[oweals/gnunet.git] / src / include / gnunet_credential_service.h

/*
      This file is part of GNUnet
      Copyright (C) 2012-2014 GNUnet e.V.

      GNUnet is free software; you can redistribute it and/or modify
      it under the terms of the GNU General Public License as published
      by the Free Software Foundation; either version 3, or (at your
      option) any later version.

      GNUnet is distributed in the hope that it will be useful, but
      WITHOUT ANY WARRANTY; without even the implied warranty of
      MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
      General Public License for more details.

      You should have received a copy of the GNU General Public License
      along with GNUnet; see the file COPYING.  If not, write to the
      Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
      Boston, MA 02110-1301, USA.
 */

/**
 * @author Martin Schanzenbach
 *
 * @file
 * API to the Credential service
 *
 * @defgroup credential  Credential service
 * Credentials
 *
 * @{
 */
#ifndef GNUNET_CREDENTIAL_SERVICE_H
#define GNUNET_CREDENTIAL_SERVICE_H

#include "gnunet_util_lib.h"
#include "gnunet_gns_service.h"
#include "gnunet_identity_service.h"

#ifdef __cplusplus
extern "C"
{
#if 0                           /* keep Emacsens' auto-indent happy */
}
#endif
#endif


/**
 * Connection to the Credential service.
 */
struct GNUNET_CREDENTIAL_Handle;

/**
 * Handle to control a lookup operation.
 */
struct GNUNET_CREDENTIAL_LookupRequest;

/*
* Enum used for checking whether the issuer has the authority to issue credentials or is just a subject
*/
enum GNUNET_CREDENTIAL_CredentialFlags {

  //Subject had credentials before, but have been revoked now
  GNUNET_CREDENTIAL_FLAG_REVOKED=0,

  //Subject flag indicates that the subject is a holder of this credential and may present it as such
  GNUNET_CREDENTIAL_FLAG_SUBJECT=1,

  //Issuer flag is used to signify that the subject is allowed to issue this credential and delegate issuance
  GNUNET_CREDENTIAL_FLAG_ISSUER=2

};

GNUNET_NETWORK_STRUCT_BEGIN
/*
* Data stored in the credential record 
*/
struct GNUNET_CREDENTIAL_RecordData {
  
  /*
  * Key of the 
  */
  struct GNUNET_CRYPTO_EcdsaPublicKey subject_key;
  
  struct GNUNET_CRYPTO_EcdsaPublicKey issuer_key;


  uint32_t credential_flags GNUNET_PACKED;

  uint32_t max_delegation_depth GNUNET_PACKED;
};

GNUNET_NETWORK_STRUCT_END



/**
 * Initialize the connection with the Credential service.
 *
 * @param cfg configuration to use
 * @return handle to the Credential service, or NULL on error
 */
struct GNUNET_CREDENTIAL_Handle *
GNUNET_CREDENTIAL_connect (const struct GNUNET_CONFIGURATION_Handle *cfg);


/**
 * Shutdown connection with the Credentail service.
 *
 * @param handle connection to shut down
 */
void
GNUNET_CREDENTIAL_disconnect (struct GNUNET_CREDENTIAL_Handle *handle);


/**
 * Iterator called on obtained result for a Credential lookup.
 *
 * @param cls closure
 * @param issuer the issuer chain
 * @param issuer_len length of issuer chain
 * @param rd the records in reply
 */
typedef void (*GNUNET_CREDENTIAL_LookupResultProcessor) (void *cls,
                                                  struct GNUNET_IDENTITY_Ego *issuer,
              uint16_t issuer_len,
                                                  const struct GNUNET_CREDENTIAL_RecordData *data);


/**
 * Perform an asynchronous lookup operation for a credential.
 *
 * @param handle handle to the Credential service
 * @param credential the credential to look up
 * @param subject Ego to check the credential for
 * @param proc function to call on result
 * @param proc_cls closure for processor
 * @return handle to the queued request
 */
struct GNUNET_CREDENTIAL_LookupRequest *
GNUNET_CREDENTIAL_lookup (struct GNUNET_CREDENTIAL_Handle *handle,
                   const char *credential,
                   const struct GNUNET_IDENTITY_Ego *subject,
       const struct GNUNET_CRYPTO_EcdsaPublicKey *subject_key,
       const struct GNUNET_CRYPTO_EcdsaPublicKey *issuer_key,
       uint32_t credential_flags,
       uint32_t max_delegation_depth,
       GNUNET_CREDENTIAL_LookupResultProcessor proc,
                   void *proc_cls);


/**
 * Issue a credential to an identity
 *
 * @param handle handle to the Credential service
 * @param issuer the identity that issues the credential
 * @param subject the subject of the credential
 * @param credential the name of the credential
 * @param data the data of the credential
 * @return handle to the queued request
 */
/**struct GNUNET_CREDENTIAL_IssueRequest *
GNUNET_CREDENTIAL_issue (struct GNUNET_CREDENTIAL_Handle *handle,
                         struct GNUNET_IDENTITY_Ego *issuer,
                         struct GNUNET_IDENTITY_Ego *subject,
                         const char *credential,
                         struct GNUNET_CREDENTIAL_Data *data,
                         GNUNET_CREDENTIAL_IssueResultProcessor proc,
                         void *proc_cls);
*/
/**
 * Remove a credential
 *
 * @param handle handle to the Credential service
 * @param issuer the identity that issued the credential
 * @param subject the subject of the credential
 * @param credential the name of the credential
 * @return handle to the queued request
 */
 /**
struct GNUNET_CREDENTIAL_IssueRequest *
GNUNET_CREDENTIAL_remove (struct GNUNET_CREDENTIAL_Handle *handle,
                          struct GNUNET_IDENTITY_Ego *issuer,
                          struct GNUNET_IDENTITY_Ego *subject,
                          const char *credential,
                          GNUNET_CREDENTIAL_IssueResultProcessor proc,
                          void *proc_cls);
*/


/**
 * Cancel pending lookup request
 *
 * @param lr the lookup request to cancel
 */
void
GNUNET_CREDENTIAL_lookup_cancel (struct GNUNET_CREDENTIAL_LookupRequest *lr);


#if 0                           /* keep Emacsens' auto-indent happy */
{
#endif
#ifdef __cplusplus
}
#endif

#endif

/** @} */  /* end of group */