QGIS API Documentation 3.41.0-Master (fda2aa46e9a)
Loading...
Searching...
No Matches
Public Types | Public Slots | Signals | Public Member Functions | Static Public Member Functions | Static Public Attributes | Protected Member Functions | Static Protected Member Functions | Friends | List of all members
QgsAuthManager Class Reference

Singleton offering an interface to manage the authentication configuration database and to utilize configurations through various authentication method plugins. More...

#include <qgsauthmanager.h>

Inheritance diagram for QgsAuthManager:
Inheritance graph
[legend]

Public Types

enum  MessageLevel { INFO = 0 , WARNING = 1 , CRITICAL = 2 }
 Message log level (mirrors that of QgsMessageLog, so it can also output there) More...
 

Public Slots

void clearAllCachedConfigs ()
 Clear all authentication configs from authentication method caches.
 
void clearCachedConfig (const QString &authcfg)
 Clear an authentication config from its associated authentication method cache.
 

Signals

void authDatabaseChanged ()
 Emitted when the authentication db is significantly changed, e.g. large record removal, erased, etc.
 
void authDatabaseEraseRequested ()
 Emitted when a user has indicated they may want to erase the authentication db.
 
void masterPasswordVerified (bool verified)
 Emitted when a password has been verify (or not)
 
void messageLog (const QString &message, const QString &tag=QgsAuthManager::AUTH_MAN_TAG, Qgis::MessageLevel level=Qgis::MessageLevel::Info) const
 Custom logging signal to relay to console output and QgsMessageLog.
 
Q_DECL_DEPRECATED void messageOut (const QString &message, const QString &tag=QgsAuthManager::AUTH_MAN_TAG, QgsAuthManager::MessageLevel level=QgsAuthManager::INFO) const
 Custom logging signal to relay to console output and QgsMessageLog.
 
void passwordHelperFailure ()
 Signals emitted on password helper failure, mainly used in the tests to exit main application loop.
 
void passwordHelperMessageLog (const QString &message, const QString &tag=QgsAuthManager::AUTH_MAN_TAG, Qgis::MessageLevel level=Qgis::MessageLevel::Info)
 Custom logging signal to inform the user about master password <-> password manager interactions.
 
Q_DECL_DEPRECATED void passwordHelperMessageOut (const QString &message, const QString &tag=QgsAuthManager::AUTH_MAN_TAG, QgsAuthManager::MessageLevel level=QgsAuthManager::INFO)
 Custom logging signal to inform the user about master password <-> password manager interactions.
 
void passwordHelperSuccess ()
 Signals emitted on password helper success, mainly used in the tests to exit main application loop.
 

Public Member Functions

 ~QgsAuthManager () override
 
QgsAuthConfigurationStorageRegistryauthConfigurationStorageRegistry () const
 Returns the authentication configuration storage registry.
 
Q_DECL_DEPRECATED const QString authDatabaseConfigTable () const
 Name of the authentication database table that stores configs.
 
Q_DECL_DEPRECATED QSqlDatabase authDatabaseConnection () const
 Sets up the application instance of the authentication database connection.
 
Q_DECL_DEPRECATED const QString authDatabaseServersTable () const
 Name of the authentication database table that stores server exceptions/configs.
 
Q_DECL_DEPRECATED const QString authenticationDatabasePath () const
 The standard authentication database file in ~/.qgis3/ or defined location.
 
const QString authenticationDatabaseUri () const
 Returns the authentication database connection URI.
 
const QString authenticationDatabaseUriStripped () const
 Returns the authentication database connection URI with the password stripped.
 
QString authManTag () const
 Simple text tag describing authentication system for message logs.
 
QgsAuthMethodauthMethod (const QString &authMethodKey)
 Gets authentication method from the config/provider cache via its key.
 
const QgsAuthMethodMetadataauthMethodMetadata (const QString &authMethodKey)
 Gets authentication method metadata via its key.
 
QStringList authMethodsKeys (const QString &dataprovider=QString())
 Gets keys of supported authentication methods.
 
QgsAuthMethodsMap authMethodsMap (const QString &dataprovider=QString())
 Gets available authentication methods mapped to their key.
 
QVariant authSetting (const QString &key, const QVariant &defaultValue=QVariant(), bool decrypt=false)
 authSetting get an authentication setting (retrieved as string and returned as QVariant( QString ))
 
QgsAuthMethodConfigsMap availableAuthMethodConfigs (const QString &dataprovider=QString())
 Gets mapping of authentication config ids and their base configs (not decrypted data)
 
bool backupAuthenticationDatabase (QString *backuppath=nullptr)
 Close connection to current authentication database and back it up.
 
const QMap< QString, QPair< QgsAuthCertUtils::CaCertSource, QSslCertificate > > caCertsCache ()
 caCertsCache get all CA certs mapped to their sha1 from cache.
 
const QSslCertificate certAuthority (const QString &id)
 Gets a certificate authority by id (sha hash)
 
const QList< QSslCertificate > certIdentities ()
 certIdentities get certificate identities
 
const QSslCertificate certIdentity (const QString &id)
 certIdentity get a certificate identity by id (sha hash)
 
const QPair< QSslCertificate, QSslKey > certIdentityBundle (const QString &id)
 Gets a certificate identity bundle by id (sha hash).
 
const QStringList certIdentityBundleToPem (const QString &id)
 certIdentityBundleToPem get a certificate identity bundle by id (sha hash) returned as PEM text
 
QStringList certIdentityIds () const
 certIdentityIds get list of certificate identity ids from database
 
QgsAuthCertUtils::CertTrustPolicy certificateTrustPolicy (const QSslCertificate &cert)
 certificateTrustPolicy get trust policy for a particular certificate cert
 
const QMap< QgsAuthCertUtils::CertTrustPolicy, QStringList > certTrustCache ()
 certTrustCache get cache of certificate sha1s, per trust policy
 
QgsAuthCertUtils::CertTrustPolicy certTrustPolicy (const QSslCertificate &cert)
 certTrustPolicy get whether certificate cert is trusted by user
 
void clearMasterPassword ()
 Clear supplied master password.
 
QgsAuthMethodconfigAuthMethod (const QString &authcfg)
 Gets authentication method from the config/provider cache.
 
QString configAuthMethodKey (const QString &authcfg) const
 Gets key of authentication method associated with config ID.
 
QString configIdRegex () const
 Returns the regular expression for authcfg=.{7} key/value token for authentication ids.
 
QStringList configIds () const
 Gets list of authentication ids from database.
 
bool configIdUnique (const QString &id) const
 Verify if provided authentication id is unique.
 
const QList< QSslCertificate > databaseCAs ()
 databaseCAs get database-stored certificate authorities
 
QgsAuthCertUtils::CertTrustPolicy defaultCertTrustPolicy ()
 Gets the default certificate trust policy preferred by user.
 
QgsAuthConfigurationStorageDbdefaultDbStorage () const
 Transitional proxy to the first ready storage of database type.
 
const QString disabledMessage () const
 Standard message for when QCA's qca-ossl plugin is missing and system is disabled.
 
void dumpIgnoredSslErrorsCache_ ()
 Utility function to dump the cache for debug purposes.
 
bool ensureInitialized () const
 Performs lazy initialization of the authentication framework, if it has not already been done.
 
bool eraseAuthenticationDatabase (bool backup, QString *backuppath=nullptr)
 Erase all rows from all tables in authentication database.
 
bool existsAuthSetting (const QString &key)
 Check if an authentication setting exists.
 
bool existsCertAuthority (const QSslCertificate &cert)
 Check if a certificate authority exists.
 
bool existsCertIdentity (const QString &id)
 Check if a certificate identity exists.
 
bool existsSslCertCustomConfig (const QString &id, const QString &hostport)
 Check if SSL certificate custom config exists.
 
bool exportAuthenticationConfigsToXml (const QString &filename, const QStringList &authcfgs, const QString &password=QString())
 Export authentication configurations to an XML file.
 
const QList< QSslCertificate > extraFileCAs ()
 extraFileCAs extra file-based certificate authorities
 
QHash< QString, QSet< QSslError::SslError > > ignoredSslErrorCache ()
 ignoredSslErrorCache Get ignored SSL error cache, keyed with cert/connection's sha:host:port.
 
bool importAuthenticationConfigsFromXml (const QString &filename, const QString &password=QString(), bool overwrite=false)
 Import authentication configurations from an XML file.
 
Q_DECL_DEPRECATED bool init (const QString &pluginPath=QString(), const QString &authDatabasePath=QString())
 init initialize QCA, prioritize qca-ossl plugin and optionally set up the authentication database
 
bool initSslCaches ()
 Initialize various SSL authentication caches.
 
bool isDisabled () const
 Whether QCA has the qca-ossl plugin, which a base run-time requirement.
 
bool loadAuthenticationConfig (const QString &authcfg, QgsAuthMethodConfig &mconfig, bool full=false)
 Load an authentication config from the database into subclass.
 
const QMap< QString, QSslCertificate > mappedDatabaseCAs ()
 mappedDatabaseCAs get sha1-mapped database-stored certificate authorities
 
bool masterPasswordHashInDatabase () const
 Verify a password hash existing in authentication database.
 
bool masterPasswordIsSet () const
 Whether master password has be input and verified, i.e. authentication database is accessible.
 
bool masterPasswordSame (const QString &password) const
 Check whether supplied password is the same as the one already set.
 
const QString methodConfigTableName () const
 Returns the database table from the first ready storage that stores authentication configs, or an empty string if none available.
 
bool passwordHelperDelete ()
 Delete master password from wallet.
 
const QString passwordHelperErrorMessage ()
 Error message getter.
 
bool passwordHelperSync ()
 Store the password manager into the wallet.
 
bool rebuildCaCertsCache ()
 Rebuild certificate authority cache.
 
bool rebuildCertTrustCache ()
 Rebuild certificate authority cache.
 
bool rebuildIgnoredSslErrorCache ()
 Rebuild ignoredSSL error cache.
 
bool rebuildTrustedCaCertsCache ()
 Rebuild trusted certificate authorities cache.
 
bool registerCoreAuthMethods ()
 Instantiate and register existing C++ core authentication methods from plugins.
 
bool removeAllAuthenticationConfigs ()
 Clear all authentication configs from table in database and from provider caches.
 
bool removeAuthenticationConfig (const QString &authcfg)
 Remove an authentication config in the database.
 
bool removeAuthSetting (const QString &key)
 Remove an authentication setting.
 
bool removeCertAuthority (const QSslCertificate &cert)
 Remove a certificate authority.
 
bool removeCertIdentity (const QString &id)
 Remove a certificate identity.
 
bool removeCertTrustPolicies (const QList< QSslCertificate > &certs)
 Remove a group certificate authorities.
 
bool removeCertTrustPolicy (const QSslCertificate &cert)
 Remove a certificate authority.
 
bool removeSslCertCustomConfig (const QString &id, const QString &hostport)
 Remove an SSL certificate custom config.
 
bool resetMasterPassword (const QString &newpass, const QString &oldpass, bool keepbackup, QString *backuppath=nullptr)
 Reset the master password to a new one, then re-encrypt all previous configs in a new database file, optionally backup current database.
 
bool scheduledAuthDatabaseErase ()
 Whether there is a scheduled opitonal erase of authentication database.
 
bool setDefaultCertTrustPolicy (QgsAuthCertUtils::CertTrustPolicy policy)
 Sets the default certificate trust policy preferred by user.
 
bool setMasterPassword (bool verify=false)
 Main call to initially set or continually check master password is set.
 
bool setMasterPassword (const QString &password, bool verify=false)
 Overloaded call to reset master password or set it initially without user interaction.
 
void setPasswordHelperEnabled (bool enabled)
 Password helper enabled setter.
 
void setScheduledAuthDatabaseErase (bool scheduleErase)
 Schedule an optional erase of authentication database, starting when mutex is lockable.
 
void setScheduledAuthDatabaseEraseRequestEmitted (bool emitted)
 Re-emit a signal to schedule an optional erase of authentication database.
 
void setup (const QString &pluginPath=QString(), const QString &authDatabasePath=QString())
 Sets up the authentication manager configuration.
 
const QgsAuthConfigSslServer sslCertCustomConfig (const QString &id, const QString &hostport)
 sslCertCustomConfig get an SSL certificate custom config by id (sha hash) and hostport (host:port)
 
const QgsAuthConfigSslServer sslCertCustomConfigByHost (const QString &hostport)
 sslCertCustomConfigByHost get an SSL certificate custom config by hostport (host:port)
 
const QList< QgsAuthConfigSslServersslCertCustomConfigs ()
 sslCertCustomConfigs get SSL certificate custom configs
 
bool storeAuthenticationConfig (QgsAuthMethodConfig &mconfig, bool overwrite=false)
 Store an authentication config in the database.
 
bool storeAuthSetting (const QString &key, const QVariant &value, bool encrypt=false)
 Store an authentication setting (stored as string via QVariant( value ).toString() )
 
bool storeCertAuthorities (const QList< QSslCertificate > &certs)
 Store multiple certificate authorities.
 
bool storeCertAuthority (const QSslCertificate &cert)
 Store a certificate authority.
 
bool storeCertIdentity (const QSslCertificate &cert, const QSslKey &key)
 Store a certificate identity.
 
bool storeCertTrustPolicy (const QSslCertificate &cert, QgsAuthCertUtils::CertTrustPolicy policy)
 Store user trust value for a certificate.
 
bool storeSslCertCustomConfig (const QgsAuthConfigSslServer &config)
 Store an SSL certificate custom config.
 
QgsAuthMethod::Expansions supportedAuthMethodExpansions (const QString &authcfg)
 Gets supported authentication method expansion(s), e.g.
 
const QList< QSslCertificate > trustedCaCerts (bool includeinvalid=false)
 trustedCaCerts get list of all trusted CA certificates
 
const QList< QSslCertificate > trustedCaCertsCache ()
 trustedCaCertsCache cache of trusted certificate authorities, ready for network connections
 
const QByteArray trustedCaCertsPemText ()
 trustedCaCertsPemText get concatenated string of all trusted CA certificates
 
const QString uniqueConfigId () const
 Gets a unique generated 7-character string to assign to as config id.
 
const QList< QSslCertificate > untrustedCaCerts (QList< QSslCertificate > trustedCAs=QList< QSslCertificate >())
 untrustedCaCerts get list of untrusted certificate authorities
 
bool updateAuthenticationConfig (const QgsAuthMethodConfig &config)
 Update an authentication config in the database.
 
void updateConfigAuthMethods ()
 Sync the confg/authentication method cache with what is in database.
 
bool updateDataSourceUriItems (QStringList &connectionItems, const QString &authcfg, const QString &dataprovider=QString())
 Provider call to update a QgsDataSourceUri with an authentication config.
 
bool updateIgnoredSslErrorsCache (const QString &shahostport, const QList< QSslError > &errors)
 Update ignored SSL error cache with possible ignored SSL errors, using sha:host:port key.
 
bool updateIgnoredSslErrorsCacheFromConfig (const QgsAuthConfigSslServer &config)
 Update ignored SSL error cache with possible ignored SSL errors, using server config.
 
bool updateNetworkProxy (QNetworkProxy &proxy, const QString &authcfg, const QString &dataprovider=QString())
 Provider call to update a QNetworkProxy with an authentication config.
 
bool updateNetworkReply (QNetworkReply *reply, const QString &authcfg, const QString &dataprovider=QString())
 Provider call to update a QNetworkReply with an authentication config (used to skip known SSL errors, etc.)
 
bool updateNetworkRequest (QNetworkRequest &request, const QString &authcfg, const QString &dataprovider=QString())
 Provider call to update a QNetworkRequest with an authentication config.
 
bool verifyMasterPassword (const QString &compare=QString())
 Verify the supplied master password against any existing hash in authentication database.
 

Static Public Member Functions

static bool hasConfigId (const QString &txt)
 Returns whether a string includes an authcfg ID token.
 
static bool isFilesystemBasedDatabase (const QString &uri)
 Returns the true if the uri is a filesystem-based database (SQLite).
 
static bool passwordHelperEnabled ()
 Password helper enabled getter.
 
static bool passwordHelperLoggingEnabled ()
 Password helper logging enabled getter.
 
static void setPasswordHelperLoggingEnabled (bool enabled)
 Password helper logging enabled setter.
 
static const QList< QSslCertificate > systemRootCAs ()
 systemRootCAs get root system certificate authorities
 

Static Public Attributes

static const QString AUTH_MAN_TAG = QObject::tr( "Authentication Manager" )
 The display name of the Authentication Manager.
 
static const QString AUTH_PASSWORD_HELPER_DISPLAY_NAME
 The display name of the password helper (platform dependent)
 

Protected Member Functions

 QgsAuthManager ()
 

Static Protected Member Functions

static QgsAuthManagerinstance ()
 Enforce singleton pattern.
 

Friends

class QgsApplication
 

Detailed Description

Singleton offering an interface to manage the authentication configuration database and to utilize configurations through various authentication method plugins.

QgsAuthManager should not usually be directly created, but rather accessed through QgsApplication::authManager().

Definition at line 70 of file qgsauthmanager.h.

Member Enumeration Documentation

◆ MessageLevel

Message log level (mirrors that of QgsMessageLog, so it can also output there)

Enumerator
INFO 
WARNING 
CRITICAL 

Definition at line 77 of file qgsauthmanager.h.

Constructor & Destructor Documentation

◆ ~QgsAuthManager()

QgsAuthManager::~QgsAuthManager ( )
override

Definition at line 3161 of file qgsauthmanager.cpp.

◆ QgsAuthManager()

QgsAuthManager::QgsAuthManager ( )
explicitprotected

Definition at line 96 of file qgsauthmanager.cpp.

Member Function Documentation

◆ authConfigurationStorageRegistry()

QgsAuthConfigurationStorageRegistry * QgsAuthManager::authConfigurationStorageRegistry ( ) const

Returns the authentication configuration storage registry.

Since
QGIS 3.40

Definition at line 3193 of file qgsauthmanager.cpp.

◆ authDatabaseChanged

void QgsAuthManager::authDatabaseChanged ( )
signal

Emitted when the authentication db is significantly changed, e.g. large record removal, erased, etc.

◆ authDatabaseConfigTable()

Q_DECL_DEPRECATED const QString QgsAuthManager::authDatabaseConfigTable ( ) const
inline

Name of the authentication database table that stores configs.

Deprecated:
QGIS 3.40. Direct access to the DB is not allowed, use methodConfigTableName() instead.

Definition at line 136 of file qgsauthmanager.h.

◆ authDatabaseConnection()

QSqlDatabase QgsAuthManager::authDatabaseConnection ( ) const

Sets up the application instance of the authentication database connection.

Deprecated:
QGIS 3.40. Direct access to the DB is not allowed, use QgsAuthConfigurationStorage API instead.

Definition at line 104 of file qgsauthmanager.cpp.

◆ authDatabaseEraseRequested

void QgsAuthManager::authDatabaseEraseRequested ( )
signal

Emitted when a user has indicated they may want to erase the authentication db.

◆ authDatabaseServersTable()

Q_DECL_DEPRECATED const QString QgsAuthManager::authDatabaseServersTable ( ) const
inline

Name of the authentication database table that stores server exceptions/configs.

Deprecated:
QGIS 3.40. Direct access to the DB is not allowed, use QgsAuthConfigurationStorage API instead.

Definition at line 149 of file qgsauthmanager.h.

◆ authenticationDatabasePath()

const QString QgsAuthManager::authenticationDatabasePath ( ) const

The standard authentication database file in ~/.qgis3/ or defined location.

See also
QgsApplication::qgisAuthDatabaseFilePath
Deprecated:
QGIS 3.40. Use authenticationDatabaseUri() instead.

Definition at line 409 of file qgsauthmanager.cpp.

◆ authenticationDatabaseUri()

const QString QgsAuthManager::authenticationDatabaseUri ( ) const

Returns the authentication database connection URI.

Since
QGIS 3.40

Definition at line 165 of file qgsauthmanager.cpp.

◆ authenticationDatabaseUriStripped()

const QString QgsAuthManager::authenticationDatabaseUriStripped ( ) const

Returns the authentication database connection URI with the password stripped.

Since
QGIS 3.40

Definition at line 170 of file qgsauthmanager.cpp.

◆ authManTag()

QString QgsAuthManager::authManTag ( ) const
inline

Simple text tag describing authentication system for message logs.

Definition at line 270 of file qgsauthmanager.h.

◆ authMethod()

QgsAuthMethod * QgsAuthManager::authMethod ( const QString &  authMethodKey)

Gets authentication method from the config/provider cache via its key.

Parameters
authMethodKeyAuthentication method key

Definition at line 949 of file qgsauthmanager.cpp.

◆ authMethodMetadata()

const QgsAuthMethodMetadata * QgsAuthManager::authMethodMetadata ( const QString &  authMethodKey)

Gets authentication method metadata via its key.

Parameters
authMethodKeyAuthentication method key
Since
QGIS 3.22

Definition at line 962 of file qgsauthmanager.cpp.

◆ authMethodsKeys()

QStringList QgsAuthManager::authMethodsKeys ( const QString &  dataprovider = QString())

Gets keys of supported authentication methods.

Definition at line 942 of file qgsauthmanager.cpp.

◆ authMethodsMap()

QgsAuthMethodsMap QgsAuthManager::authMethodsMap ( const QString &  dataprovider = QString())

Gets available authentication methods mapped to their key.

Parameters
dataproviderProvider key filter, returning only methods that support a particular provider
Note
not available in Python bindings

Definition at line 976 of file qgsauthmanager.cpp.

◆ authSetting()

QVariant QgsAuthManager::authSetting ( const QString &  key,
const QVariant &  defaultValue = QVariant(),
bool  decrypt = false 
)

authSetting get an authentication setting (retrieved as string and returned as QVariant( QString ))

Parameters
keysetting key
defaultValue
decryptif the value needs decrypted
Returns
QVariant( QString ) authentication setting

Definition at line 1690 of file qgsauthmanager.cpp.

◆ availableAuthMethodConfigs()

QgsAuthMethodConfigsMap QgsAuthManager::availableAuthMethodConfigs ( const QString &  dataprovider = QString())

Gets mapping of authentication config ids and their base configs (not decrypted data)

Definition at line 837 of file qgsauthmanager.cpp.

◆ backupAuthenticationDatabase()

bool QgsAuthManager::backupAuthenticationDatabase ( QString *  backuppath = nullptr)

Close connection to current authentication database and back it up.

Returns
Path to backup

Definition at line 1436 of file qgsauthmanager.cpp.

◆ caCertsCache()

const QMap< QString, QPair< QgsAuthCertUtils::CaCertSource, QSslCertificate > > QgsAuthManager::caCertsCache ( )
inline

caCertsCache get all CA certs mapped to their sha1 from cache.

Returns
map of sha1 <source, certificates>
Note
not available in Python bindings

Definition at line 641 of file qgsauthmanager.h.

◆ certAuthority()

const QSslCertificate QgsAuthManager::certAuthority ( const QString &  id)

Gets a certificate authority by id (sha hash)

certAuthority get a certificate authority by id (sha hash)

Parameters
idsha hash
Returns
a certificate

Definition at line 2534 of file qgsauthmanager.cpp.

◆ certIdentities()

const QList< QSslCertificate > QgsAuthManager::certIdentities ( )

certIdentities get certificate identities

Returns
list of certificates

Definition at line 1952 of file qgsauthmanager.cpp.

◆ certIdentity()

const QSslCertificate QgsAuthManager::certIdentity ( const QString &  id)

certIdentity get a certificate identity by id (sha hash)

Parameters
idsha hash of the cert
Returns
the certificate

Definition at line 1862 of file qgsauthmanager.cpp.

◆ certIdentityBundle()

const QPair< QSslCertificate, QSslKey > QgsAuthManager::certIdentityBundle ( const QString &  id)

Gets a certificate identity bundle by id (sha hash).

Parameters
idsha shash
Returns
a pair with the certificate and its SSL key
Note
not available in Python bindings

Definition at line 1893 of file qgsauthmanager.cpp.

◆ certIdentityBundleToPem()

const QStringList QgsAuthManager::certIdentityBundleToPem ( const QString &  id)

certIdentityBundleToPem get a certificate identity bundle by id (sha hash) returned as PEM text

Parameters
idsha hash
Returns
a list of strings

Definition at line 1939 of file qgsauthmanager.cpp.

◆ certIdentityIds()

QStringList QgsAuthManager::certIdentityIds ( ) const

certIdentityIds get list of certificate identity ids from database

Returns
list of certificate ids

Definition at line 1987 of file qgsauthmanager.cpp.

◆ certificateTrustPolicy()

QgsAuthCertUtils::CertTrustPolicy QgsAuthManager::certificateTrustPolicy ( const QSslCertificate &  cert)

certificateTrustPolicy get trust policy for a particular certificate cert

Parameters
cert
Returns
DefaultTrust if certificate sha not in trust table, i.e. follows default trust policy

Definition at line 2866 of file qgsauthmanager.cpp.

◆ certTrustCache()

const QMap< QgsAuthCertUtils::CertTrustPolicy, QStringList > QgsAuthManager::certTrustCache ( )
inline

certTrustCache get cache of certificate sha1s, per trust policy

Returns
trust-policy-mapped certificate sha1s

Definition at line 682 of file qgsauthmanager.h.

◆ certTrustPolicy()

QgsAuthCertUtils::CertTrustPolicy QgsAuthManager::certTrustPolicy ( const QSslCertificate &  cert)

certTrustPolicy get whether certificate cert is trusted by user

Parameters
cert
Returns
DefaultTrust if certificate sha not in trust table, i.e. follows default trust policy

Definition at line 2775 of file qgsauthmanager.cpp.

◆ clearAllCachedConfigs

void QgsAuthManager::clearAllCachedConfigs ( )
slot

Clear all authentication configs from authentication method caches.

Definition at line 3069 of file qgsauthmanager.cpp.

◆ clearCachedConfig

void QgsAuthManager::clearCachedConfig ( const QString &  authcfg)
slot

Clear an authentication config from its associated authentication method cache.

Definition at line 3083 of file qgsauthmanager.cpp.

◆ clearMasterPassword()

void QgsAuthManager::clearMasterPassword ( )
inline

Clear supplied master password.

Note
This will not necessarily clear authenticated connections cached in network connection managers

Definition at line 221 of file qgsauthmanager.h.

◆ configAuthMethod()

QgsAuthMethod * QgsAuthManager::configAuthMethod ( const QString &  authcfg)

Gets authentication method from the config/provider cache.

Parameters
authcfgAuthentication config id

Definition at line 913 of file qgsauthmanager.cpp.

◆ configAuthMethodKey()

QString QgsAuthManager::configAuthMethodKey ( const QString &  authcfg) const

Gets key of authentication method associated with config ID.

Parameters
authcfg

Definition at line 931 of file qgsauthmanager.cpp.

◆ configIdRegex()

QString QgsAuthManager::configIdRegex ( ) const
inline

Returns the regular expression for authcfg=.{7} key/value token for authentication ids.

Definition at line 352 of file qgsauthmanager.h.

◆ configIds()

QStringList QgsAuthManager::configIds ( ) const

Gets list of authentication ids from database.

Definition at line 3637 of file qgsauthmanager.cpp.

◆ configIdUnique()

bool QgsAuthManager::configIdUnique ( const QString &  id) const

Verify if provided authentication id is unique.

Parameters
idId to check

Definition at line 813 of file qgsauthmanager.cpp.

◆ databaseCAs()

const QList< QSslCertificate > QgsAuthManager::databaseCAs ( )

databaseCAs get database-stored certificate authorities

Returns
list of certificate authorities

Definition at line 2681 of file qgsauthmanager.cpp.

◆ defaultCertTrustPolicy()

QgsAuthCertUtils::CertTrustPolicy QgsAuthManager::defaultCertTrustPolicy ( )

Gets the default certificate trust policy preferred by user.

Definition at line 2904 of file qgsauthmanager.cpp.

◆ defaultDbStorage()

QgsAuthConfigurationStorageDb * QgsAuthManager::defaultDbStorage ( ) const

Transitional proxy to the first ready storage of database type.

Exposes the old SQLite local API from the new storage API.

Note
not available in Python bindings

Definition at line 4011 of file qgsauthmanager.cpp.

◆ disabledMessage()

const QString QgsAuthManager::disabledMessage ( ) const

Standard message for when QCA's qca-ossl plugin is missing and system is disabled.

Definition at line 380 of file qgsauthmanager.cpp.

◆ dumpIgnoredSslErrorsCache_()

void QgsAuthManager::dumpIgnoredSslErrorsCache_ ( )

Utility function to dump the cache for debug purposes.

Definition at line 2317 of file qgsauthmanager.cpp.

◆ ensureInitialized()

bool QgsAuthManager::ensureInitialized ( ) const

Performs lazy initialization of the authentication framework, if it has not already been done.

See also
setup()
Since
QGIS 3.40

Definition at line 184 of file qgsauthmanager.cpp.

◆ eraseAuthenticationDatabase()

bool QgsAuthManager::eraseAuthenticationDatabase ( bool  backup,
QString *  backuppath = nullptr 
)

Erase all rows from all tables in authentication database.

Parameters
backupWhether to backup of current database
backuppathWhere the backup is locate
Returns
Whether operation succeeded

Definition at line 1485 of file qgsauthmanager.cpp.

◆ existsAuthSetting()

bool QgsAuthManager::existsAuthSetting ( const QString &  key)

Check if an authentication setting exists.

Definition at line 1728 of file qgsauthmanager.cpp.

◆ existsCertAuthority()

bool QgsAuthManager::existsCertAuthority ( const QSslCertificate &  cert)

Check if a certificate authority exists.

Definition at line 2565 of file qgsauthmanager.cpp.

◆ existsCertIdentity()

bool QgsAuthManager::existsCertIdentity ( const QString &  id)

Check if a certificate identity exists.

Definition at line 2021 of file qgsauthmanager.cpp.

◆ existsSslCertCustomConfig()

bool QgsAuthManager::existsSslCertCustomConfig ( const QString &  id,
const QString &  hostport 
)

Check if SSL certificate custom config exists.

Definition at line 2244 of file qgsauthmanager.cpp.

◆ exportAuthenticationConfigsToXml()

bool QgsAuthManager::exportAuthenticationConfigsToXml ( const QString &  filename,
const QStringList &  authcfgs,
const QString &  password = QString() 
)

Export authentication configurations to an XML file.

Parameters
filenameThe file path to save the XML content to
authcfgsThe list of configuration IDs to export
passwordA password string to encrypt the XML content
Since
QGIS 3.20

Definition at line 1291 of file qgsauthmanager.cpp.

◆ extraFileCAs()

const QList< QSslCertificate > QgsAuthManager::extraFileCAs ( )

extraFileCAs extra file-based certificate authorities

Returns
list of certificate authorities

Definition at line 2642 of file qgsauthmanager.cpp.

◆ hasConfigId()

bool QgsAuthManager::hasConfigId ( const QString &  txt)
static

Returns whether a string includes an authcfg ID token.

Parameters
txtString to check

Definition at line 831 of file qgsauthmanager.cpp.

◆ ignoredSslErrorCache()

QHash< QString, QSet< QSslError::SslError > > QgsAuthManager::ignoredSslErrorCache ( )
inline

ignoredSslErrorCache Get ignored SSL error cache, keyed with cert/connection's sha:host:port.

Returns
hash keyed with cert/connection's sha:host:port.
Note
not available in Python bindings

Definition at line 576 of file qgsauthmanager.h.

◆ importAuthenticationConfigsFromXml()

bool QgsAuthManager::importAuthenticationConfigsFromXml ( const QString &  filename,
const QString &  password = QString(),
bool  overwrite = false 
)

Import authentication configurations from an XML file.

Parameters
filenameThe file path from which the XML content will be read
passwordA password string to decrypt the XML content
overwriteIf set to true, pre-existing authentication configurations will be overwritten
Since
QGIS 3.20

Definition at line 1352 of file qgsauthmanager.cpp.

◆ init()

bool QgsAuthManager::init ( const QString &  pluginPath = QString(),
const QString &  authDatabasePath = QString() 
)

init initialize QCA, prioritize qca-ossl plugin and optionally set up the authentication database

Parameters
pluginPaththe plugin path
authDatabasePaththe authentication DB path
Returns
true on success
See also
QgsApplication::pluginPath
QgsApplication::qgisAuthDatabaseFilePath
Deprecated:
QGIS 3.36. Use setup() or ensureInitialized() instead.

Definition at line 178 of file qgsauthmanager.cpp.

◆ initSslCaches()

bool QgsAuthManager::initSslCaches ( )

Initialize various SSL authentication caches.

Definition at line 1798 of file qgsauthmanager.cpp.

◆ instance()

QgsAuthManager * QgsAuthManager::instance ( )
staticprotected

Enforce singleton pattern.

Note
To set up the manager instance and initialize everything use QgsAuthManager::instance()->init()

Definition at line 84 of file qgsauthmanager.cpp.

◆ isDisabled()

bool QgsAuthManager::isDisabled ( ) const

Whether QCA has the qca-ossl plugin, which a base run-time requirement.

Definition at line 369 of file qgsauthmanager.cpp.

◆ isFilesystemBasedDatabase()

bool QgsAuthManager::isFilesystemBasedDatabase ( const QString &  uri)
static

Returns the true if the uri is a filesystem-based database (SQLite).

Definition at line 150 of file qgsauthmanager.cpp.

◆ loadAuthenticationConfig()

bool QgsAuthManager::loadAuthenticationConfig ( const QString &  authcfg,
QgsAuthMethodConfig mconfig,
bool  full = false 
)

Load an authentication config from the database into subclass.

Parameters
authcfgAssociated authentication config id
mconfigSubclassed config to load into
fullWhether to decrypt and populate all sensitive data in subclass
Returns
Whether operation succeeded

Definition at line 1179 of file qgsauthmanager.cpp.

◆ mappedDatabaseCAs()

const QMap< QString, QSslCertificate > QgsAuthManager::mappedDatabaseCAs ( )

mappedDatabaseCAs get sha1-mapped database-stored certificate authorities

Returns
sha1-mapped certificate authorities

Definition at line 2717 of file qgsauthmanager.cpp.

◆ masterPasswordHashInDatabase()

bool QgsAuthManager::masterPasswordHashInDatabase ( ) const

Verify a password hash existing in authentication database.

Definition at line 3489 of file qgsauthmanager.cpp.

◆ masterPasswordIsSet()

bool QgsAuthManager::masterPasswordIsSet ( ) const

Whether master password has be input and verified, i.e. authentication database is accessible.

Definition at line 571 of file qgsauthmanager.cpp.

◆ masterPasswordSame()

bool QgsAuthManager::masterPasswordSame ( const QString &  password) const

Check whether supplied password is the same as the one already set.

Parameters
passwordPassword to verify

Definition at line 578 of file qgsauthmanager.cpp.

◆ masterPasswordVerified

void QgsAuthManager::masterPasswordVerified ( bool  verified)
signal

Emitted when a password has been verify (or not)

Parameters
verifiedThe state of password's verification

◆ messageLog

void QgsAuthManager::messageLog ( const QString &  message,
const QString &  tag = QgsAuthManager::AUTH_MAN_TAG,
Qgis::MessageLevel  level = Qgis::MessageLevel::Info 
) const
signal

Custom logging signal to relay to console output and QgsMessageLog.

Parameters
messageMessage to send
tagAssociated tag (title)
levelMessage log level
See also
QgsMessageLog
Since
QGIS 3.40

◆ messageOut

Q_DECL_DEPRECATED void QgsAuthManager::messageOut ( const QString &  message,
const QString &  tag = QgsAuthManager::AUTH_MAN_TAG,
QgsAuthManager::MessageLevel  level = QgsAuthManager::INFO 
) const
signal

Custom logging signal to relay to console output and QgsMessageLog.

Parameters
messageMessage to send
tagAssociated tag (title)
levelMessage log level
See also
QgsMessageLog
Deprecated:
QGIS 3.40. Use messageLog() instead.

◆ methodConfigTableName()

const QString QgsAuthManager::methodConfigTableName ( ) const

Returns the database table from the first ready storage that stores authentication configs, or an empty string if none available.

The table is prefixed with schema and escaped if necessary.

Since
QGIS 3.40

Definition at line 126 of file qgsauthmanager.cpp.

◆ passwordHelperDelete()

bool QgsAuthManager::passwordHelperDelete ( )

Delete master password from wallet.

Note
not available in Python bindings

Definition at line 3220 of file qgsauthmanager.cpp.

◆ passwordHelperEnabled()

bool QgsAuthManager::passwordHelperEnabled ( )
static

Password helper enabled getter.

Note
Available in Python bindings since QGIS 3.8.0

Definition at line 3333 of file qgsauthmanager.cpp.

◆ passwordHelperErrorMessage()

const QString QgsAuthManager::passwordHelperErrorMessage ( )
inline

Error message getter.

Note
not available in Python bindings

Definition at line 721 of file qgsauthmanager.h.

◆ passwordHelperFailure

void QgsAuthManager::passwordHelperFailure ( )
signal

Signals emitted on password helper failure, mainly used in the tests to exit main application loop.

◆ passwordHelperLoggingEnabled()

bool QgsAuthManager::passwordHelperLoggingEnabled ( )
static

Password helper logging enabled getter.

Note
not available in Python bindings

Definition at line 3350 of file qgsauthmanager.cpp.

◆ passwordHelperMessageLog

void QgsAuthManager::passwordHelperMessageLog ( const QString &  message,
const QString &  tag = QgsAuthManager::AUTH_MAN_TAG,
Qgis::MessageLevel  level = Qgis::MessageLevel::Info 
)
signal

Custom logging signal to inform the user about master password <-> password manager interactions.

Parameters
messageMessage to send
tagAssociated tag (title)
levelMessage log level
See also
QgsMessageLog
Since
QGIS 3.40

◆ passwordHelperMessageOut

Q_DECL_DEPRECATED void QgsAuthManager::passwordHelperMessageOut ( const QString &  message,
const QString &  tag = QgsAuthManager::AUTH_MAN_TAG,
QgsAuthManager::MessageLevel  level = QgsAuthManager::INFO 
)
signal

Custom logging signal to inform the user about master password <-> password manager interactions.

Parameters
messageMessage to send
tagAssociated tag (title)
levelMessage log level
See also
QgsMessageLog
Deprecated:
QGIS 3.40. Use passwordHelperMessageLog() instead.

◆ passwordHelperSuccess

void QgsAuthManager::passwordHelperSuccess ( )
signal

Signals emitted on password helper success, mainly used in the tests to exit main application loop.

◆ passwordHelperSync()

bool QgsAuthManager::passwordHelperSync ( )

Store the password manager into the wallet.

Note
Available in Python bindings since QGIS 3.8.0

Definition at line 3052 of file qgsauthmanager.cpp.

◆ rebuildCaCertsCache()

bool QgsAuthManager::rebuildCaCertsCache ( )

Rebuild certificate authority cache.

Definition at line 2725 of file qgsauthmanager.cpp.

◆ rebuildCertTrustCache()

bool QgsAuthManager::rebuildCertTrustCache ( )

Rebuild certificate authority cache.

Definition at line 2917 of file qgsauthmanager.cpp.

◆ rebuildIgnoredSslErrorCache()

bool QgsAuthManager::rebuildIgnoredSslErrorCache ( )

Rebuild ignoredSSL error cache.

Definition at line 2420 of file qgsauthmanager.cpp.

◆ rebuildTrustedCaCertsCache()

bool QgsAuthManager::rebuildTrustedCaCertsCache ( )

Rebuild trusted certificate authorities cache.

Definition at line 3033 of file qgsauthmanager.cpp.

◆ registerCoreAuthMethods()

bool QgsAuthManager::registerCoreAuthMethods ( )

Instantiate and register existing C++ core authentication methods from plugins.

Definition at line 757 of file qgsauthmanager.cpp.

◆ removeAllAuthenticationConfigs()

bool QgsAuthManager::removeAllAuthenticationConfigs ( )

Clear all authentication configs from table in database and from provider caches.

Returns
Whether operation succeeded

Definition at line 1405 of file qgsauthmanager.cpp.

◆ removeAuthenticationConfig()

bool QgsAuthManager::removeAuthenticationConfig ( const QString &  authcfg)

Remove an authentication config in the database.

Parameters
authcfgAssociated authentication config id
Returns
Whether operation succeeded

Definition at line 1244 of file qgsauthmanager.cpp.

◆ removeAuthSetting()

bool QgsAuthManager::removeAuthSetting ( const QString &  key)

Remove an authentication setting.

Definition at line 1755 of file qgsauthmanager.cpp.

◆ removeCertAuthority()

bool QgsAuthManager::removeCertAuthority ( const QSslCertificate &  cert)

Remove a certificate authority.

Definition at line 2595 of file qgsauthmanager.cpp.

◆ removeCertIdentity()

bool QgsAuthManager::removeCertIdentity ( const QString &  id)

Remove a certificate identity.

Definition at line 2048 of file qgsauthmanager.cpp.

◆ removeCertTrustPolicies()

bool QgsAuthManager::removeCertTrustPolicies ( const QList< QSslCertificate > &  certs)

Remove a group certificate authorities.

Definition at line 2806 of file qgsauthmanager.cpp.

◆ removeCertTrustPolicy()

bool QgsAuthManager::removeCertTrustPolicy ( const QSslCertificate &  cert)

Remove a certificate authority.

Definition at line 2825 of file qgsauthmanager.cpp.

◆ removeSslCertCustomConfig()

bool QgsAuthManager::removeSslCertCustomConfig ( const QString &  id,
const QString &  hostport 
)

Remove an SSL certificate custom config.

Definition at line 2274 of file qgsauthmanager.cpp.

◆ resetMasterPassword()

bool QgsAuthManager::resetMasterPassword ( const QString &  newpass,
const QString &  oldpass,
bool  keepbackup,
QString *  backuppath = nullptr 
)

Reset the master password to a new one, then re-encrypt all previous configs in a new database file, optionally backup current database.

Parameters
newpassNew master password to replace existing
oldpassCurrent master password to replace existing
keepbackupWhether to keep the generated backup of current database
backuppathWhere the backup is located, if kept

Definition at line 585 of file qgsauthmanager.cpp.

◆ scheduledAuthDatabaseErase()

bool QgsAuthManager::scheduledAuthDatabaseErase ( )
inline

Whether there is a scheduled opitonal erase of authentication database.

Note
not available in Python bindings

Definition at line 243 of file qgsauthmanager.h.

◆ setDefaultCertTrustPolicy()

bool QgsAuthManager::setDefaultCertTrustPolicy ( QgsAuthCertUtils::CertTrustPolicy  policy)

Sets the default certificate trust policy preferred by user.

Definition at line 2892 of file qgsauthmanager.cpp.

◆ setMasterPassword() [1/2]

bool QgsAuthManager::setMasterPassword ( bool  verify = false)

Main call to initially set or continually check master password is set.

Note
If it is not set, the user is asked for its input
Parameters
verifyWhether password's hash was saved in authentication database

Definition at line 414 of file qgsauthmanager.cpp.

◆ setMasterPassword() [2/2]

bool QgsAuthManager::setMasterPassword ( const QString &  password,
bool  verify = false 
)

Overloaded call to reset master password or set it initially without user interaction.

Note
Only use this in trusted reset functions, unit tests or user/app setup scripts!
Parameters
passwordPassword to use
verifyWhether password's hash was saved in authentication database

Definition at line 448 of file qgsauthmanager.cpp.

◆ setPasswordHelperEnabled()

void QgsAuthManager::setPasswordHelperEnabled ( bool  enabled)

Password helper enabled setter.

Note
Available in Python bindings since QGIS 3.8.0

Definition at line 3340 of file qgsauthmanager.cpp.

◆ setPasswordHelperLoggingEnabled()

void QgsAuthManager::setPasswordHelperLoggingEnabled ( bool  enabled)
static

Password helper logging enabled setter.

Note
not available in Python bindings

Definition at line 3357 of file qgsauthmanager.cpp.

◆ setScheduledAuthDatabaseErase()

void QgsAuthManager::setScheduledAuthDatabaseErase ( bool  scheduleErase)

Schedule an optional erase of authentication database, starting when mutex is lockable.

Note
When an erase is scheduled, any attempt to set the master password, e.g. password input dialog, is effectively canceled. For example: In a GUI app, this keeps excess password input dialogs from popping up when a user has initiated an erase, from a password input dialog, because they forgot their password. The created schedule timer will emit a request to gain access to the user, through the given application, to prompt the erase operation (e.g. via a dialog); if no access to user interaction occurs within 90 seconds, it cancels the schedule.
not available in Python bindings

Definition at line 728 of file qgsauthmanager.cpp.

◆ setScheduledAuthDatabaseEraseRequestEmitted()

void QgsAuthManager::setScheduledAuthDatabaseEraseRequestEmitted ( bool  emitted)
inline

Re-emit a signal to schedule an optional erase of authentication database.

Note
This can be called from the slot connected to a previously emitted scheduling signal, so that the slot can ask for another emit later, if the slot noticies the current GUI processing state is not ready for interacting with the user, e.g. project is still loading
Parameters
emittedSetting to false will cause signal to be emitted by the schedule timer. Setting to true will stop any emitting, but will not stop the schedule timer.

Definition at line 267 of file qgsauthmanager.h.

◆ setup()

void QgsAuthManager::setup ( const QString &  pluginPath = QString(),
const QString &  authDatabasePath = QString() 
)

Sets up the authentication manager configuration.

This method does not initialize the authentication framework, instead that is deferred to lazy-initialize when required.

Parameters
pluginPaththe plugin path
authDatabasePaththe authentication DB URI (or just the file path for SQLite)
See also
ensureInitialized()

Definition at line 363 of file qgsauthmanager.cpp.

◆ sslCertCustomConfig()

const QgsAuthConfigSslServer QgsAuthManager::sslCertCustomConfig ( const QString &  id,
const QString &  hostport 
)

sslCertCustomConfig get an SSL certificate custom config by id (sha hash) and hostport (host:port)

Parameters
idsha hash
hostportstring host:port
Returns
a SSL certificate custom config

Definition at line 2124 of file qgsauthmanager.cpp.

◆ sslCertCustomConfigByHost()

const QgsAuthConfigSslServer QgsAuthManager::sslCertCustomConfigByHost ( const QString &  hostport)

sslCertCustomConfigByHost get an SSL certificate custom config by hostport (host:port)

Parameters
hostporthost:port
Returns
a SSL certificate custom config

Definition at line 2166 of file qgsauthmanager.cpp.

◆ sslCertCustomConfigs()

const QList< QgsAuthConfigSslServer > QgsAuthManager::sslCertCustomConfigs ( )

sslCertCustomConfigs get SSL certificate custom configs

Returns
list of SSL certificate custom config

Definition at line 2202 of file qgsauthmanager.cpp.

◆ storeAuthenticationConfig()

bool QgsAuthManager::storeAuthenticationConfig ( QgsAuthMethodConfig mconfig,
bool  overwrite = false 
)

Store an authentication config in the database.

Parameters
mconfigAssociated authentication config id
overwriteIf set to true, pre-existing authentication configurations will be overwritten
Returns
Whether operation succeeded

Definition at line 1028 of file qgsauthmanager.cpp.

◆ storeAuthSetting()

bool QgsAuthManager::storeAuthSetting ( const QString &  key,
const QVariant &  value,
bool  encrypt = false 
)

Store an authentication setting (stored as string via QVariant( value ).toString() )

Definition at line 1645 of file qgsauthmanager.cpp.

◆ storeCertAuthorities()

bool QgsAuthManager::storeCertAuthorities ( const QList< QSslCertificate > &  certs)

Store multiple certificate authorities.

Definition at line 2483 of file qgsauthmanager.cpp.

◆ storeCertAuthority()

bool QgsAuthManager::storeCertAuthority ( const QSslCertificate &  cert)

Store a certificate authority.

Definition at line 2502 of file qgsauthmanager.cpp.

◆ storeCertIdentity()

bool QgsAuthManager::storeCertIdentity ( const QSslCertificate &  cert,
const QSslKey &  key 
)

Store a certificate identity.

Definition at line 1816 of file qgsauthmanager.cpp.

◆ storeCertTrustPolicy()

bool QgsAuthManager::storeCertTrustPolicy ( const QSslCertificate &  cert,
QgsAuthCertUtils::CertTrustPolicy  policy 
)

Store user trust value for a certificate.

Definition at line 2742 of file qgsauthmanager.cpp.

◆ storeSslCertCustomConfig()

bool QgsAuthManager::storeSslCertCustomConfig ( const QgsAuthConfigSslServer config)

Store an SSL certificate custom config.

Definition at line 2084 of file qgsauthmanager.cpp.

◆ supportedAuthMethodExpansions()

QgsAuthMethod::Expansions QgsAuthManager::supportedAuthMethodExpansions ( const QString &  authcfg)

Gets supported authentication method expansion(s), e.g.

NetworkRequest | DataSourceURI, as flags

Parameters
authcfg

Definition at line 1013 of file qgsauthmanager.cpp.

◆ systemRootCAs()

const QList< QSslCertificate > QgsAuthManager::systemRootCAs ( )
static

systemRootCAs get root system certificate authorities

Returns
list of certificate authorities

Definition at line 2637 of file qgsauthmanager.cpp.

◆ trustedCaCerts()

const QList< QSslCertificate > QgsAuthManager::trustedCaCerts ( bool  includeinvalid = false)

trustedCaCerts get list of all trusted CA certificates

Parameters
includeinvalidwhether invalid certs needs to be returned
Returns
list of certificates

Definition at line 2969 of file qgsauthmanager.cpp.

◆ trustedCaCertsCache()

const QList< QSslCertificate > QgsAuthManager::trustedCaCertsCache ( )
inline

trustedCaCertsCache cache of trusted certificate authorities, ready for network connections

Returns
list of certificates

Definition at line 707 of file qgsauthmanager.h.

◆ trustedCaCertsPemText()

const QByteArray QgsAuthManager::trustedCaCertsPemText ( )

trustedCaCertsPemText get concatenated string of all trusted CA certificates

Returns
bye array with all PEM encoded trusted CAs

Definition at line 3044 of file qgsauthmanager.cpp.

◆ uniqueConfigId()

const QString QgsAuthManager::uniqueConfigId ( ) const

Gets a unique generated 7-character string to assign to as config id.

Definition at line 773 of file qgsauthmanager.cpp.

◆ untrustedCaCerts()

const QList< QSslCertificate > QgsAuthManager::untrustedCaCerts ( QList< QSslCertificate >  trustedCAs = QList<QSslCertificate>())

untrustedCaCerts get list of untrusted certificate authorities

Returns
list of certificates

Definition at line 3005 of file qgsauthmanager.cpp.

◆ updateAuthenticationConfig()

bool QgsAuthManager::updateAuthenticationConfig ( const QgsAuthMethodConfig config)

Update an authentication config in the database.

Parameters
configAssociated authentication config id
Returns
Whether operation succeeded

Definition at line 1112 of file qgsauthmanager.cpp.

◆ updateConfigAuthMethods()

void QgsAuthManager::updateConfigAuthMethods ( )

Sync the confg/authentication method cache with what is in database.

Definition at line 886 of file qgsauthmanager.cpp.

◆ updateDataSourceUriItems()

bool QgsAuthManager::updateDataSourceUriItems ( QStringList &  connectionItems,
const QString &  authcfg,
const QString &  dataprovider = QString() 
)

Provider call to update a QgsDataSourceUri with an authentication config.

Parameters
connectionItemsThe connection items, e.g. username=myname, of QgsDataSourceUri
authcfgAssociated authentication config id
dataproviderProvider key filter, offering logic branching in authentication method
Returns
Whether operation succeeded

Definition at line 1589 of file qgsauthmanager.cpp.

◆ updateIgnoredSslErrorsCache()

bool QgsAuthManager::updateIgnoredSslErrorsCache ( const QString &  shahostport,
const QList< QSslError > &  errors 
)

Update ignored SSL error cache with possible ignored SSL errors, using sha:host:port key.

Definition at line 2374 of file qgsauthmanager.cpp.

◆ updateIgnoredSslErrorsCacheFromConfig()

bool QgsAuthManager::updateIgnoredSslErrorsCacheFromConfig ( const QgsAuthConfigSslServer config)

Update ignored SSL error cache with possible ignored SSL errors, using server config.

Definition at line 2343 of file qgsauthmanager.cpp.

◆ updateNetworkProxy()

bool QgsAuthManager::updateNetworkProxy ( QNetworkProxy &  proxy,
const QString &  authcfg,
const QString &  dataprovider = QString() 
)

Provider call to update a QNetworkProxy with an authentication config.

Parameters
proxythe QNetworkProxy
authcfgAssociated authentication config id
dataproviderProvider key filter, offering logic branching in authentication method
Returns
Whether operation succeeded

Definition at line 1617 of file qgsauthmanager.cpp.

◆ updateNetworkReply()

bool QgsAuthManager::updateNetworkReply ( QNetworkReply *  reply,
const QString &  authcfg,
const QString &  dataprovider = QString() 
)

Provider call to update a QNetworkReply with an authentication config (used to skip known SSL errors, etc.)

Parameters
replyThe QNetworkReply
authcfgAssociated authentication config id
dataproviderProvider key filter, offering logic branching in authentication method
Returns
Whether operation succeeded

Definition at line 1561 of file qgsauthmanager.cpp.

◆ updateNetworkRequest()

bool QgsAuthManager::updateNetworkRequest ( QNetworkRequest &  request,
const QString &  authcfg,
const QString &  dataprovider = QString() 
)

Provider call to update a QNetworkRequest with an authentication config.

Parameters
requestThe QNetworkRequest
authcfgAssociated authentication config id
dataproviderProvider key filter, offering logic branching in authentication method
Returns
Whether operation succeeded

Definition at line 1534 of file qgsauthmanager.cpp.

◆ verifyMasterPassword()

bool QgsAuthManager::verifyMasterPassword ( const QString &  compare = QString())

Verify the supplied master password against any existing hash in authentication database.

Note
Do not emit verification signals when only comparing
Parameters
comparePassword to compare against

Definition at line 475 of file qgsauthmanager.cpp.

Friends And Related Symbol Documentation

◆ QgsApplication

friend class QgsApplication
friend

Definition at line 1013 of file qgsauthmanager.h.

Member Data Documentation

◆ AUTH_MAN_TAG

const QString QgsAuthManager::AUTH_MAN_TAG = QObject::tr( "Authentication Manager" )
static

The display name of the Authentication Manager.

Definition at line 763 of file qgsauthmanager.h.

◆ AUTH_PASSWORD_HELPER_DISPLAY_NAME

const QString QgsAuthManager::AUTH_PASSWORD_HELPER_DISPLAY_NAME
static

The display name of the password helper (platform dependent)

Definition at line 760 of file qgsauthmanager.h.


The documentation for this class was generated from the following files: