X509Context.h

/* Emacs mode: -*- c++ -*- */
/*
 *  Copyright (c) 2008-2009,2012 Isode Limited, London, England.
 *  All rights reserved.
 *
 *  Acquisition and use of this software and related materials for any
 *  purpose requires a written licence agreement from Isode Limited,
 *  or a written licence from an organisation licenced by Isode Limited
 *  to grant such a licence.
 *
 * @VERSION@
 *
 */
 
/* 
 * Declares things for X509_Context
 */
 
#ifndef __X509_CONTEXT_H
#define __X509_CONTEXT_H
 
#include <string>
#include <list>
#include <isode/crypto/x509.h>
#include "cdecl.h"
 
namespace X509_Context {
    struct Config {
        std::string ident_file;
        std::string ident_pphr_file;
        std::list<std::string> certs;
        std::list<std::string> trust_anchors;
        std::string ldap_host;
        int ldap_port;
        int check_revocation;
        bool OCSPnonce;                         
        std::string OCSPuri;                    
        std::string OCSPresponder;              
        int lookup_flags;                       
 
        EVENTSVC_DLL Config() : ldap_port(389), check_revocation(0), OCSPnonce(false), lookup_flags(0) {}
        EVENTSVC_DLL bool set_ldap_url(const std::string&);
 
        EVENTSVC_DLL bool operator!=(const Config&) const;
    };
 
    struct Identity {
        X509_IDENTITY *identity;
        X509_CERT_CTX *cert_ctx;
        EVENTSVC_DLL Identity(Config&);
        EVENTSVC_DLL Identity(PKCS12 *p12, const char *pphr);
 
        ~Identity() {
            x509_destroy_identity(&identity);
            x509_destroy_cert_ctx(&cert_ctx);
        }
 
    private:
        Identity(const Identity&);
        Identity(void);
        Identity& operator=(const Identity&);
    };
}
 
#endif