//////////////////////////////////////////////////////////////////////////////// /// DISCLAIMER /// /// Copyright 2016 ArangoDB GmbH, Cologne, Germany /// /// Licensed under the Apache License, Version 2.0 (the "License"); /// you may not use this file except in compliance with the License. /// You may obtain a copy of the License at /// /// http://www.apache.org/licenses/LICENSE-2.0 /// /// Unless required by applicable law or agreed to in writing, software /// distributed under the License is distributed on an "AS IS" BASIS, /// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. /// See the License for the specific language governing permissions and /// limitations under the License. /// /// Copyright holder is ArangoDB GmbH, Cologne, Germany /// /// @author Dr. Frank Celler //////////////////////////////////////////////////////////////////////////////// #ifndef ARANGODB_APPLICATION_FEATURES_SSL_SERVER_FEATURE_H #define ARANGODB_APPLICATION_FEATURES_SSL_SERVER_FEATURE_H 1 #include "ApplicationFeatures/ApplicationFeature.h" // needs to come first #include "Ssl/ssl-helper.h" // needs to come second in order to recognize ssl #include "Basics/asio_ns.h" namespace arangodb { class SslServerFeature : public application_features::ApplicationFeature { public: static SslServerFeature* SSL; public: explicit SslServerFeature(application_features::ApplicationServer* server); public: void collectOptions(std::shared_ptr) override; void validateOptions(std::shared_ptr) override; void prepare() override final; void unprepare() override final; public: virtual void verifySslOptions(); public: virtual asio::ssl::context createSslContext() const; protected: std::string _cafile; std::string _keyfile; bool _sessionCache; std::string _cipherList; uint64_t _sslProtocol; uint64_t _sslOptions; std::string _ecdhCurve; private: std::string stringifySslOptions(uint64_t opts) const; private: std::string _rctx; }; } #endif