// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef NET_HTTP_PROXY_CLIENT_SOCKET_H_
#define NET_HTTP_PROXY_CLIENT_SOCKET_H_
#include <string>
#include "net/socket/ssl_client_socket.h"
#include "net/socket/stream_socket.h"
class GURL;
namespace net {
class HostPortPair;
class HttpAuthController;
class HttpStream;
class HttpResponseInfo;
class HttpRequestHeaders;
struct HttpRequestInfo;
class HttpAuthController;
class NET_EXPORT_PRIVATE ProxyClientSocket : public StreamSocket {
public:
ProxyClientSocket() {}
virtual ~ProxyClientSocket() {}
// Returns the HttpResponseInfo (including HTTP Headers) from
// the response to the CONNECT request.
virtual const HttpResponseInfo* GetConnectResponseInfo() const = 0;
// Transfers ownership of a newly created HttpStream to the caller
// which can be used to read the response body.
virtual HttpStream* CreateConnectResponseStream() = 0;
// Returns the HttpAuthController which can be used
// to interact with an HTTP Proxy Authorization Required (407) request.
virtual const scoped_refptr<HttpAuthController>& GetAuthController() const
= 0;
// If Connect (or its callback) returns PROXY_AUTH_REQUESTED, then
// credentials should be added to the HttpAuthController before calling
// RestartWithAuth. Not all ProxyClientSocket implementations will be
// restartable. Such implementations should disconnect themselves and
// return OK.
virtual int RestartWithAuth(const CompletionCallback& callback) = 0;
// Returns true of the connection to the proxy is using SPDY.
virtual bool IsUsingSpdy() const = 0;
// Returns the protocol negotiated with the proxy.
virtual NextProto GetProtocolNegotiated() const = 0;
protected:
// The HTTP CONNECT method for establishing a tunnel connection is documented
// in draft-luotonen-web-proxy-tunneling-01.txt and RFC 2817, Sections 5.2
// and 5.3.
static void BuildTunnelRequest(const HttpRequestInfo& request_info,
const HttpRequestHeaders& auth_headers,
const HostPortPair& endpoint,
std::string* request_line,
HttpRequestHeaders* request_headers);
// When an auth challenge (407 response) is received during tunnel
// construction/ this method should be called.
static int HandleProxyAuthChallenge(HttpAuthController* auth,
HttpResponseInfo* response,
const BoundNetLog& net_log);
// Logs (to the log and in a histogram) a blocked CONNECT response.
static void LogBlockedTunnelResponse(int http_response_code,
const GURL& url,
bool is_https_proxy);
// When a redirect (e.g. 302 response) is received during tunnel
// construction, this method should be called to strip everything
// but the Location header from the redirect response. If it returns
// false, the response should be discarded and tunnel construction should
// fail. |url| is for logging purposes.
static bool SanitizeProxyRedirect(HttpResponseInfo* response,
const GURL& url);
private:
DISALLOW_COPY_AND_ASSIGN(ProxyClientSocket);
};
} // namespace net
#endif // NET_HTTP_PROXY_CLIENT_SOCKET_H_