Re-subimission of https://codereview.chromium.org/1041213003/
[chromium-blink-merge.git] / content / browser / ssl / ssl_policy_backend.h
blob15ebe310a0e3c87e5abc8dd44ce49498a192bd3b
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 #ifndef CONTENT_BROWSER_SSL_SSL_POLICY_BACKEND_H_
6 #define CONTENT_BROWSER_SSL_SSL_POLICY_BACKEND_H_
8 #include <string>
9 #include <vector>
11 #include "base/basictypes.h"
12 #include "base/strings/string16.h"
13 #include "content/public/browser/ssl_host_state_delegate.h"
14 #include "net/cert/cert_status_flags.h"
15 #include "net/cert/x509_certificate.h"
17 namespace content {
18 class NavigationControllerImpl;
20 class SSLPolicyBackend {
21 public:
22 explicit SSLPolicyBackend(NavigationControllerImpl* controller);
24 // Records that a host has run insecure content.
25 void HostRanInsecureContent(const std::string& host, int pid);
27 // Returns whether the specified host ran insecure content.
28 bool DidHostRunInsecureContent(const std::string& host, int pid) const;
30 // Records that |cert| is permitted to be used for |host| in the future, for
31 // a specific error type.
32 void AllowCertForHost(const net::X509Certificate& cert,
33 const std::string& host,
34 net::CertStatus error);
36 // Queries whether |cert| is allowed for |host|. Returns true in
37 // |expired_previous_decision| if a user decision had been made previously but
38 // that decision has expired, otherwise false.
39 SSLHostStateDelegate::CertJudgment QueryPolicy(
40 const net::X509Certificate& cert,
41 const std::string& host,
42 net::CertStatus error,
43 bool* expired_previous_decision);
45 private:
46 // SSL state delegate specific for each host.
47 SSLHostStateDelegate* ssl_host_state_delegate_;
49 NavigationControllerImpl* controller_;
51 DISALLOW_COPY_AND_ASSIGN(SSLPolicyBackend);
54 } // namespace content
56 #endif // CONTENT_BROWSER_SSL_SSL_POLICY_BACKEND_H_