main/doxygen/acme__client__config_8h_source.html

// Copyright (c) Microsoft Corporation. All rights reserved.

// Licensed under the Apache 2.0 License.

#pragma once


#include "ccf/ds/json.h"


#include <optional>

#include <string>

#include <vector>


namespace ccf

{


  struct ACMEClientConfig

  {

    // Root certificate(s) of the CA to connect to in PEM format (for TLS

    // connections to the CA, e.g. Let's Encrypt's ISRG Root X1)

    std::vector<std::string> ca_certs;


    // URL of the ACME server's directory

    std::string directory_url;


    // DNS name of the service we represent

    std::string service_dns_name;


    // Alternative DNS names of the service we represent

    std::vector<std::string> alternative_names;


    // Contact addresses (see RFC8555 7.3, e.g. mailto:john@example.com)

    std::vector<std::string> contact;


    // Indication that the user/operator is aware of the latest terms and

    // conditions for the CA

    bool terms_of_service_agreed = false;


    // Type of the ACME challenge

    std::string challenge_type = "http-01";


    // Validity range (Note: not supported by Let's Encrypt)

    std::optional<std::string> not_before;

    std::optional<std::string> not_after;


    // Name of the interface that the challenge server listens on (if using the

    // built-in http-01 challenge server frontend)

    std::optional<std::string> challenge_server_interface = std::nullopt;


    bool operator==(const ACMEClientConfig& other) const = default;

  };


  DECLARE_JSON_TYPE(ACMEClientConfig);

  DECLARE_JSON_REQUIRED_FIELDS(

    ACMEClientConfig,

    ca_certs,

    directory_url,

    service_dns_name,

    contact,

    terms_of_service_agreed,

    challenge_type);

  DECLARE_JSON_OPTIONAL_FIELDS(

    ACMEClientConfig, not_before, not_after, challenge_server_interface);


  class ACMEChallengeHandler

  {

  public:

    std::map<std::string, std::string> token_responses;


    ACMEChallengeHandler() {}

    virtual ~ACMEChallengeHandler() = default;


    virtual bool ready(const std::string& token) = 0;

    virtual void remove(const std::string& token) = 0;

  };


}

ccf::ACMEChallengeHandler
Definition acme_client_config.h:62

ccf::ACMEChallengeHandler::token_responses
std::map< std::string, std::string > token_responses
Definition acme_client_config.h:64

ccf::ACMEChallengeHandler::ready
virtual bool ready(const std::string &token)=0

ccf::ACMEChallengeHandler::remove
virtual void remove(const std::string &token)=0

ccf::ACMEChallengeHandler::~ACMEChallengeHandler
virtual ~ACMEChallengeHandler()=default

ccf::ACMEChallengeHandler::ACMEChallengeHandler
ACMEChallengeHandler()
Definition acme_client_config.h:66

json.h

DECLARE_JSON_REQUIRED_FIELDS
#define DECLARE_JSON_REQUIRED_FIELDS(TYPE,...)
Definition json.h:714

DECLARE_JSON_TYPE
#define DECLARE_JSON_TYPE(TYPE)
Definition json.h:663

DECLARE_JSON_OPTIONAL_FIELDS
#define DECLARE_JSON_OPTIONAL_FIELDS(TYPE,...)
Definition json.h:786

ccf
Definition app_interface.h:14

ccf::ACMEClientConfig
Definition acme_client_config.h:14

ccf::ACMEClientConfig::not_after
std::optional< std::string > not_after
Definition acme_client_config.h:40

ccf::ACMEClientConfig::directory_url
std::string directory_url
Definition acme_client_config.h:20

ccf::ACMEClientConfig::challenge_server_interface
std::optional< std::string > challenge_server_interface
Definition acme_client_config.h:44

ccf::ACMEClientConfig::alternative_names
std::vector< std::string > alternative_names
Definition acme_client_config.h:26

ccf::ACMEClientConfig::service_dns_name
std::string service_dns_name
Definition acme_client_config.h:23

ccf::ACMEClientConfig::contact
std::vector< std::string > contact
Definition acme_client_config.h:29

ccf::ACMEClientConfig::operator==
bool operator==(const ACMEClientConfig &other) const =default

ccf::ACMEClientConfig::ca_certs
std::vector< std::string > ca_certs
Definition acme_client_config.h:17

ccf::ACMEClientConfig::not_before
std::optional< std::string > not_before
Definition acme_client_config.h:39

ccf::ACMEClientConfig::terms_of_service_agreed
bool terms_of_service_agreed
Definition acme_client_config.h:33

ccf::ACMEClientConfig::challenge_type
std::string challenge_type
Definition acme_client_config.h:36