2010-02-15 12:17:42 -05:00
|
|
|
// $OpenLDAP$
|
|
|
|
|
/*
|
|
|
|
|
* Copyright 2010, OpenLDAP Foundation, All Rights Reserved.
|
|
|
|
|
* COPYING RESTRICTIONS APPLY, see COPYRIGHT file
|
|
|
|
|
*/
|
|
|
|
|
#ifndef TLS_OPTIONS_H
|
|
|
|
|
#define TLS_OPTIONS_H
|
|
|
|
|
#include <string>
|
|
|
|
|
#include <ldap.h>
|
|
|
|
|
|
|
|
|
|
class TlsOptions {
|
|
|
|
|
public:
|
|
|
|
|
enum tls_option {
|
|
|
|
|
CACERTFILE=0,
|
|
|
|
|
CACERTDIR,
|
|
|
|
|
CERTFILE,
|
|
|
|
|
KEYFILE,
|
|
|
|
|
REQUIRE_CERT,
|
|
|
|
|
PROTOCOL_MIN,
|
|
|
|
|
CIPHER_SUITE,
|
|
|
|
|
RANDOM_FILE,
|
|
|
|
|
CRLCHECK,
|
|
|
|
|
DHFILE,
|
2010-02-16 06:55:33 -05:00
|
|
|
LASTOPT /* dummy */
|
2010-02-15 12:17:42 -05:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
TlsOptions( LDAP* ld=NULL );
|
2010-02-16 12:44:22 -05:00
|
|
|
void setOption(tls_option opt, const std::string& value) const;
|
|
|
|
|
void setOption(tls_option opt, int value) const;
|
|
|
|
|
void setOption(tls_option opt, void *value) const;
|
2010-02-15 12:17:42 -05:00
|
|
|
|
|
|
|
|
int getIntOption(tls_option opt) const;
|
|
|
|
|
std::string getStringOption(tls_option opt) const;
|
2010-02-16 12:44:22 -05:00
|
|
|
void getOption(tls_option opt, void *value ) const;
|
2010-02-15 12:17:42 -05:00
|
|
|
|
|
|
|
|
enum verifyMode {
|
|
|
|
|
NEVER=0,
|
|
|
|
|
HARD,
|
|
|
|
|
DEMAND,
|
|
|
|
|
ALLOW,
|
|
|
|
|
TRY
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
enum crlMode {
|
|
|
|
|
CRL_NONE=0,
|
|
|
|
|
CRL_PEER,
|
|
|
|
|
CRL_ALL
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
private:
|
2010-02-16 12:48:14 -05:00
|
|
|
void newCtx() const;
|
2010-02-15 12:17:42 -05:00
|
|
|
LDAP *m_ld;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
#endif /* TLS_OPTIONS_H */
|
