Back to index

lightning-sunbird  0.9+nobinonly
Public Member Functions | Public Attributes | Private Member Functions
nsMetricsService::BadCertListener Class Reference
Inheritance diagram for nsMetricsService::BadCertListener:
Inheritance graph
[legend]
Collaboration diagram for nsMetricsService::BadCertListener:
Collaboration graph
[legend]

List of all members.

Public Member Functions

NS_DECL_ISUPPORTS
NS_DECL_NSIBADCERTLISTENER
NS_DECL_NSIINTERFACEREQUESTOR 
BadCertListener ()
boolean confirmUnknownIssuer (in nsIInterfaceRequestor socketInfo, in nsIX509Cert cert, out short certAddType)
 Inform the user there are problems with the trust of a certificate, and request a decision from the user.
boolean confirmMismatchDomain (in nsIInterfaceRequestor socketInfo, in AUTF8String targetURL, in nsIX509Cert cert)
 Inform the user there are problems with the trust of a certificate, and request a decision from the user.
boolean confirmCertExpired (in nsIInterfaceRequestor socketInfo, in nsIX509Cert cert)
 Inform the user there are problems with the trust of a certificate, and request a decision from the user.
void notifyCrlNextupdate (in nsIInterfaceRequestor socketInfo, in AUTF8String targetURL, in nsIX509Cert cert)
 Inform the user there are problems with the trust of a certificate, and request a decision from the user.
void getInterface (in nsIIDRef uuid,[iid_is(uuid), retval] out nsQIResult result)
 Retrieves the specified interface pointer.

Public Attributes

const short UNINIT_ADD_FLAG = -1
 No decision was made by the user, whether to trust a cert.
const short ADD_TRUSTED_FOR_SESSION = 1
 The user decided to add trust to a certificate temporarily for the current application session only.
const short ADD_TRUSTED_PERMANENTLY = 2
 The user decided to add trust to a certificate permanently.

Private Member Functions

 ~BadCertListener ()

Detailed Description

Definition at line 198 of file nsMetricsService.cpp.


Constructor & Destructor Documentation

NS_DECL_ISUPPORTS NS_DECL_NSIBADCERTLISTENER NS_DECL_NSIINTERFACEREQUESTOR nsMetricsService::BadCertListener::BadCertListener ( ) [inline]

Definition at line 206 of file nsMetricsService.cpp.

{ }

Definition at line 209 of file nsMetricsService.cpp.

{ }

Member Function Documentation

Inform the user there are problems with the trust of a certificate, and request a decision from the user.

The certificate presented by the server is no longer valid because the validity period has expired.

Parameters:
socketInfoA network communication context that can be used to obtain more information about the active connection.
certThe certificate that was presented by the server.
Returns:
true if the user decided to connect anyway, false if the user decided to not connect
boolean nsIBadCertListener::confirmMismatchDomain ( in nsIInterfaceRequestor  socketInfo,
in AUTF8String  targetURL,
in nsIX509Cert  cert 
) [inherited]

Inform the user there are problems with the trust of a certificate, and request a decision from the user.

The hostname mentioned in the server's certificate is not the hostname that was used as a destination address for the current connection.

Parameters:
socketInfoA network communication context that can be used to obtain more information about the active connection.
targetURLThe URL that was used to open the current connection.
certThe certificate that was presented by the server.
Returns:
true if the user decided to connect anyway, false if the user decided to not connect
boolean nsIBadCertListener::confirmUnknownIssuer ( in nsIInterfaceRequestor  socketInfo,
in nsIX509Cert  cert,
out short  certAddType 
) [inherited]

Inform the user there are problems with the trust of a certificate, and request a decision from the user.

The UI should offer the user a way to look at the certificate in detail. The following is a sample UI message to be shown to the user:

Unable to verify the identity of S as a trusted site. Possible reasons for this error:

  • Your browser does not recognize the Certificate Authority that issued the site's certificate.
  • The site's certificate is incomplete due to a server misconfiguration.
  • You are connected to a site pretending to be S, possibly to obtain your confidential information. Please notify the site's webmaster about this problem. Before accepting this certificate, you should examine this site's certificate carefully. Are you willing to to accept this certificate for the purpose of identifying the Web site S? o Accept this certificate permanently x Accept this certificate temporarily for this session o Do not accept this certificate and do not connect to this Web site
Parameters:
socketInfoA network communication context that can be used to obtain more information about the active connection.
certThe certificate that is not trusted and that is having the problem.
certAddTypeThe user's trust decision. See constants defined above.
Returns:
true if the user decided to connect anyway, false if the user decided to not connect
void nsIInterfaceRequestor::getInterface ( in nsIIDRef  uuid,
[iid_is(uuid), retval] out nsQIResult  result 
) [inherited]

Retrieves the specified interface pointer.

Parameters:
uuidThe IID of the interface being requested.
result[out] The interface pointer to be filled in if the interface is accessible.
Returns:
NS_OK - interface was successfully returned. NS_NOINTERFACE - interface not accessible. NS_ERROR* - method failure.
void nsIBadCertListener::notifyCrlNextupdate ( in nsIInterfaceRequestor  socketInfo,
in AUTF8String  targetURL,
in nsIX509Cert  cert 
) [inherited]

Inform the user there are problems with the trust of a certificate, and request a decision from the user.

The Certificate Authority (CA) that issued the server's certificate has issued a Certificate Revocation List (CRL). However, the application does not have a current version of the CA's CRL. Due to the application configuration, the application disallows the connection to the remote site.

Parameters:
socketInfoA network communication context that can be used to obtain more information about the active connection.
targetURLThe URL that was used to open the current connection.
certThe certificate that was presented by the server.

Member Data Documentation

The user decided to add trust to a certificate temporarily for the current application session only.

Definition at line 62 of file nsIBadCertListener.idl.

The user decided to add trust to a certificate permanently.

Definition at line 67 of file nsIBadCertListener.idl.

No decision was made by the user, whether to trust a cert.

Definition at line 56 of file nsIBadCertListener.idl.


The documentation for this class was generated from the following file: