templates/security/PkcsAuthInit.hpp - geode-native - Git at Google

 /*
  * Licensed to the Apache Software Foundation (ASF) under one or more
  * contributor license agreements.  See the NOTICE file distributed with
  * this work for additional information regarding copyright ownership.
  * The ASF licenses this file to You under the Apache License, Version 2.0
  * (the "License"); you may not use this file except in compliance with
  * the License.  You may obtain a copy of the License at
  *
  *      http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */

 #ifndef __PKCSAUTHINIT__
 #define __PKCSAUTHINIT__

 #include <cstdio>
 #include <cstdlib>

 #pragma error_messages(off, macroredef)

 #include <openssl/err.h>
 #include <openssl/evp.h>
 #include <openssl/objects.h>
 #include <openssl/pem.h>
 #include <openssl/pkcs12.h>
 #include <openssl/rsa.h>
 #include <openssl/x509.h>
 #define KSSL_H 1
 #include <openssl/ssl.h>

 #pragma error_messages(on, macroredef)

 #include <geode/AuthInitialize.hpp>

 /**
  * @file
  */

 const char KEYSTORE_FILE_PATH[] = "security-keystorepath";

 const char KEYSTORE_ALIAS[] = "security-alias";

 const char KEYSTORE_PASSWORD[] = "security-keystorepass";

 const char SIGNATURE_DATA[] = "security-signature";

 namespace apache {
 namespace geode {
 namespace client {

 /**
  * @class PKCSAuthInit Implementation PKCSAuthInit.hpp
  * PKCSAuthInit API for getCredentials.
  * The PKCSAuthInit class derives from AuthInitialize base class.
  * It uses the provided alias, password and corresponding keystore to obtain the
  * private key and
  * encrypts data. This data is sent to server for authentication.
  *
  */

 class PKCSAuthInit : public AuthInitialize {
  public:
   PKCSAuthInit() = default;
   ~PKCSAuthInit() noexcept override = default;

   /**@brief initialize with the given set of security properties
    * and return the credentials for the client as properties.
    * @param props the set of security properties provided to the
    * <code>DistributedSystem.connect</code> method
    * @param server it is the ID of the current endpoint.
    * The format expected is "host:port".
    * @returns the credentials to be used for the given <code>server</code>
    */
   std::shared_ptr<Properties> getCredentials(
       const std::shared_ptr<Properties>& securityprops,
       const std::string& server) override;

   /**
    * @brief Invoked before the cache goes down.
    */
   void close() override { return; }

   /**
    * @brief private members
    */

  private:
 };
 }  // namespace client
 }  // namespace geode
 }  // namespace apache
 #endif  //__PKCSAUTHINIT__
	/*
	* Licensed to the Apache Software Foundation (ASF) under one or more
	* contributor license agreements. See the NOTICE file distributed with
	* this work for additional information regarding copyright ownership.
	* The ASF licenses this file to You under the Apache License, Version 2.0
	* (the "License"); you may not use this file except in compliance with
	* the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	#ifndef __PKCSAUTHINIT__
	#define __PKCSAUTHINIT__

	#include <cstdio>
	#include <cstdlib>

	#pragma error_messages(off, macroredef)

	#include <openssl/err.h>
	#include <openssl/evp.h>
	#include <openssl/objects.h>
	#include <openssl/pem.h>
	#include <openssl/pkcs12.h>
	#include <openssl/rsa.h>
	#include <openssl/x509.h>
	#define KSSL_H 1
	#include <openssl/ssl.h>

	#pragma error_messages(on, macroredef)

	#include <geode/AuthInitialize.hpp>

	/**
	* @file
	*/

	const char KEYSTORE_FILE_PATH[] = "security-keystorepath";

	const char KEYSTORE_ALIAS[] = "security-alias";

	const char KEYSTORE_PASSWORD[] = "security-keystorepass";

	const char SIGNATURE_DATA[] = "security-signature";

	namespace apache {
	namespace geode {
	namespace client {

	/**
	* @class PKCSAuthInit Implementation PKCSAuthInit.hpp
	* PKCSAuthInit API for getCredentials.
	* The PKCSAuthInit class derives from AuthInitialize base class.
	* It uses the provided alias, password and corresponding keystore to obtain the
	* private key and
	* encrypts data. This data is sent to server for authentication.
	*
	*/

	class PKCSAuthInit : public AuthInitialize {
	public:
	PKCSAuthInit() = default;
	~PKCSAuthInit() noexcept override = default;

	/**@brief initialize with the given set of security properties
	* and return the credentials for the client as properties.
	* @param props the set of security properties provided to the
	* <code>DistributedSystem.connect</code> method
	* @param server it is the ID of the current endpoint.
	* The format expected is "host:port".
	* @returns the credentials to be used for the given <code>server</code>
	*/
	std::shared_ptr<Properties> getCredentials(
	const std::shared_ptr<Properties>& securityprops,
	const std::string& server) override;

	/**
	* @brief Invoked before the cache goes down.
	*/
	void close() override { return; }

	/**
	* @brief private members
	*/

	private:
	};
	} // namespace client
	} // namespace geode
	} // namespace apache
	#endif //__PKCSAUTHINIT__