LoopbackPassphraseProvider.h

/* 
 * File:   LoopbackPassphraseProvider.h
 * Author: Saleem Edah-Tally - nmset@yandex.com
 * License : GPL v2
 * Copyright Saleem Edah-Tally - © 2019
 *
 * Created on November 2, 2020, 2:57 PM
 */

#ifndef LOOPBACKPASSPHRASEPROVIDER_H
#define LOOPBACKPASSPHRASEPROVIDER_H

#include <string>
#include <gpgme++/interfaces/passphraseprovider.h>

using namespace std;

/**
 * Replaces default pinentry on a web server.
 */
class LoopbackPassphraseProvider : public GpgME::PassphraseProvider
{
public:
    LoopbackPassphraseProvider();
    LoopbackPassphraseProvider(const string& passphrase);
    virtual ~LoopbackPassphraseProvider();
    /**
     * GPG engine gets its passphrase here.
     * \n The usefulness of the (out?) parameters needs to be better
     * understood (by me!).
     * @param useridHint : Signing keyid | key name | email 
     * @param description : Signing keyid | Signing keyid | 1 | 0
     * @param previousWasBad : Always 0, even with bad password
     * @param canceled : Always 0
     * @return 
     */
    virtual char *getPassphrase(const char *useridHint, const char *description,
                                bool previousWasBad, bool &canceled);
    /**
     * Application must do that.
     * @param passphrase
     */
    void SetPassphrase(const string& passphrase);
    /**
     * Application may need it, though it knows what it stored here.
     * @return 
     */
    const string GetPassphrase();

private:
    /*
     * Don't use char* m_passphrase. It is manipulated by gpg and exporting
     * secret keys become messy, to the point of crashing the application if
     * passphrase is bad.
     * See https://dev.gnupg.org/T5151#139421
    */
    string m_passphrase;

};

#endif /* LOOPBACKPASSPHRASEPROVIDER_H */
Certify key. In-place editing with a popup if user is allowed in app config file. User must of course manage at least a private key. User identities of target key may be selectively chosen. Optionally, certification may be exportable and non-revocable. 2020-11-03 11:06:25 +01:00			`/*`
			`* File: LoopbackPassphraseProvider.h`
Expand developer string. 2022-11-19 15:56:56 +01:00			`* Author: Saleem Edah-Tally - nmset@yandex.com`
Certify key. In-place editing with a popup if user is allowed in app config file. User must of course manage at least a private key. User identities of target key may be selectively chosen. Optionally, certification may be exportable and non-revocable. 2020-11-03 11:06:25 +01:00			`* License : GPL v2`
Expand developer string. 2022-11-19 15:56:56 +01:00			`* Copyright Saleem Edah-Tally - © 2019`
Certify key. In-place editing with a popup if user is allowed in app config file. User must of course manage at least a private key. User identities of target key may be selectively chosen. Optionally, certification may be exportable and non-revocable. 2020-11-03 11:06:25 +01:00			`*`
			`* Created on November 2, 2020, 2:57 PM`
			`*/`

			`#ifndef LOOPBACKPASSPHRASEPROVIDER_H`
			`#define LOOPBACKPASSPHRASEPROVIDER_H`

			`#include <string>`
			`#include <gpgme++/interfaces/passphraseprovider.h>`

			`using namespace std;`

			`/**`
			`* Replaces default pinentry on a web server.`
			`*/`
			`class LoopbackPassphraseProvider : public GpgME::PassphraseProvider`
			`{`
			`public:`
			`LoopbackPassphraseProvider();`
			`LoopbackPassphraseProvider(const string& passphrase);`
			`virtual ~LoopbackPassphraseProvider();`
			`/**`
			`* GPG engine gets its passphrase here.`
			`* \n The usefulness of the (out?) parameters needs to be better`
			`* understood (by me!).`
			`* @param useridHint : Signing keyid \| key name \| email`
			`* @param description : Signing keyid \| Signing keyid \| 1 \| 0`
			`* @param previousWasBad : Always 0, even with bad password`
			`* @param canceled : Always 0`
			`* @return`
			`*/`
			`virtual char getPassphrase(const char useridHint, const char *description,`
			`bool previousWasBad, bool &canceled);`
			`/**`
			`* Application must do that.`
			`* @param passphrase`
			`*/`
			`void SetPassphrase(const string& passphrase);`
			`/**`
			`* Application may need it, though it knows what it stored here.`
			`* @return`
			`*/`
			`const string GetPassphrase();`

			`private:`
Allocate passphrase on demand. Don't store passphrase as char* member variable. This would crash the application when exporting private keys. See https://dev.gnupg.org/T5151#139421 2020-11-25 21:29:27 +01:00			`/*`
			`* Don't use char* m_passphrase. It is manipulated by gpg and exporting`
			`* secret keys become messy, to the point of crashing the application if`
			`* passphrase is bad.`
			`* See https://dev.gnupg.org/T5151#139421`
			`*/`
			`string m_passphrase;`
Certify key. In-place editing with a popup if user is allowed in app config file. User must of course manage at least a private key. User identities of target key may be selectively chosen. Optionally, certification may be exportable and non-revocable. 2020-11-03 11:06:25 +01:00
			`};`

			`#endif /* LOOPBACKPASSPHRASEPROVIDER_H */`