[network-manager-applet/lr/pkcs11: 16/17] libnma: add the PKCS#11 capable certificate chooser



commit 61b1e5a156f9b9be171285c6a6851c2fb213c295
Author: Lubomir Rintel <lkundrak v3 sk>
Date:   Mon Feb 27 08:57:29 2017 +0100

    libnma: add the PKCS#11 capable certificate chooser
    
    Default to it unless Gcr support is unavailable or an application
    indicateas it only supports certificates in plain files.
    
    This one is libnma only. The libnm-gtk can still utilize the
    NMAFileCertChooser. Since libnm-glib doesn't support PKCS#11 tokens it
    wouldn't make too much sense anyway.

 Makefile.am                          |   13 +-
 po/POTFILES.in                       |    1 +
 src/libnma/nma-cert-chooser.c        |   15 +-
 src/libnma/nma-pkcs11-cert-chooser.c |  557 ++++++++++++++++++++++++++++++++++
 src/libnma/nma-pkcs11-cert-chooser.h |   50 +++
 5 files changed, 631 insertions(+), 5 deletions(-)
---
diff --git a/Makefile.am b/Makefile.am
index 23117b7..63b7605 100644
--- a/Makefile.am
+++ b/Makefile.am
@@ -503,12 +503,14 @@ if WITH_GCR
 libnma_h_priv_real += \
        src/libnma/nma-pkcs11-token-login-dialog.h \
        src/libnma/nma-pkcs11-cert-chooser-dialog.h \
-       src/libnma/nma-cert-chooser-button.h
+       src/libnma/nma-cert-chooser-button.h \
+       src/libnma/nma-pkcs11-cert-chooser.h
 
 libnma_c_real += \
        src/libnma/nma-pkcs11-token-login-dialog.c \
        src/libnma/nma-pkcs11-cert-chooser-dialog.c \
-       src/libnma/nma-cert-chooser-button.c
+       src/libnma/nma-cert-chooser-button.c \
+       src/libnma/nma-pkcs11-cert-chooser.c
 endif
 
 src_libnma_libnmadir = $(includedir)/libnma
@@ -579,6 +581,7 @@ EXTRA_DIST += \
        src/libnma/libnma.ver \
        src/libnma/wifi.ui \
        src/libnma/nma-pkcs11-token-login-dialog.ui \
+       src/libnma/nma-pkcs11-cert-chooser-dialog.ui \
        src/libnma/nma.gresource.xml
 
 ###############################################################################
@@ -879,14 +882,16 @@ IGNORE_HFILES = \
        nma-file-cert-chooser.h \
        nma-pkcs11-token-login-dialog.h \
        nma-pkcs11-cert-chooser-dialog.h \
-       nma-cert-chooser-button.h
+       nma-cert-chooser-button.h \
+       nma-pkcs11-cert-chooser.h
 
 mkdb_ignore_c_files = \
        nma-resources.c \
        nma-file-cert-chooser.c \
        nma-pkcs11-token-login-dialog.c \
        nma-pkcs11-cert-chooser-dialog.c \
-       nma-cert-chooser-button.c
+       nma-cert-chooser-button.c \
+       nma-pkcs11-cert-chooser.c
 
 MKDB_OPTIONS = --ignore-files "$(IGNORE_HFILES) $(mkdb_ignore_c_files)"
 
diff --git a/po/POTFILES.in b/po/POTFILES.in
index 90109b2..1ac9a33 100644
--- a/po/POTFILES.in
+++ b/po/POTFILES.in
@@ -79,6 +79,7 @@ src/libnma/nma-file-cert-chooser.c
 src/libnma/nma-mobile-providers.c
 src/libnma/nma-mobile-wizard.c
 src/libnma/nma-cert-chooser-button.c
+src/libnma/nma-pkcs11-cert-chooser.c
 src/libnma/nma-pkcs11-cert-chooser-dialog.c
 [type: gettext/glade]src/libnma/nma-pkcs11-cert-chooser-dialog.ui
 src/libnma/nma-pkcs11-token-login-dialog.c
diff --git a/src/libnma/nma-cert-chooser.c b/src/libnma/nma-cert-chooser.c
index ef07b97..da35a66 100644
--- a/src/libnma/nma-cert-chooser.c
+++ b/src/libnma/nma-cert-chooser.c
@@ -23,6 +23,7 @@
 #include "nm-default.h"
 #include "nma-cert-chooser.h"
 #include "nma-file-cert-chooser.h"
+#include "nma-pkcs11-cert-chooser.h"
 
 /**
  * SECTION:nma-cert-chooser
@@ -637,8 +638,20 @@ nma_cert_chooser_get_key_password_flags (NMACertChooser *cert_chooser)
 static GObject *
 constructor (GType type, guint n_construct_properties, GObjectConstructParam *construct_properties)
 {
-       if (type == NMA_TYPE_CERT_CHOOSER)
+       NMACertChooserFlags flags = NMA_CERT_CHOOSER_FLAG_NONE;
+       int i;
+
+       if (type == NMA_TYPE_CERT_CHOOSER) {
+               for (i = 0; i < n_construct_properties; i++) {
+                       if (strcmp (construct_properties[i].pspec->name, "flags") == 0)
+                               flags |= g_value_get_uint (construct_properties[i].value);
+               }
                type = NMA_TYPE_FILE_CERT_CHOOSER;
+#if LIBNM_BUILD && WITH_GCR
+               if ((flags & NMA_CERT_CHOOSER_FLAG_PEM) == 0)
+                       type = NMA_TYPE_PKCS11_CERT_CHOOSER;
+#endif
+       }
 
        return G_OBJECT_CLASS (nma_cert_chooser_parent_class)->constructor (type,
                                                                            n_construct_properties,
diff --git a/src/libnma/nma-pkcs11-cert-chooser.c b/src/libnma/nma-pkcs11-cert-chooser.c
new file mode 100644
index 0000000..fc8e388
--- /dev/null
+++ b/src/libnma/nma-pkcs11-cert-chooser.c
@@ -0,0 +1,557 @@
+/* NetworkManager Applet -- allow user control over networking
+ *
+ * Lubomir Rintel <lkundrak v3 sk>
+ *
+ * This library is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License as published by the Free Software Foundation; either
+ * version 2 of the License, or (at your option) any later version.
+ *
+ * This library is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public
+ * License along with this library; if not, write to the
+ * Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
+ * Boston, MA 02110-1301 USA.
+ *
+ * Copyright (C) 2017 Red Hat, Inc.
+ */
+
+#include "nm-default.h"
+#include "nma-pkcs11-cert-chooser.h"
+#include "nma-cert-chooser-button.h"
+#include "nma-ui-utils.h"
+#include "utils.h"
+
+#include <glib/gstdio.h>
+#include <gck/gck.h>
+#include <sys/stat.h>
+#include <fcntl.h>
+#include <errno.h>
+
+typedef struct {
+       GtkWidget *key_button_label;
+       GtkWidget *key_password_label;
+       GtkWidget *cert_button_label;
+       GtkWidget *cert_password_label;
+       GtkWidget *key_button;
+       GtkWidget *key_password;
+       GtkWidget *cert_button;
+       GtkWidget *cert_password;
+} NMAPkcs11CertChooserPrivate;
+
+#define NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE(o) (G_TYPE_INSTANCE_GET_PRIVATE ((o), 
NMA_TYPE_PKCS11_CERT_CHOOSER, NMAPkcs11CertChooserPrivate))
+
+G_DEFINE_TYPE (NMAPkcs11CertChooser, nma_pkcs11_cert_chooser, NMA_TYPE_CERT_CHOOSER)
+
+static void
+set_key_password (NMACertChooser *cert_chooser, const gchar *password)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       g_return_if_fail (priv->key_password != NULL);
+       if (password)
+               gtk_entry_set_text (GTK_ENTRY (priv->key_password), password);
+}
+
+static const gchar *
+get_key_password (NMACertChooser *cert_chooser)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       g_return_val_if_fail (priv->key_password != NULL, NULL);
+       return gtk_entry_get_text (GTK_ENTRY (priv->key_password));
+}
+
+static void
+set_key_uri (NMACertChooser *cert_chooser, const gchar *uri)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       gtk_widget_set_sensitive (priv->key_button, TRUE);
+       gtk_widget_set_sensitive (priv->key_button_label, TRUE);
+       gtk_widget_set_sensitive (priv->key_password, TRUE);
+       gtk_widget_set_sensitive (priv->key_password_label, TRUE);
+       nma_cert_chooser_button_set_uri (NMA_CERT_CHOOSER_BUTTON (priv->key_button), uri);
+}
+
+static gchar *
+get_key_uri (NMACertChooser *cert_chooser)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       return g_strdup (nma_cert_chooser_button_get_uri (NMA_CERT_CHOOSER_BUTTON (priv->key_button)));
+}
+
+static void
+set_cert_password (NMACertChooser *cert_chooser, const gchar *password)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       g_return_if_fail (priv->cert_password != NULL);
+       if (password)
+               gtk_entry_set_text (GTK_ENTRY (priv->cert_password), password);
+}
+
+static const gchar *
+get_cert_password (NMACertChooser *cert_chooser)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       g_return_val_if_fail (priv->cert_password != NULL, NULL);
+       return gtk_entry_get_text (GTK_ENTRY (priv->cert_password));
+}
+
+static void
+set_cert_uri (NMACertChooser *cert_chooser, const gchar *uri)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       if (g_str_has_prefix (uri, NM_SETTING_802_1X_CERT_SCHEME_PREFIX_PATH)) {
+               gtk_widget_set_sensitive (priv->cert_password, FALSE);
+               gtk_widget_set_sensitive (priv->cert_password_label, FALSE);
+       } else if (g_str_has_prefix (uri, NM_SETTING_802_1X_CERT_SCHEME_PREFIX_PKCS11)) {
+               gtk_widget_set_sensitive (priv->cert_password, TRUE);
+               gtk_widget_set_sensitive (priv->cert_password_label, TRUE);
+       } else {
+               g_warning ("The certificate '%s' uses an unknown scheme\n", uri);
+               return;
+       }
+
+       nma_cert_chooser_button_set_uri (NMA_CERT_CHOOSER_BUTTON (priv->cert_button), uri);
+}
+
+static gchar *
+get_cert_uri (NMACertChooser *cert_chooser)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       return g_strdup (nma_cert_chooser_button_get_uri (NMA_CERT_CHOOSER_BUTTON (priv->cert_button)));
+}
+
+static void
+add_to_size_group (NMACertChooser *cert_chooser, GtkSizeGroup *group)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       gtk_size_group_add_widget (group, priv->cert_button_label);
+       gtk_size_group_add_widget (group, priv->cert_password_label);
+       gtk_size_group_add_widget (group, priv->key_button_label);
+       gtk_size_group_add_widget (group, priv->key_password_label);
+}
+
+static gboolean
+validate (NMACertChooser *cert_chooser, GError **error)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+       GError *local = NULL;
+
+       if (!nma_cert_chooser_button_get_uri (NMA_CERT_CHOOSER_BUTTON (priv->cert_button))) {
+               g_set_error_literal (error, NMA_ERROR, NMA_ERROR_GENERIC, _("No certificate set"));
+               return FALSE;
+       }
+
+       g_signal_emit_by_name (cert_chooser, "cert-validate", &local);
+       if (local) {
+               widget_set_error (priv->cert_button);
+               g_propagate_error (error, local);
+               return FALSE;
+       } else {
+               widget_unset_error (priv->cert_button);
+       }
+
+       g_signal_emit_by_name (cert_chooser, "cert-password-validate", &local);
+       if (local) {
+               widget_set_error (priv->cert_password);
+               g_propagate_error (error, local);
+               return FALSE;
+       } else {
+               widget_unset_error (priv->cert_password);
+       }
+
+       if (gtk_widget_get_visible (priv->key_button)) {
+               if (!nma_cert_chooser_button_get_uri (NMA_CERT_CHOOSER_BUTTON (priv->cert_button))) {
+                       g_set_error_literal (error, NMA_ERROR, NMA_ERROR_GENERIC, _("No key set"));
+                       return FALSE;
+               }
+
+               g_signal_emit_by_name (cert_chooser, "key-validate", &local);
+               if (local) {
+                       widget_set_error (priv->key_button);
+                       g_propagate_error (error, local);
+                       return FALSE;
+               } else {
+                       widget_unset_error (priv->key_button);
+               }
+
+               g_signal_emit_by_name (cert_chooser, "key-password-validate", &local);
+               if (local) {
+                       widget_set_error (priv->key_password);
+                       g_propagate_error (error, local);
+                       return FALSE;
+               } else {
+                       widget_unset_error (priv->key_password);
+               }
+       }
+
+       return TRUE;
+}
+
+static void
+setup_key_password_storage (NMACertChooser *cert_chooser,
+                            NMSettingSecretFlags initial_flags,
+                            NMSetting *setting,
+                            const char *password_flags_name,
+                            gboolean with_not_required,
+                            gboolean ask_mode)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       nma_utils_setup_password_storage (priv->key_password,
+                                         initial_flags,
+                                         setting,
+                                         password_flags_name,
+                                         with_not_required,
+                                         ask_mode);
+}
+
+static void
+update_key_password_storage (NMACertChooser *cert_chooser,
+                             NMSettingSecretFlags secret_flags,
+                             NMSetting *setting,
+                             const char *password_flags_name)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       nma_utils_update_password_storage (priv->key_password,
+                                          secret_flags,
+                                          setting,
+                                          password_flags_name);
+}
+
+static NMSettingSecretFlags
+get_key_password_flags (NMACertChooser *cert_chooser)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       return nma_utils_menu_to_secret_flags (priv->key_password);
+}
+
+static void
+setup_cert_password_storage (NMACertChooser *cert_chooser,
+                             NMSettingSecretFlags initial_flags,
+                             NMSetting *setting,
+                             const char *password_flags_name,
+                             gboolean with_not_required,
+                             gboolean ask_mode)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       nma_utils_setup_password_storage (priv->cert_password,
+                                         initial_flags,
+                                         setting,
+                                         password_flags_name,
+                                         with_not_required,
+                                         ask_mode);
+}
+
+static void
+update_cert_password_storage (NMACertChooser *cert_chooser,
+                              NMSettingSecretFlags secret_flags,
+                              NMSetting *setting,
+                              const char *password_flags_name)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       nma_utils_update_password_storage (priv->cert_password,
+                                          secret_flags,
+                                          setting,
+                                          password_flags_name);
+}
+
+static NMSettingSecretFlags
+get_cert_password_flags (NMACertChooser *cert_chooser)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       return nma_utils_menu_to_secret_flags (priv->cert_password);
+}
+
+static void
+cert_changed_cb (NMACertChooserButton *button, gpointer user_data)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (user_data);
+       GckUriData *uri_data;
+       gchar *pin = NULL;
+       const gchar *uri;
+
+       uri = nma_cert_chooser_button_get_uri (button);
+       if (!uri)
+               return;
+       uri_data = gck_uri_parse (uri, GCK_URI_FOR_OBJECT, NULL);
+
+       if (nma_cert_chooser_button_get_remember_pin (button))
+               pin = nma_cert_chooser_button_get_pin (button);
+       if (pin)
+               gtk_entry_set_text (GTK_ENTRY (priv->cert_password), pin);
+
+       gtk_widget_set_sensitive (priv->cert_password, uri_data != NULL);
+       gtk_widget_set_sensitive (priv->cert_password_label, uri_data != NULL);
+
+       if (!gtk_widget_get_sensitive (priv->key_button)) {
+               gtk_widget_set_sensitive (priv->key_button, TRUE);
+               gtk_widget_set_sensitive (priv->key_button_label, TRUE);
+
+               if (uri_data) {
+                       /* URI that is good both for a certificate and for a key. */
+                       if (!gck_attributes_find (uri_data->attributes, CKA_CLASS)) {
+                               nma_cert_chooser_button_set_uri (NMA_CERT_CHOOSER_BUTTON (priv->key_button), 
uri);
+                               gtk_widget_set_sensitive (priv->key_password, TRUE);
+                               gtk_widget_set_sensitive (priv->key_password_label, TRUE);
+                               if (pin)
+                                       gtk_entry_set_text (GTK_ENTRY (priv->key_password), pin);
+                       }
+               }
+       }
+
+       if (uri_data)
+               gck_uri_data_free (uri_data);
+       if (pin)
+               g_free (pin);
+
+       g_signal_emit_by_name (user_data, "changed");
+}
+
+static void
+key_changed_cb (NMACertChooserButton *button, gpointer user_data)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (user_data);
+       gchar *pin = NULL;
+
+       if (nma_cert_chooser_button_get_remember_pin (button))
+               pin = nma_cert_chooser_button_get_pin (button);
+       if (pin) {
+               gtk_entry_set_text (GTK_ENTRY (priv->key_password), pin);
+               g_free (pin);
+       }
+
+       gtk_widget_set_sensitive (priv->key_password, TRUE);
+       gtk_widget_set_sensitive (priv->key_password_label, TRUE);
+       g_signal_emit_by_name (user_data, "changed");
+}
+
+static void
+key_password_changed_cb (GtkEntry *entry, gpointer user_data)
+{
+       g_signal_emit_by_name (user_data, "changed");
+}
+
+static void
+cert_password_changed_cb (GtkEntry *entry, gpointer user_data)
+{
+       g_signal_emit_by_name (user_data, "changed");
+}
+
+
+static void
+show_toggled_cb (GtkCheckButton *button, gpointer user_data)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (user_data);
+       gboolean active;
+
+       active = gtk_toggle_button_get_active (GTK_TOGGLE_BUTTON (button));
+       gtk_entry_set_visibility (GTK_ENTRY (priv->cert_password), active);
+       if (priv->key_password)
+               gtk_entry_set_visibility (GTK_ENTRY (priv->key_password), active);
+}
+
+static void
+set_title (NMACertChooser *cert_chooser, const gchar *title)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+       gchar *text;
+
+       text = g_strdup_printf (_("Choose a key for %s Certificate"), title);
+       nma_cert_chooser_button_set_title (NMA_CERT_CHOOSER_BUTTON (priv->key_button), text);
+       g_free (text);
+
+       text = g_strdup_printf (_("%s private _key:"), title);
+       gtk_label_set_text_with_mnemonic (GTK_LABEL (priv->key_button_label), text);
+       g_free (text);
+
+       text = g_strdup_printf (_("%s key _password:"), title);
+       gtk_label_set_text_with_mnemonic (GTK_LABEL (priv->key_password_label), text);
+       g_free (text);
+
+       text = g_strdup_printf (_("Choose a %s Certificate"), title);
+       nma_cert_chooser_button_set_title (NMA_CERT_CHOOSER_BUTTON (priv->cert_button), text);
+       g_free (text);
+
+       text = g_strdup_printf (_("%s _certificate:"), title);
+       gtk_label_set_text_with_mnemonic (GTK_LABEL (priv->cert_button_label), text);
+       g_free (text);
+
+       text = g_strdup_printf (_("%s certificate _password:"), title);
+       gtk_label_set_text_with_mnemonic (GTK_LABEL (priv->cert_password_label), text);
+       g_free (text);
+}
+
+static void
+set_flags (NMACertChooser *cert_chooser, NMACertChooserFlags flags)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (cert_chooser);
+
+       if (flags & NMA_CERT_CHOOSER_FLAG_CERT) {
+               gtk_widget_hide (priv->key_button);
+               gtk_widget_hide (priv->key_button_label);
+               gtk_widget_hide (priv->key_password);
+               gtk_widget_hide (priv->key_password_label);
+       }
+
+       if (flags & NMA_CERT_CHOOSER_FLAG_PASSWORDS) {
+               gtk_widget_hide (priv->cert_button);
+               gtk_widget_hide (priv->cert_button_label);
+               gtk_widget_hide (priv->key_button);
+               gtk_widget_hide (priv->key_button_label);
+       }
+}
+
+static void
+nma_pkcs11_cert_chooser_class_init (NMAPkcs11CertChooserClass *klass)
+{
+       GObjectClass *object_class = G_OBJECT_CLASS (klass);
+       NMACertChooserClass *chooser_class = NMA_CERT_CHOOSER_CLASS (klass);
+
+       g_type_class_add_private (object_class, sizeof (NMAPkcs11CertChooserPrivate));
+
+       chooser_class->set_title = set_title;
+       chooser_class->set_flags = set_flags;
+
+       chooser_class->set_cert_uri = set_cert_uri;
+       chooser_class->get_cert_uri = get_cert_uri;
+       chooser_class->set_cert_password = set_cert_password;
+       chooser_class->get_cert_password = get_cert_password;
+       chooser_class->set_key_uri = set_key_uri;
+       chooser_class->get_key_uri = get_key_uri;
+       chooser_class->set_key_password = set_key_password;
+       chooser_class->get_key_password = get_key_password;
+
+       chooser_class->add_to_size_group = add_to_size_group;
+       chooser_class->validate = validate;
+
+       chooser_class->setup_key_password_storage = setup_key_password_storage;
+       chooser_class->update_key_password_storage = update_key_password_storage;
+       chooser_class->get_key_password_flags = get_key_password_flags;
+       chooser_class->setup_cert_password_storage = setup_cert_password_storage;
+       chooser_class->update_cert_password_storage = update_cert_password_storage;
+       chooser_class->get_cert_password_flags = get_cert_password_flags;
+}
+
+static void
+nma_pkcs11_cert_chooser_init (NMAPkcs11CertChooser *pkcs11_cert_chooser)
+{
+       NMAPkcs11CertChooserPrivate *priv = NMA_PKCS11_CERT_CHOOSER_GET_PRIVATE (pkcs11_cert_chooser);
+       GtkWidget *show_password;
+
+       gtk_grid_insert_column (GTK_GRID (pkcs11_cert_chooser), 2);
+       gtk_grid_set_row_spacing (GTK_GRID (pkcs11_cert_chooser), 6);
+       gtk_grid_set_column_spacing (GTK_GRID (pkcs11_cert_chooser), 12);
+
+       /* Show password */
+       gtk_grid_insert_row (GTK_GRID (pkcs11_cert_chooser), 0);
+       show_password = gtk_check_button_new_with_mnemonic ("Sho_w passwords");
+       gtk_grid_attach (GTK_GRID (pkcs11_cert_chooser), show_password, 1, 2, 1, 1);
+       gtk_widget_show (show_password);
+       gtk_widget_set_no_show_all (show_password, TRUE);
+       g_signal_connect (show_password, "toggled",
+                         G_CALLBACK (show_toggled_cb), pkcs11_cert_chooser);
+
+       /* The key chooser */
+       gtk_grid_insert_row (GTK_GRID (pkcs11_cert_chooser), 0);
+
+       priv->key_button = nma_cert_chooser_button_new (NMA_CERT_CHOOSER_BUTTON_FLAG_KEY);
+
+       gtk_grid_attach (GTK_GRID (pkcs11_cert_chooser), priv->key_button, 1, 0, 1, 1);
+       gtk_widget_set_hexpand (priv->key_button, TRUE);
+       gtk_widget_set_sensitive (priv->key_button, FALSE);
+       gtk_widget_show (priv->key_button);
+       gtk_widget_set_no_show_all (priv->key_button, TRUE);
+
+        g_signal_connect (priv->key_button, "changed",
+                         G_CALLBACK (key_changed_cb), pkcs11_cert_chooser);
+
+       priv->key_button_label = gtk_label_new (NULL);
+       g_object_set (priv->key_button_label, "xalign", (gfloat) 0, NULL);
+       gtk_label_set_mnemonic_widget (GTK_LABEL (priv->key_button_label), priv->key_button);
+       gtk_grid_attach (GTK_GRID (pkcs11_cert_chooser), priv->key_button_label, 0, 0, 1, 1);
+       gtk_widget_set_sensitive (priv->key_button_label, FALSE);
+       gtk_widget_show (priv->key_button_label);
+       gtk_widget_set_no_show_all (priv->key_button_label, TRUE);
+
+       /* The key password entry */
+       gtk_grid_insert_row (GTK_GRID (pkcs11_cert_chooser), 1);
+
+       priv->key_password = gtk_entry_new ();
+       gtk_entry_set_visibility (GTK_ENTRY (priv->key_password), FALSE);
+       gtk_grid_attach (GTK_GRID (pkcs11_cert_chooser), priv->key_password, 1, 1, 1, 1);
+       gtk_widget_set_hexpand (priv->key_password, TRUE);
+       gtk_widget_set_sensitive (priv->key_password, FALSE);
+       gtk_widget_show (priv->key_password);
+       gtk_widget_set_no_show_all (priv->key_password, TRUE);
+
+        g_signal_connect (priv->key_password, "changed",
+                         G_CALLBACK (key_password_changed_cb), pkcs11_cert_chooser);
+
+       priv->key_password_label = gtk_label_new (NULL);
+       g_object_set (priv->key_password_label, "xalign", (gfloat) 0, NULL);
+       gtk_label_set_mnemonic_widget (GTK_LABEL (priv->key_password_label), priv->key_password);
+       gtk_grid_attach (GTK_GRID (pkcs11_cert_chooser), priv->key_password_label, 0, 1, 1, 1);
+       gtk_widget_set_sensitive (priv->key_password_label, FALSE);
+       gtk_widget_show (priv->key_password_label);
+       gtk_widget_set_no_show_all (priv->key_password_label, TRUE);
+
+       /* The certificate chooser */
+       gtk_grid_insert_row (GTK_GRID (pkcs11_cert_chooser), 0);
+
+       priv->cert_button = nma_cert_chooser_button_new (NMA_CERT_CHOOSER_BUTTON_FLAG_NONE);
+
+       gtk_grid_attach (GTK_GRID (pkcs11_cert_chooser), priv->cert_button, 1, 0, 1, 1);
+       gtk_widget_set_hexpand (priv->cert_button, TRUE);
+       gtk_widget_show (priv->cert_button);
+       gtk_widget_set_no_show_all (priv->cert_button, TRUE);
+
+       g_signal_connect (priv->cert_button, "changed",
+                         G_CALLBACK (cert_changed_cb), pkcs11_cert_chooser);
+
+       priv->cert_button_label = gtk_label_new (NULL);
+       g_object_set (priv->cert_button_label, "xalign", (gfloat) 0, NULL);
+       gtk_label_set_mnemonic_widget (GTK_LABEL (priv->cert_button_label), priv->cert_button);
+       gtk_grid_attach (GTK_GRID (pkcs11_cert_chooser), priv->cert_button_label, 0, 0, 1, 1);
+       gtk_widget_show (priv->cert_button_label);
+       gtk_widget_set_no_show_all (priv->cert_button_label, TRUE);
+
+       /* The cert password entry */
+       gtk_grid_insert_row (GTK_GRID (pkcs11_cert_chooser), 1);
+
+       priv->cert_password = gtk_entry_new ();
+       gtk_entry_set_visibility (GTK_ENTRY (priv->cert_password), FALSE);
+       gtk_grid_attach (GTK_GRID (pkcs11_cert_chooser), priv->cert_password, 1, 1, 1, 1);
+       gtk_widget_set_hexpand (priv->cert_password, TRUE);
+       gtk_widget_set_sensitive (priv->cert_password, FALSE);
+       gtk_widget_show (priv->cert_password);
+       gtk_widget_set_no_show_all (priv->cert_password, TRUE);
+
+        g_signal_connect (priv->cert_password, "changed",
+                         G_CALLBACK (cert_password_changed_cb), pkcs11_cert_chooser);
+
+       priv->cert_password_label = gtk_label_new (NULL);
+       g_object_set (priv->cert_password_label, "xalign", (gfloat) 0, NULL);
+       gtk_label_set_mnemonic_widget (GTK_LABEL (priv->cert_password_label), priv->cert_password);
+       gtk_grid_attach (GTK_GRID (pkcs11_cert_chooser), priv->cert_password_label, 0, 1, 1, 1);
+       gtk_widget_set_sensitive (priv->cert_password_label, FALSE);
+       gtk_widget_show (priv->cert_password_label);
+       gtk_widget_set_no_show_all (priv->cert_password_label, TRUE);
+}
diff --git a/src/libnma/nma-pkcs11-cert-chooser.h b/src/libnma/nma-pkcs11-cert-chooser.h
new file mode 100644
index 0000000..29971a5
--- /dev/null
+++ b/src/libnma/nma-pkcs11-cert-chooser.h
@@ -0,0 +1,50 @@
+/* NetworkManager Applet -- allow user control over networking
+ *
+ * Lubomir Rintel <lkundrak v3 sk>
+ *
+ * This library is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License as published by the Free Software Foundation; either
+ * version 2 of the License, or (at your option) any later version.
+ *
+ * This library is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public
+ * License along with this library; if not, write to the
+ * Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
+ * Boston, MA 02110-1301 USA.
+ *
+ * Copyright (C) 2015,2017 Red Hat, Inc.
+ */
+
+#ifndef NMA_PKCS11_CERT_CHOOSER_H
+#define NMA_PKCS11_CERT_CHOOSER_H
+
+#include <gtk/gtk.h>
+#include "nma-cert-chooser.h"
+
+G_BEGIN_DECLS
+
+#define NMA_TYPE_PKCS11_CERT_CHOOSER                   (nma_pkcs11_cert_chooser_get_type ())
+#define NMA_PKCS11_CERT_CHOOSER(obj)                   (G_TYPE_CHECK_INSTANCE_CAST ((obj), 
NMA_TYPE_PKCS11_CERT_CHOOSER, NMAPkcs11CertChooser))
+#define NMA_PKCS11_CERT_CHOOSER_CLASS(klass)           (G_TYPE_CHECK_CLASS_CAST ((klass), 
NMA_TYPE_PKCS11_CERT_CHOOSER, NMAPkcs11CertChooserClass))
+#define NMA_IS_PKCS11_CERT_CHOOSER(obj)                (G_TYPE_CHECK_INSTANCE_TYPE ((obj), 
NMA_TYPE_PKCS11_CERT_CHOOSER))
+#define NMA_IS_PKCS11_CERT_CHOOSER_CLASS(klass)        (G_TYPE_CHECK_CLASS_TYPE ((klass), 
NMA_TYPE_PKCS11_CERT_CHOOSER))
+#define NMA_PKCS11_CERT_CHOOSER_GET_CLASS(obj)         (G_TYPE_INSTANCE_GET_CLASS ((obj), 
NMA_TYPE_PKCS11_CERT_CHOOSER, NMAPkcs11CertChooserClass))
+
+typedef struct {
+       NMACertChooser parent;
+} NMAPkcs11CertChooser;
+
+typedef struct {
+       NMACertChooserClass parent_class;
+} NMAPkcs11CertChooserClass;
+
+GType nma_pkcs11_cert_chooser_get_type (void);
+
+G_END_DECLS
+
+#endif /* NMA_PKCS11_CERT_CHOOSER_H */


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]