, the PIN the user entered:
1.142 + * @param aStatus This will be set to KErrNotFound if no certificates could
1.143 + * be presented to the user.
1.144 + */
1.145 + virtual void DisablePIN( const TPINParams& aPINParams, TBool aRetry,
1.146 + TPINValue& aPINValue, TRequestStatus& aStatus ) = 0;
1.147 + /**
1.148 + * Prompts the user to unblock a PIN.
1.149 + *
1.150 + * The unblocking PIN is not displayed as it is entered, and can be a
1.151 + * maximum of 32 characters long - hence it is passed back as a TPINValue.
1.152 + *
1.153 + * @param aBlockedPINParams Information about the PIN to unblock
1.154 + * @param aUnblockingPINParams Information about the unblocking PIN
1.155 + * @param aRetry Indicates whether the user is retrying
1.156 + * @param aUnblockingPINValue On return, the PIN the user entered
1.157 + * @param aNewPINValue On return, the new PIN the user entered
1.158 + * @param aStatus This will be set to KErrNotFound if no certificates could
1.159 + * be presented to the user.
1.160 + */
1.161 + virtual void UnblockPIN( const TPINParams& aBlockedPINParams,
1.162 + const TPINParams& aUnblockingPINParams, TBool aRetry,
1.163 + TPINValue& aUnblockingPINValue, TPINValue& aNewPINValue,
1.164 + TRequestStatus& aStatus ) = 0;
1.165 +
1.166 + /**
1.167 + * Informs the user that the PIN has become blocked.
1.168 + *
1.169 + * @param aPINParams Information about the blocked PIN.
1.170 + * @param aStatus This will be set to KErrNotFound if no certificates could
1.171 + * be presented to the user.
1.172 + */
1.173 + virtual void PINBlocked( const TPINParams& aPINParams, TRequestStatus& aStatus ) = 0;
1.174 +
1.175 +
1.176 + /**
1.177 + * Informs the user that a secure connection is being established with the given
1.178 + * server, allowing them to proceed or cancel the operation.
1.179 + *
1.180 + * @param aCertData The certificate sent by the server.
1.181 + * @param aCertHandleList A selection of certificates to display to the user. All
1.182 + * certificates are displayed if this is empty.
1.183 + * @param aConnectionType This allows the type of certificate to be identified.
1.184 + * @param aDoClientAuthentication Determines whether the user is prompted to
1.185 + * agree to authenticate themselves to the server.
1.186 + * If this was true before the function was called, it
1.187 + * will contain the result of the user's decision on return.
1.188 + * @param aCertHandle An identifier for the certificate the user selected.
1.189 + * @param aStatus This will be set to KErrNotFound if no certificates could
1.190 + * be presented to the user.
1.191 + */
1.192 + virtual void EstablishSecureConnection( const TDesC8& aCertData,
1.193 + const RArray<TCTTokenObjectHandle>& aCertHandleList,
1.194 + MSecurityDialog::TConnectionType aConnectionType,
1.195 + TBool& aDoClientAuthentication, TCTTokenObjectHandle& aCertHandle,
1.196 + TRequestStatus& aStatus ) = 0;
1.197 +
1.198 + /**
1.199 + * Signs some text.
1.200 + *
1.201 + * @param aTextToSign The text to be signed.
1.202 + * @param aCertHandleList A selection of certificates to display to the user.
1.203 + * All certificates are displayed if this is empty.
1.204 + * @param aCertHandle On return, an identifier for the certificate the user selected.
1.205 + * aStatus - this will be set to KErrNotFound if no certificates
1.206 + * could be presented to the user.
1.207 + * @param aStatus This will be set to KErrNotFound if no certificates could
1.208 + * be presented to the user.
1.209 + */
1.210 + virtual void SignText( const TDesC& aTextToSign,
1.211 + const RArray<TCTTokenObjectHandle>& aCertHandleList,
1.212 + TCTTokenObjectHandle& aCertHandle,
1.213 + TRequestStatus& aStatus ) = 0;
1.214 +
1.215 + /**
1.216 + * Frees resources of the MSecurityDialog class
1.217 + */
1.218 + virtual void Release()=0;
1.219 + /**
1.220 + * Informs the user that the server authentication has failed.
1.221 + *
1.222 + * @param aServerName The name of the server.
1.223 + * @param aFailurereason The server authentication failure reason
1.224 + * @param aencodedCert The certificate sent by the server.
1.225 + * @param aStatus This will be set to KErrNone or KErrAbort depending upon
1.226 + * the EContinue or EStop.
1.227 + *
1.228 + */
1.229 + virtual void ServerAuthenticationFailure(const TDesC8& aServerName,
1.230 + const TValidationError& aFailureReason, const TDesC8& aEncodedCert,
1.231 + TRequestStatus& aStatus ) = 0;
1.232 +
1.233 +protected:
1.234 + /**
1.235 + * Destructor for the MSecurityDialog class
1.236 + */
1.237 + inline virtual ~MSecurityDialog()=0;
1.238 + public:
1.239 + // This is at the end to preserve BC
1.240 + /**
1.241 + * Informs the user that the unblock PIN has been blocked.
1.242 + *
1.243 + * @param aPINParams Information about the blocked PIN.
1.244 + * @param aStatus This will be set to KErrNotFound if no certificates could
1.245 + * be presented to the user.
1.246 + */
1.247 + virtual void TotalBlocked( const TPINParams& aPINParams, TRequestStatus& aStatus ) = 0;
1.248 +
1.249 + /**
1.250 + * Prompts the user to unblock a PIN.
1.251 + *
1.252 + * The unblocking PIN is displayed to the user in the clear as it is
1.253 + * entered, and can be a maximum of 64 characters long - it is passed back
1.254 + * as a TUnblockPINValue.
1.255 + *
1.256 + * @param aBlockedPINParams Information about the PIN to unblock
1.257 + * @param aUnblockingPINParams Information about the unblocking PIN
1.258 + * @param aRetry Indicates whether the user is retrying
1.259 + * @param aUnblockingPINValue On return, the PIN the user entered
1.260 + * @param aNewPINValue On return, the new PIN the user entered
1.261 + * @param aStatus This will be set to KErrNotFound if no certificates could
1.262 + * be presented to the user.
1.263 + */
1.264 + virtual void UnblockPINInClear( const TPINParams& aBlockedPINParams,
1.265 + const TPINParams& aUnblockingPINParams, TBool aRetry,
1.266 + TUnblockPINValue& aUnblockingPINValue, TPINValue& aNewPINValue,
1.267 + TRequestStatus& aStatus ) = 0;
1.268 +
1.269 + /**
1.270 + * Cancels an ongoing dialog.
1.271 + */
1.272 + virtual void Cancel() = 0;
1.273 + };
1.274 +
1.275 +inline MSecurityDialog::~MSecurityDialog() {}
1.276 +
1.277 +/**
1.278 + * Factory for creating the relevant concrete subclass of the security dialog
1.279 + */
1.280 +class SecurityDialogFactory
1.281 + {
1.282 +public:
1.283 + /**
1.284 + * Creates an instance of a subclass of MSecurityDialog. Implement to create
1.285 + * the appropriate security dialog
1.286 + *
1.287 + * @return An object that implements MSecurityDialog functions
1.288 + */
1.289 + IMPORT_C static MSecurityDialog* CreateL();
1.290 + };
1.291 +
1.292 +
1.293 +#endif