// Copyright 2024 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef NET_DEVICE_BOUND_SESSIONS_REGISTRATION_FETCHER_PARAM_H_
#define NET_DEVICE_BOUND_SESSIONS_REGISTRATION_FETCHER_PARAM_H_
#include <string>
#include <vector>
#include "base/containers/span.h"
#include "crypto/signature_verifier.h"
#include "net/base/net_export.h"
#include "net/http/http_response_headers.h"
#include "net/http/structured_headers.h"
#include "url/gurl.h"
namespace net::device_bound_sessions {
// Class to parse Sec-Session-Registration header.
// See explainer for details:
// https://github.com/WICG/dbsc/blob/main/README.md#start-session
// The header format for the session registration is a list of
// algorithm tokens, the list have two parameters, one is a string
// representing the challenge, the other is a string representing
// the path. Example:
// (RS256 ES256);path="start";challenge="code"
class NET_EXPORT RegistrationFetcherParam {
public:
RegistrationFetcherParam(RegistrationFetcherParam&& other);
RegistrationFetcherParam& operator=(
RegistrationFetcherParam&& other) noexcept;
// Disabled to make accidental copies compile errors.
RegistrationFetcherParam(const RegistrationFetcherParam& other) = delete;
RegistrationFetcherParam& operator=(const RegistrationFetcherParam&) = delete;
~RegistrationFetcherParam();
// Returns a vector of valid instances.
// TODO(chlily): Get IsolationInfo from the request as well
static std::vector<RegistrationFetcherParam> CreateIfValid(
const GURL& request_url,
const HttpResponseHeaders* headers);
// Convenience constructor for testing.
static RegistrationFetcherParam CreateInstanceForTesting(
GURL registration_endpoint,
std::vector<crypto::SignatureVerifier::SignatureAlgorithm>
supported_algos,
std::string challenge);
const GURL& registration_endpoint() const { return registration_endpoint_; }
base::span<const crypto::SignatureVerifier::SignatureAlgorithm>
supported_algos() const {
return supported_algos_;
}
const std::string& challenge() const { return challenge_; }
private:
RegistrationFetcherParam(
GURL registration_endpoint,
std::vector<crypto::SignatureVerifier::SignatureAlgorithm>
supported_algos,
std::string challenge);
static std::optional<RegistrationFetcherParam> ParseItem(
const GURL& request_url,
const structured_headers::ParameterizedMember& session_registration);
// TODO(chlily): Store last-updated time and last-updated isolationinfo as
// needed.
GURL registration_endpoint_;
std::vector<crypto::SignatureVerifier::SignatureAlgorithm> supported_algos_;
std::string challenge_;
};
} // namespace net::device_bound_sessions
#endif // NET_DEVICE_BOUND_SESSIONS_REGISTRATION_FETCHER_PARAM_H_