[gcr] gcr: Document GcrCertificateRequest
- From: Stefan Walter <stefw src gnome org>
- To: commits-list gnome org
- Cc:
- Subject: [gcr] gcr: Document GcrCertificateRequest
- Date: Thu, 24 Nov 2011 06:58:43 +0000 (UTC)
commit e247100fb735ff5e0650fa0f3d45785875701ca3
Author: Stef Walter <stefw collabora co uk>
Date: Mon Nov 21 12:50:19 2011 +0100
gcr: Document GcrCertificateRequest
https://bugzilla.gnome.org/show_bug.cgi?id=663604
docs/reference/gcr/Makefile.am | 1 +
docs/reference/gcr/gcr-docs.sgml | 1 +
docs/reference/gcr/gcr-sections.txt | 28 ++++++++
gck/gck-session.c | 2 +-
gcr/gcr-certificate-request.c | 114 +++++++++++++++++++++++++++++++++-
gcr/gcr-certificate-request.h | 18 +++--
gcr/tests/frob-certificate-request.c | 2 +-
7 files changed, 154 insertions(+), 12 deletions(-)
---
diff --git a/docs/reference/gcr/Makefile.am b/docs/reference/gcr/Makefile.am
index e3b8b04..a801c50 100644
--- a/docs/reference/gcr/Makefile.am
+++ b/docs/reference/gcr/Makefile.am
@@ -58,6 +58,7 @@ EXTRA_HFILES=
# Header files to ignore when scanning. Use base file name, no paths
# e.g. IGNORE_HFILES=gtkdebug.h gtkintl.h
IGNORE_HFILES= \
+ console-interaction.h \
gcr-callback-output-stream.h \
gcr-certificate-exporter.h \
gcr-certificate-basics-widget.h \
diff --git a/docs/reference/gcr/gcr-docs.sgml b/docs/reference/gcr/gcr-docs.sgml
index 2c749dc..c68c120 100644
--- a/docs/reference/gcr/gcr-docs.sgml
+++ b/docs/reference/gcr/gcr-docs.sgml
@@ -19,6 +19,7 @@
<xi:include href="xml/gcr-simple-certificate.xml"/>
<xi:include href="xml/gcr-pkcs11-certificate.xml"/>
<xi:include href="xml/gcr-certificate-chain.xml"/>
+ <xi:include href="xml/gcr-certificate-request.xml"/>
</part>
<part id="collections">
diff --git a/docs/reference/gcr/gcr-sections.txt b/docs/reference/gcr/gcr-sections.txt
index adcb740..391c9ed 100644
--- a/docs/reference/gcr/gcr-sections.txt
+++ b/docs/reference/gcr/gcr-sections.txt
@@ -90,6 +90,34 @@ GcrGeneralNameType
</SECTION>
<SECTION>
+<FILE>gcr-certificate-request</FILE>
+GcrCertificateRequest
+GcrCertificateRequestFormat
+gcr_certificate_request_prepare
+gcr_certificate_request_complete
+gcr_certificate_request_complete_async
+gcr_certificate_request_complete_finish
+gcr_certificate_request_encode
+gcr_certificate_request_set_cn
+<SUBSECTION Private>
+GCR_CERTIFICATE_REQUEST
+GCR_CERTIFICATE_REQ_RENDERER
+GCR_CERTIFICATE_REQ_RENDERER_CLASS
+GCR_CERTIFICATE_REQ_RENDERER_GET_CLASS
+GCR_IS_CERTIFICATE_REQUEST
+GCR_IS_CERTIFICATE_REQ_RENDERER
+GCR_IS_CERTIFICATE_REQ_RENDERER_CLASS
+GCR_TYPE_CERTIFICATE_REQUEST
+GCR_TYPE_CERTIFICATE_REQUEST_FORMAT
+GCR_TYPE_CERTIFICATE_REQ_RENDERER
+GcrCertificateReqRenderer
+GcrCertificateReqRendererClass
+GcrCertificateReqRendererPrivate
+gcr_certificate_request_get_type
+gcr_certificate_request_format_get_type
+</SECTION>
+
+<SECTION>
<FILE>gcr-importer</FILE>
GcrImporter
GcrImporterIface
diff --git a/gck/gck-session.c b/gck/gck-session.c
index 9e63a3b..fa62af1 100644
--- a/gck/gck-session.c
+++ b/gck/gck-session.c
@@ -330,7 +330,7 @@ gck_session_class_init (GckSessionClass *klass)
/**
* GckSession:opening-flags:
*
- * Raw PKCS\#11 flags used to open the PKCS#11 session.
+ * Raw PKCS\#11 flags used to open the PKCS\#11 session.
*/
g_object_class_install_property (gobject_class, PROP_OPENING_FLAGS,
g_param_spec_ulong ("opening-flags", "Opening flags", "PKCS#11 open session flags",
diff --git a/gcr/gcr-certificate-request.c b/gcr/gcr-certificate-request.c
index a097e5b..dce8d7d 100644
--- a/gcr/gcr-certificate-request.c
+++ b/gcr/gcr-certificate-request.c
@@ -32,6 +32,34 @@
#include <glib/gi18n-lib.h>
+/**
+ * SECTION:gcr-certificate-request
+ * @title: GcrCertificateRequest
+ * @short_description: Represents a certificate request
+ *
+ * This is an object that allows creation of certificate requests. A
+ * certificate request is sent to a certificate authority to request an
+ * X.509 certificate.
+ *
+ * Use gcr_certificate_request_prepare() to create a blank certificate
+ * request for a given private key. Set the common name on the certificate
+ * request with gcr_certificate_request_set_cn(), and then sign the request
+ * with gcr_certificate_request_complete_async().
+ */
+
+/**
+ * GcrCertificateRequest:
+ *
+ * Represents a certificate request.
+ */
+
+/**
+ * GcrCertificateRequestFormat:
+ * @GCR_CERTIFICATE_REQUEST_PKCS10: certificate request is in PKCS\#10 format
+ *
+ * The format of a certificate request. Currently only PKCS\#10 is supported.
+ */
+
#define GCR_CERTIFICATE_REQUEST_CLASS(klass) (G_TYPE_CHECK_CLASS_CAST ((klass), GCR_TYPE_CERTIFICATE_REQUEST, GcrCertificateRequestClass))
#define GCR_IS_CERTIFICATE_REQUEST_CLASS(klass) (G_TYPE_CHECK_CLASS_TYPE ((klass), GCR_TYPE_CERTIFICATE_REQUEST))
#define GCR_CERTIFICATE_REQUEST_GET_CLASS(obj) (G_TYPE_INSTANCE_GET_CLASS ((obj), GCR_TYPE_CERTIFICATE_REQUEST, GcrCertificateRequestClass))
@@ -125,10 +153,10 @@ gcr_certificate_request_get_property (GObject *obj,
switch (prop_id) {
case PROP_PRIVATE_KEY:
- g_value_set_object (value, self->private_key);
+ g_value_set_object (value, gcr_certificate_request_get_private_key (self));
break;
case PROP_FORMAT:
- g_value_set_enum (value, GCR_CERTIFICATE_REQUEST_PKCS10);
+ g_value_set_enum (value, gcr_certificate_request_get_format (self));
break;
default:
G_OBJECT_WARN_INVALID_PROPERTY_ID (obj, prop_id, pspec);
@@ -148,10 +176,20 @@ gcr_certificate_request_class_init (GcrCertificateRequestClass *klass)
gobject_class->set_property = gcr_certificate_request_set_property;
gobject_class->get_property = gcr_certificate_request_get_property;
+ /**
+ * GcrCertificateRequest:private-key:
+ *
+ * The private key that this certificate request is for.
+ */
g_object_class_install_property (gobject_class, PROP_PRIVATE_KEY,
g_param_spec_object ("private-key", "Private key", "Private key for request",
GCK_TYPE_OBJECT, G_PARAM_READWRITE | G_PARAM_CONSTRUCT_ONLY));
+ /**
+ * GcrCertificateRequest:format:
+ *
+ * The format of the certificate request.
+ */
g_object_class_install_property (gobject_class, PROP_FORMAT,
g_param_spec_enum ("format", "Format", "Format of certificate request",
GCR_TYPE_CERTIFICATE_REQUEST_FORMAT, GCR_CERTIFICATE_REQUEST_PKCS10,
@@ -163,7 +201,7 @@ gcr_certificate_request_class_init (GcrCertificateRequestClass *klass)
* @format: the format for the certificate request
* @private_key: the private key the the certificate is being requested for
*
- * xxx
+ * Create a new certificate request, in the given format for the private key.
*
* Returns: (transfer full): a new #GcrCertificate request
*/
@@ -180,6 +218,43 @@ gcr_certificate_request_prepare (GcrCertificateRequestFormat format,
NULL);
}
+/**
+ * gcr_certificate_request_get_private_key:
+ * @self: the certificate request
+ *
+ * Get the private key this certificate request is for.
+ *
+ * Returns: (transfer none): the private key,
+ */
+GckObject *
+gcr_certificate_request_get_private_key (GcrCertificateRequest *self)
+{
+ g_return_val_if_fail (GCR_IS_CERTIFICATE_REQUEST (self), NULL);
+ return self->private_key;
+}
+
+/**
+ * gcr_certificate_request_get_format:
+ * @self: the certificate request
+ *
+ * Get the format of this certificate request.
+ *
+ * Returns: the format
+ */
+GcrCertificateRequestFormat
+gcr_certificate_request_get_format (GcrCertificateRequest *self)
+{
+ g_return_val_if_fail (GCR_IS_CERTIFICATE_REQUEST (self), 0);
+ return GCR_CERTIFICATE_REQUEST_PKCS10;
+}
+
+/**
+ * gcr_certificate_request_set_cn:
+ * @self: the certificate request
+ * @cn: common name to set on the request
+ *
+ * Set the common name encoded in the certificate request.
+ */
void
gcr_certificate_request_set_cn (GcrCertificateRequest *self,
const gchar *cn)
@@ -277,6 +352,19 @@ encode_take_signature_into_request (GcrCertificateRequest *self,
egg_bytes_unref (data);
}
+/**
+ * gcr_certificate_request_complete:
+ * @self: a certificate request
+ * @cancellable: a cancellation object
+ * @error: location to place an error on failure
+ *
+ * Complete and sign a certificate request, so that it can be encoded
+ * and sent to a certificate authority.
+ *
+ * This call may block as it signs the request using the private key.
+ *
+ * Returns: whether certificate request was successfully completed or not
+ */
gboolean
gcr_certificate_request_complete (GcrCertificateRequest *self,
GCancellable *cancellable,
@@ -414,6 +502,18 @@ on_subject_public_key_loaded (GObject *source,
g_object_unref (res);
}
+/**
+ * gcr_certificate_request_complete_async:
+ * @self: a certificate request
+ * @cancellable: a cancellation object
+ * @callback: called when the operation completes
+ * @user_data: data to pass to the callback
+ *
+ * Asynchronously complete and sign a certificate request, so that it can
+ * be encoded and sent to a certificate authority.
+ *
+ * This call will return immediately and complete later.
+ */
void
gcr_certificate_request_complete_async (GcrCertificateRequest *self,
GCancellable *cancellable,
@@ -442,7 +542,15 @@ gcr_certificate_request_complete_async (GcrCertificateRequest *self,
}
/**
+ * gcr_certificate_request_complete_finish:
+ * @self: a certificate request
+ * @result: result of the asynchronous operation
+ * @error: location to place an error on failure
+ *
+ * Finish an asynchronous operation to complete and sign a certificate
+ * request.
*
+ * Returns: whether certificate request was successfully completed or not
*/
gboolean
gcr_certificate_request_complete_finish (GcrCertificateRequest *self,
diff --git a/gcr/gcr-certificate-request.h b/gcr/gcr-certificate-request.h
index b83ba0f..c2f715c 100644
--- a/gcr/gcr-certificate-request.h
+++ b/gcr/gcr-certificate-request.h
@@ -42,28 +42,32 @@ typedef enum {
typedef struct _GcrCertificateRequest GcrCertificateRequest;
-GType gcr_certificate_request_get_type (void) G_GNUC_CONST;
+GType gcr_certificate_request_get_type (void) G_GNUC_CONST;
-GcrCertificateRequest * gcr_certificate_request_prepare (GcrCertificateRequestFormat format,
+GcrCertificateRequest * gcr_certificate_request_prepare (GcrCertificateRequestFormat format,
GckObject *private_key);
-void gcr_certificate_request_set_cn (GcrCertificateRequest *self,
+GckObject * gcr_certificate_request_get_private_key (GcrCertificateRequest *self);
+
+GcrCertificateRequestFormat gcr_certificate_request_get_format (GcrCertificateRequest *self);
+
+void gcr_certificate_request_set_cn (GcrCertificateRequest *self,
const gchar *cn);
-gboolean gcr_certificate_request_complete (GcrCertificateRequest *self,
+gboolean gcr_certificate_request_complete (GcrCertificateRequest *self,
GCancellable *cancellable,
GError **error);
-void gcr_certificate_request_complete_async (GcrCertificateRequest *self,
+void gcr_certificate_request_complete_async (GcrCertificateRequest *self,
GCancellable *cancellable,
GAsyncReadyCallback callback,
gpointer user_data);
-gboolean gcr_certificate_request_complete_finish (GcrCertificateRequest *self,
+gboolean gcr_certificate_request_complete_finish (GcrCertificateRequest *self,
GAsyncResult *result,
GError **error);
-guchar * gcr_certificate_request_get_der_data (GcrCertificateRequest *request,
+guchar * gcr_certificate_request_encode (GcrCertificateRequest *self,
gsize *length);
G_END_DECLS
diff --git a/gcr/tests/frob-certificate-request.c b/gcr/tests/frob-certificate-request.c
index a13a553..78c0815 100644
--- a/gcr/tests/frob-certificate-request.c
+++ b/gcr/tests/frob-certificate-request.c
@@ -85,7 +85,7 @@ test_request (const gchar *uri)
gcr_certificate_request_complete (req, NULL, &error);
g_assert_no_error (error);
- data = gcr_certificate_request_get_der_data (req, &n_data);
+ data = gcr_certificate_request_encode (req, &n_data);
output = egg_armor_write (data, n_data,
g_quark_from_static_string ("CERTIFICATE REQUEST"),
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
