Página Principal Explorar Ajuda
Registe-se Iniciar Sessão
gg
/
1v1
1
0
Fork 0
Ficheiros Problemas 0 Pull Requests 0 Wiki
Árvore: 76ea16330f
Ramos Etiquetas
1v1
/
MSYOUPAI
/
Class
/
YQNIM
/
视频通话
/
webSocket
/
SocketRocket
/
SRSecurityPolicy.h

SRSecurityPolicy.h 2.2 KB
Histórico Em bruto

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667 
  1. //
    2. 

  2. // Copyright (c) 2016-present, Facebook, Inc.
    3. 

  3. // All rights reserved.
    4. 

  4. //
    5. 

  5. // This source code is licensed under the BSD-style license found in the
    6. 

  6. // LICENSE file in the root directory of this source tree. An additional grant
    7. 

  7. // of patent rights can be found in the PATENTS file in the same directory.
    8. 

  8. //
    9. 

  9. 

  10. #import <Foundation/Foundation.h>
    11. 

  11. #import <Security/Security.h>
    12. 

  12. 

  13. NS_ASSUME_NONNULL_BEGIN
    14. 

  14. 

  15. @interface SRSecurityPolicy : NSObject
    16. 

  16. 

  17. /**
    18. 

  18.  A default `SRSecurityPolicy` implementation specifies socket security and
    19. 

  19.  validates the certificate chain.
    20. 

  20. 

  21.  Use a subclass of `SRSecurityPolicy` for more fine grained customization.
    22. 

  22.  */
    23. 

  23. + (instancetype)defaultPolicy;
    24. 

  24. 

  25. /**
    26. 

  26.  Specifies socket security and provider certificate pinning, disregarding certificate
    27. 

  27.  chain validation.
    28. 

  28. 

  29.  @param pinnedCertificates Array of `SecCertificateRef` SSL certificates to use for validation.
    30. 

  30.  */
    31. 

  31. + (instancetype)pinnningPolicyWithCertificates:(NSArray *)pinnedCertificates;
    32. 

  32. 

  33. /**
    34. 

  34.  Specifies socket security and optional certificate chain validation.
    35. 

  35. 

  36.  @param enabled Whether or not to validate the SSL certificate chain. If you
    37. 

  37.  are considering using this method because your certificate was not issued by a
    38. 

  38.  recognized certificate authority, consider using `pinningPolicyWithCertificates` instead.
    39. 

  39.  */
    40. 

  40. - (instancetype)initWithCertificateChainValidationEnabled:(BOOL)enabled NS_DESIGNATED_INITIALIZER;
    41. 

  41. 

  42. /**
    43. 

  43.  Updates all the security options for input and output streams, for example you
    44. 

  44.  can set your socket security level here.
    45. 

  45. 

  46.  @param stream Stream to update the options in.
    47. 

  47.  */
    48. 

  48. - (void)updateSecurityOptionsInStream:(NSStream *)stream;
    49. 

  49. 

  50. /**
    51. 

  51.  Whether or not the specified server trust should be accepted, based on the security policy.
    52. 

  52. 

  53.  This method should be used when responding to an authentication challenge from
    54. 

  54.  a server. In the default implemenation, no further validation is done here, but
    55. 

  55.  you're free to override it in a subclass. See `SRPinningSecurityPolicy.h` for
    56. 

  56.  an example.
    57. 

  57. 

  58.  @param serverTrust The X.509 certificate trust of the server.
    59. 

  59.  @param domain The domain of serverTrust.
    60. 

  60. 

  61.  @return Whether or not to trust the server.
    62. 

  62.  */
    63. 

  63. - (BOOL)evaluateServerTrust:(SecTrustRef)serverTrust forDomain:(NSString *)domain;
    64. 

  64. 

  65. @end
    66. 

  66. 

  67. NS_ASSUME_NONNULL_END
    68.