| blob | 9557ba0c4bef2b7d14f75b5f09f595d6316cd42e |
1 #ifndef __ISDS_ISDS_H__
2 #define __ISDS_ISDS_H__
4 /* Public interface for libisds.
5 * Private declarations in isds_priv.h. */
14 #endif
16 /* _deprecated macro marks library symbols as deprecated. Application should
17 * avoid using such function as soon as possible. */
18 #if defined(__GNUC__)
19 #define _deprecated __attribute__((deprecated))
20 #else
21 #define _deprecated
22 #endif
24 /* Service locators */
25 /* Base URL of production ISDS instance */
30 /* Base URL of testing ISDS instance */
42 IE_NOTSUP,
43 IE_INVAL,
44 IE_INVALID_CONTEXT,
45 IE_NOT_LOGGED_IN,
46 IE_CONNECTION_CLOSED,
47 IE_TIMED_OUT,
48 IE_NOEXIST,
49 IE_NOMEM,
50 IE_NETWORK,
51 IE_HTTP,
52 IE_SOAP,
53 IE_XML,
54 IE_ISDS,
55 IE_ENUM,
56 IE_DATE,
57 IE_2BIG,
58 IE_2SMALL,
59 IE_NOTUNIQ,
60 IE_NOTEQUAL,
61 IE_PARTIAL_SUCCESS,
62 IE_ABORTED,
63 IE_SECURITY
87 /* Return text description of ISDS error */
90 /* libisds options */
93 Default value is true. */
95 Default value depends on cryptographic
96 library. */
98 Default value depends on cryptographic
99 library. */
101 Default value depends on cryptographic
102 library. */
104 Default value is false. */
107 /* TLS libisds options */
112 ITLS_CRL_FILE /* char *: File name with CRL in PEM format */
115 /* Cryptographic material encoding */
119 PKI_FORMAT_ENG /* Stored in crypto engine */
122 /* Public key crypto material to authenticate client */
125 (where key is stored). Use NULL for no engine */
128 nickname in case of NSS as curl back-end,
129 or key slot identifier inside crypto engine.
130 Some crypto engines can pair certificate with
131 key automatically (NULL value) */
134 in case of used engine */
136 decrypting private key, or engine PIN.
137 Use NULL for no pass-phrase or question by
138 engine. */
139 };
141 /* One-time password authentication method */
144 OTP_TIME /* Time-based OTP method */
147 /* One-time password authentication resolution */
153 (brute force attack detected) */
155 ???: OTP or regular password
156 expired? */
158 at this rate (minimal delay
159 depends on TOTP window setting) */
161 access requested URI */
163 ISDS */
165 Retry later. */
168 /* One-time password to authenticate client */
170 /* Input members */
173 if you do not know it yet (e.g. in case
174 of first phase of time-based OTP to
175 request new code from ISDS.) */
176 /* Output members */
178 authentication attempt. */
179 };
181 /* Mobile key authentication resolution. */
188 MEP_RESOLUTION_ACK_EXPIRED /* Acknowledgement request expired. */
191 /* Mobile key context to authenticate client */
193 /* Input members. */
195 displayed in the mobile key authentication
196 application to provide the user brief
197 information about which application is
198 requiring access to the data box. */
199 /* Intermediate members. */
201 /* Output members. */
203 authentication attempt. */
204 };
206 /* Box type */
209 isds_find_box_by_fulltext(). */
211 sent by ISDS. */
230 /* Box status from point of view of accessibility */
240 /* User permissions from point of view of ISDS.
241 * Instances can be bitmaps of any discrete values. */
244 dmPersonalDelivery == false */
246 dmPersonalDelivery == true */
248 can download outgoing (sent) messages */
250 post and delivery */
253 permitted users and theirs
254 permissions) */
256 storage (does not exists since
257 2012-05) */
259 storage */
262 /* Message status */
267 infected document has been removed */
269 (dmDeliveryTime stored) */
271 dmAcceptanceTime stored */
273 user explicit request),
274 dmAcceptanceTime stored */
277 (e.g. recipient box has been made
278 inaccessible meantime) */
283 values */
285 /* Hash algorithm types */
287 HASH_ALGORITHM_MD5,
288 HASH_ALGORITHM_SHA_1,
289 HASH_ALGORITHM_SHA_224,
290 HASH_ALGORITHM_SHA_256,
291 HASH_ALGORITHM_SHA_384,
292 HASH_ALGORITHM_SHA_512,
295 /* Buffer storage strategy.
296 * How function should embed application provided buffer into raw element of
297 * output structure. */
301 BUFFER_MOVE /* Just copy pointer.
302 But leave deallocation to isds_*_free(). */
305 /* Hash value storage */
310 };
312 /* Name of person */
318 };
320 /* Date and place of birth */
323 only tm_year, tm_mon and tm_mday carry sane
324 value */
328 };
330 /* Post address */
340 };
342 /* Data about box and his owner.
343 * NULL pointer means undefined value */
356 provider (OVM, PO, maybe PFO)
357 [Max. 20 chars] */
360 [Max. 5 chars] */
362 long int because xsd:integer
363 TODO: enum? */
366 messages from anybody */
367 };
369 /* User type */
378 USERTYPE_GUARDIAN /* Legal guardian */
381 /* Data about user.
382 * NULL pointer means undefined value */
390 only tm_year, tm_mon and tm_mday carry sane
391 value */
394 [Max. 100 chars] */
399 Implicit value is "CZ"; Optional. */
401 };
403 /* Message event type */
407 by recipient action */
409 timed out, considered as accepted */
411 thus message is undeliverable */
413 commercial message */
415 sent by sender */
419 has logged in */
421 certificate has logged in */
422 EVENT_UNDELIVERED_AV_CHECK /* An attachment didn't pass the antivirus
423 check, message has not been delivered */
426 /* Message event
427 * All members are optional as specification states so. */
432 generated by ISDS (Czech) */
433 };
435 /* Message envelope
436 * Be ware that the string length constraints are forced only on output
437 * members transmitted to ISDS. The other direction (downloaded from ISDS)
438 * can break these rules. It should not happen, but nobody knows how much
439 * incompatible new version of ISDS protocol will be. This is the gold
440 * Internet rule: be strict on what you put, be tolerant on what you get. */
442 /* Following members apply to incoming messages only: */
444 Maximal length is 20 characters. */
446 Special value "aaaaaaa" means sent by
447 ISDS.
448 Maximal length is 7 characters. */
450 Maximal length is 100 characters. */
452 Maximal length is 100 characters. */
454 TODO: isds_DbType ? */
456 Maximal length is 100 characters. */
458 Maximal length is 100 characters. */
461 /* Following members are assigned by ISDS in different phases of message
462 * life cycle. */
464 incoming/outgoing messages */
467 kilobytes (rounded). */
469 NULL, if message has not been
470 delivered yet */
472 by an user. NULL if message has not
473 been accepted yet. */
475 This is hash of isds:dmDM subtree. */
479 List of isds_event's. */
482 /* Following members apply to both outgoing and incoming messages: */
484 Optional. */
486 Optional. */
488 Maximal length is 7 characters. */
490 string; Optional. */
492 number; Optional. */
494 Optional. */
496 Maximal length is 255 characters. */
498 Maximal length is 50 characters. */
500 Optional. Maximal length is 50 chars. */
502 Maximal length is 50 characters. */
504 Optional. Maximal length is 50 chars. */
506 /* Act addressing in Czech Republic:
507 * Point (Paragraph) § Section Law/Year Coll. */
511 Czech: paragraf */
513 Czech: odstavec */
515 Czech: písmeno */
518 privileges can read this message */
520 I.e. Even if recipient did not read this
521 message, message is considered as
522 delivered after (currently) 10 days.
523 This is delivery through fiction.
524 Applies only to OVM dbType sender. */
526 government message):
527 Input values (when sending a message):
528 "I" is commercial message offering
529 paying the response (initiatory
530 message);
531 it's necessary to define
532 dmSenderRefNumber
533 "K" is commercial message paid by sender
534 if this message
535 "O" is commercial response paid by
536 sender of initiatory message; it's
537 necessary to copy value from
538 dmSenderRefNumber of initiatory
539 message to dmRecipientRefNumber
540 of this message
541 "V" is noncommercial government message
542 Default value while sending is undefined
543 which has the same meaning as "V".
544 Output values (when retrieving
545 a message):
546 "A" is subsidized initiatory commercial
547 message which can pay a response
548 "B" is subsidized initiatory commercial
549 message which has already paid the
550 response
551 "C" is subsidized initiatory commercial
552 message where the response offer has
553 expired
554 "D" is externally subsidized commercial
555 messsage
556 "E" is commercial message prepaid by
557 a stamp
558 "G" is commerical message paid by
559 a sponsor
560 "I"
561 "K"
562 "O"
563 "V"
564 "X" is initiatory commercial message
565 where the response offer has expired
566 "Y" initiatory commercial message which
567 has already paid the response
568 "Z" is limitedly subsidized commercial
569 message
570 Length: Exactly 1 UTF-8 character if
571 defined; */
573 /* Following members apply to outgoing messages only: */
575 Non-OVM dbType boxes that has
576 dbEffectiveOVM == true MUST select
577 between true (OVM mode) and
578 false (non-OVM mode).
579 Optional; Implicit value is true. */
581 be available to recipient by
582 isds_get_message_sender(). Sender type
583 will be always available.
584 Optional; Default value is false. */
585 };
588 /* Document type from point of hierarchy */
593 FILEMETATYPE_META /* XML document for ESS (electronic
594 document information system) purposes */
597 /* Document */
600 False if document is ISDS binary
601 document. */
603 document content. This is pointer to
604 first node of the document in
605 isds_message.xml tree. Use `children'
606 and `next' members to iterate the
607 document.
608 It will be NULL if document is empty.
609 Valid only if is_xml is true. */
611 The encoding and interpretation depends
612 on dmMimeType.
613 Valid only if is_xml is false. */
615 Valid only if is_xml is false. */
620 Optional. */
622 (dmFileGuid); Optional. */
624 Mandatory. */
626 Defines how to interpret XML document;
627 Optional. */
628 };
630 /* Raw message representation content type.
631 * This is necessary to distinguish between different representations without
632 * expensive repeated detection.
633 * Infix explanation:
634 * PLAIN_SIGNED data are XML with namespace mangled to signed alternative
635 * CMS_SIGNED data are XML with signed namespace encapsulated in CMS */
637 RAWTYPE_INCOMING_MESSAGE,
638 RAWTYPE_PLAIN_SIGNED_INCOMING_MESSAGE,
639 RAWTYPE_CMS_SIGNED_INCOMING_MESSAGE,
640 RAWTYPE_PLAIN_SIGNED_OUTGOING_MESSAGE,
641 RAWTYPE_CMS_SIGNED_OUTGOING_MESSAGE,
642 RAWTYPE_DELIVERYINFO,
643 RAWTYPE_PLAIN_SIGNED_DELIVERYINFO,
644 RAWTYPE_CMS_SIGNED_DELIVERYINFO
647 /* Message */
650 from the ISDS. You can use it to store
651 local copy. This is binary buffer. */
654 Meaningful only with non-NULL raw
655 member */
657 message XML documents.
658 Can be NULL. May be freed AFTER deallocating
659 documents member structure. */
662 Valid message must contain exactly one
663 document of type FILEMETATYPE_MAIN and
664 can contain any number of other type
665 documents. Total size of documents
666 must not exceed 20 MB. */
667 };
669 /* Message copy recipient and assigned message ID */
671 /* Input members defined by application */
673 Maximal length is 7 characters. */
675 string; Optional. */
677 number; Optional. */
679 Optional. */
681 /* Output members returned from ISDS */
684 Optional. */
686 for error == IE_SUCCESS */
687 };
689 /* Message state change event */
694 };
696 /* How outgoing commercial message gets paid */
703 PAYMENT_SPONSOR_EXTERNAL /* Undocomented */
706 /* Permission to send commercial message */
710 NULL means to anybody. */
713 NULL means indefinitivly. */
715 on this permission;
716 NULL means unlimited. */
718 message. Meaningful only with type
719 PAYMENT_RESPONSE. */
720 };
722 /* Type of credit change event */
727 a commerical message */
729 a long-term storage */
730 ISDS_CREDIT_EXPIRED /* Credit has expired */
733 /* Data specific for ISDS_CREDIT_CHARGED isds_credit_event_type */
736 NULL-terminated string. */
737 };
739 /* Data specific for ISDS_CREDIT_DISCHARGED isds_credit_event_type */
742 NULL-terminated string. */
743 };
745 /* Data specific for ISDS_CREDIT_MESSAGE_SENT isds_credit_event_type */
749 };
751 /* Data specific for ISDS_CREDIT_STORAGE_SET isds_credit_event_type */
754 a message. */
756 date. */
759 The unit is a message. */
761 tm_mon, and tm_mday carry sane value. */
764 change; Optional. */
765 };
767 /* Event about change of credit for sending commercial services */
769 /* Common fields */
772 this event. The unit is 1/100 CZK. */
774 The unit is 1/100 CZK. */
777 /* Details specific for the type */
780 /* ISDS_CREDIT_CHARGED */
782 /* ISDS_CREDIT_DISCHAGED */
784 /* ISDS_CREDIT_MESSAGE_SENT */
786 /* ISDS_CREDIT_STORAGE_SET */
788 };
790 /* General linked list */
793 or NULL if current is last */
796 Use NULL to have static data member. */
797 };
799 /* External box approval */
802 approved out of ISDS */
804 };
806 /* Message sender type.
807 * Similar but not equivalent to isds_UserType. */
814 information system) */
818 SENDERTYPE_GUARDIAN /* Legal guardian */
821 /* Digital delivery of credentials */
823 /* Input members */
825 notification with link to service where
826 user can get know his new credentials */
827 /* Output members */
829 the web server to view his new
830 credentials. */
832 changed up on a call. */
833 };
835 /* Box attribute to search while performing full-text search */
838 box id */
841 FULLTEXT_BOX_ID /* search in box ID */
844 /* A box matching full-text search */
850 field string. Point to first
851 characters of a matched query
852 word. */
854 field string. Point after last
855 characters of a matched query
856 word. */
859 field string. Point to first
860 characters of a matched query
861 word. */
863 field string. Point after last
864 characters of a matched query
865 word. */
868 only tm_year, tm_mon and tm_mday carry sane
869 value */
873 messages into this box */
875 into this box */
876 };
878 /* A box state valid in the time range */
883 inaccessible; use isds_DbState enum to
884 identify some states. */
885 };
887 /* Initialize ISDS library.
888 * Global function, must be called before other functions.
889 * If it fails you can not use ISDS library and must call isds_cleanup() to
890 * free partially initialized global variables. */
893 /* Deinitialize ISDS library.
894 * Global function, must be called as last library function. */
897 /* Return version string of this library. Version of dependencies can be
898 * embedded. Do no try to parse it. You must free it. */
901 /* Create ISDS context.
902 * Each context can be used for different sessions to (possibly) different
903 * ISDS server with different credentials.
904 * Returns new context, or NULL */
907 /* Destroy ISDS context and free memory.
908 * @context will be NULLed on success. */
911 /* Return long message text produced by library function, e.g. detailed error
912 * message. Returned pointer is only valid until new library function is
913 * called for the same context. Could be NULL, especially if NULL context is
914 * supplied. Return string is locale encoded. */
917 /* Set logging up.
918 * @facilities is bit mask of isds_log_facility values,
919 * @level is verbosity level. */
923 /* Function provided by application libisds will call to pass log message.
924 * The message is usually locale encoded, but raw strings (UTF-8 usually) can
925 * occur when logging raw communication with ISDS servers. Infixed zero byte
926 * is not excluded, but should not present. Use @length argument to get real
927 * length of the message.
928 * TODO: We will try to fix the encoding issue
929 * @facility is log message class
930 * @level is log message severity
931 * @message is string with zero byte terminator. This can be any arbitrary
932 * chunk of a sentence with or without new line, a sentence can be split
933 * into more messages. However it should not happen. If you discover message
934 * without new line, report it as a bug.
935 * @length is size of @message string in bytes excluding trailing zero
936 * @data is pointer that will be passed unchanged to this function at run-time
937 * */
942 /* Register callback function libisds calls when new global log message is
943 * produced by library. Library logs to stderr by default.
944 * @callback is function provided by application libisds will call. See type
945 * definition for @callback argument explanation. Pass NULL to revert logging to
946 * default behaviour.
947 * @data is application specific data @callback gets as last argument */
950 /* Set timeout in milliseconds for each network job like connecting to server
951 * or sending message. Use 0 to disable timeout limits. */
955 /* Function provided by application libisds will call with
956 * following five arguments. Value zero of any argument means the value is
957 * unknown.
958 * @upload_total is expected total upload,
959 * @upload_current is cumulative current upload progress
960 * @dowload_total is expected total download
961 * @download_current is cumulative current download progress
962 * @data is pointer that will be passed unchanged to this function at run-time
963 * @return 0 to continue HTTP transfer, or non-zero to abort transfer */
969 /* Register callback function libisds calls periodically during HTTP data
970 * transfer.
971 * @context is session context
972 * @callback is function provided by application libisds will call. See type
973 * definition for @callback argument explanation.
974 * @data is application specific data @callback gets as last argument */
978 /* Change context settings.
979 * @context is context which setting will be applied to
980 * @option is name of option. It determines the type of last argument. See
981 * isds_option definition for more info.
982 * @... is value of new setting. Type is determined by @option
983 * */
985 ...);
987 /* Connect and log into ISDS server.
988 * All required arguments will be copied, you do not have to keep them after
989 * that.
990 * ISDS supports six different authentication methods. Exact method is
991 * selected on @username, @password, @pki_credentials, and @otp arguments:
992 * - If @pki_credentials == NULL, @username and @password must be supplied
993 * and then
994 * - If @otp == NULL, simple authentication by username and password will
995 * be proceeded.
996 * - If @otp != NULL, authentication by username and password and OTP
997 * will be used.
998 * - If @pki_credentials != NULL, then
999 * - If @username == NULL, only certificate will be used
1000 * - If @username != NULL, then
1001 * - If @password == NULL, then certificate will be used and
1002 * @username shifts meaning to box ID. This is used for hosted
1003 * services.
1004 * - Otherwise all three arguments will be used.
1005 * Please note, that different cases require different certificate type
1006 * (system qualified one or commercial non qualified one). This library
1007 * does not check such political issues. Please see ISDS Specification
1008 * for more details.
1009 * @url is base address of ISDS web service. Pass extern isds_locator
1010 * variable to use production ISDS instance without client certificate
1011 * authentication (or extern isds_cert_locator with client certificate
1012 * authentication or extern isds_otp_locators with OTP authentication).
1013 * Passing NULL has the same effect, autoselection between isds_locator,
1014 * isds_cert_locator, and isds_otp_locator is performed in addition. You can
1015 * pass extern isds_testing_locator (or isds_cert_testing_locator or
1016 * isds_otp_testing_locator) variable to select testing instance.
1017 * @username is user name of ISDS user or box ID
1018 * @password is user's secret password
1019 * @pki_credentials defines public key cryptographic material to use in client
1020 * authentication.
1021 * @otp selects one-time password authentication method to use, defines OTP
1022 * code (if known) and returns fine grade resolution of OTP procedure.
1023 * @mk selects mobile key authentication method to use, specifies the
1024 * communication code.
1025 * @return:
1026 * IE_SUCCESS if authentication succeeds
1027 * IE_NOT_LOGGED_IN if authentication fails. If OTP authentication has been
1028 * requested, fine grade reason will be set into @otp->resolution. Error
1029 * message from server can be obtained by isds_long_message() call.
1030 * IE_PARTIAL_SUCCESS if time-based OTP authentication has been requested and
1031 * server has sent OTP code through side channel. Application is expected to
1032 * fill the code into @otp->otp_code, keep other arguments unchanged, and retry
1033 * this call to complete second phase of TOTP authentication;
1034 * or other appropriate error. */
1040 /* Connect and log into ISDS server using the MEP login method.
1041 * All arguments are copied, you don't have to keep them after successful
1042 * return.
1043 * @url is base address of ISDS web service. Pass extern isds_mep_locator to use
1044 * the production ISDS environment (pass extern isds_mep_testing_locator to
1045 * access the testing environment). Passing null causes the production
1046 * environment locator to be used.
1047 * @username is the username of ISDS user or box ID
1048 * @code is the communication code. The code is generated when enabling
1049 * the mobile key authentication and can be found in the web-based portal
1050 * of the data-box service.
1051 * @return:
1052 * IE_SUCCESS if authentication succeeds
1053 * IE_NOT_LOGGED_IN if authentication fails
1054 * IE_PARTIAL_SUCCESS if MEP authentication has been requested, fine-grade
1055 * resolution is returned via @mep->resolution, keep arguments unchanged and
1056 * repeat the function call as long as IE_PARTIAL_SUCCESS is being returned;
1057 * or other appropriate error. */
1061 /* Log out from ISDS server and close connection. */
1064 /* Verify connection to ISDS is alive and server is responding.
1065 * Send dummy request to ISDS and expect dummy response. */
1068 /* Get data about logged in user and his box.
1069 * @context is session context
1070 * @db_owner_info is reallocated box owner description. It will be freed on
1071 * error.
1072 * @return error code from lower layer, context message will be set up
1073 * appropriately. */
1077 /* Get data about logged in user. */
1081 /* Get expiration time of current password
1082 * @context is session context
1083 * @expiration is automatically reallocated time when password expires. If
1084 * password expiration is disabled, NULL will be returned. In case of error
1085 * it will be nulled too. */
1089 /* Change user password in ISDS.
1090 * User must supply old password, new password will takes effect after some
1091 * time, current session can continue. Password must fulfill some constraints.
1092 * @context is session context
1093 * @old_password is current password.
1094 * @new_password is requested new password
1095 * @otp auxiliary data required if one-time password authentication is in use,
1096 * defines OTP code (if known) and returns fine grade resolution of OTP
1097 * procedure. Pass NULL, if one-time password authentication is not needed.
1098 * Please note the @otp argument must match OTP method used at log-in time. See
1099 * isds_login() function for more details.
1100 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1101 * NULL, if you don't care.
1102 * @return IE_SUCCESS, if password has been changed. Or returns appropriate
1103 * error code. It can return IE_PARTIAL_SUCCESS if OTP is in use and server is
1104 * awaiting OTP code that has been delivered by side channel to the user. */
1109 /* Create new box.
1110 * @context is session context
1111 * @box is box description to create including single primary user (in case of
1112 * FO box type). aifoIsds, address->adCode, address->adDistrict members are
1113 * ignored. It outputs box ID assigned by ISDS in dbID element.
1114 * @users is list of struct isds_DbUserInfo (primary users in case of non-FO
1115 * box, or contact address of PFO box owner)
1116 * @former_names is optional former name of box owner. Pass NULL if you don't care.
1117 * @upper_box_id is optional ID of supper box if currently created box is
1118 * subordinated.
1119 * @ceo_label is optional title of OVM box owner (e.g. mayor)
1120 * @credentials_delivery is NULL if new password should be delivered off-line
1121 * to box owner. It is valid pointer if owner should obtain new password on-line
1122 * on dedicated web server. Then input @credentials_delivery.email value is
1123 * his e-mail address he must provide to dedicated web server together
1124 * with output reallocated @credentials_delivery.token member. Output
1125 * member @credentials_delivery.new_user_name is unused up on this call.
1126 * @approval is optional external approval of box manipulation
1127 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1128 * NULL, if you don't care.*/
1136 /* Notify ISDS about new PFO entity.
1137 * This function has no real effect.
1138 * @context is session context
1139 * @box is PFO description including single primary user. aifoIsds,
1140 * address->adCode, address->adDistrict members are ignored.
1141 * @users is list of struct isds_DbUserInfo (contact address of PFO box owner)
1142 * @former_names is optional undocumented string. Pass NULL if you don't care.
1143 * @upper_box_id is optional ID of supper box if currently created box is
1144 * subordinated.
1145 * @ceo_label is optional title of OVM box owner (e.g. mayor)
1146 * @approval is optional external approval of box manipulation
1147 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1148 * NULL, if you don't care.*/
1155 /* Remove given box permanently.
1156 * @context is session context
1157 * @box is box description to delete. aifoIsds, address->adCode,
1158 * address->adDistrict members are ignored.
1159 * @since is date of box owner cancellation. Only tm_year, tm_mon and tm_mday
1160 * carry sane value.
1161 * @approval is optional external approval of box manipulation
1162 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1163 * NULL, if you don't care.*/
1168 /* Undocumented function.
1169 * @context is session context
1170 * @box is box description to delete. aifoIsds, address->adCode,
1171 * address->adDistrict members are ignored.
1172 * @approval is optional external approval of box manipulation
1173 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1174 * NULL, if you don't care.*/
1179 /* Update data about given box.
1180 * @context is session context
1181 * @old_box current box description. aifoIsds, address->adCode,
1182 * address->adDistrict members are ignored.
1183 * @new_box are updated data about @old_box. aifoIsds, address->adCode,
1184 * address->adDistrict members are ignored.
1185 * @approval is optional external approval of box manipulation
1186 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1187 * NULL, if you don't care.*/
1193 /* Get data about all users assigned to given box.
1194 * @context is session context
1195 * @box_id is box ID
1196 * @users is automatically reallocated list of struct isds_DbUserInfo */
1200 /* Update data about user assigned to given box.
1201 * @context is session context
1202 * @box is box identification. aifoIsds, address->adCode,
1203 * address->adDistrict members are ignored.
1204 * @old_user identifies user to update, aifo_ticket member is ignored
1205 * @new_user are updated data about @old_user, aifo_ticket member is ignored
1206 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1207 * NULL, if you don't care.*/
1214 /* Undocumented function.
1215 * @context is session context
1216 * @box_id is UTF-8 encoded box identifier
1217 * @token is UTF-8 encoded temporary password
1218 * @user_id outputs UTF-8 encoded reallocated user identifier
1219 * @password outpus UTF-8 encoded reallocated user password
1220 * Output arguments will be nulled in case of error */
1225 /* Reset credentials of user assigned to given box.
1226 * @context is session context
1227 * @box is box identification. aifoIsds, address->adCode, address->adDistrict
1228 * members are ignored.
1229 * @user identifies user to reset password, aifo_ticket member is ignored
1230 * @fee_paid is true if fee has been paid, false otherwise
1231 * @approval is optional external approval of box manipulation
1232 * @credentials_delivery is NULL if new password should be delivered off-line
1233 * to the user. It is valid pointer if user should obtain new password on-line
1234 * on dedicated web server. Then input @credentials_delivery.email value is
1235 * user's e-mail address user must provide to dedicated web server together
1236 * with @credentials_delivery.token. The output reallocated token user needs
1237 * to use to authorize on the web server to view his new password. Output
1238 * reallocated @credentials_delivery.new_user_name is user's log-in name that
1239 * ISDS changed up on this call. (No reason why server could change the name
1240 * is known now.)
1241 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1242 * NULL, if you don't care.*/
1250 /* Assign new user to given box.
1251 * @context is session context
1252 * @box is box identification. aifoIsds, address->adCode, address->adDistrict
1253 * members are ignored.
1254 * @user defines new user to add
1255 * @credentials_delivery is NULL if new user's password should be delivered
1256 * off-line to the user. It is valid pointer if user should obtain new
1257 * password on-line on dedicated web server. Then input
1258 * @credentials_delivery.email value is user's e-mail address user must
1259 * provide to dedicated web server together with @credentials_delivery.token.
1260 * The output reallocated token user needs to use to authorize on the web
1261 * server to view his new password. Output reallocated
1262 * @credentials_delivery.new_user_name is user's log-in name that ISDS
1263 * assingned up on this call.
1264 * @approval is optional external approval of box manipulation
1265 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1266 * NULL, if you don't care.*/
1272 /* Remove user assigned to given box.
1273 * @context is session context
1274 * @box is box identification. aifoIsds, address->adCode, address->adDistrict
1275 * members are ignored.
1276 * @user identifies user to remove, aifo_ticket member is ignored
1277 * @approval is optional external approval of box manipulation
1278 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1279 * NULL, if you don't care.*/
1284 /* Get list of boxes in ZIP archive.
1285 * @context is session context
1286 * @list_identifier is UTF-8 encoded string identifying boxes of interrest.
1287 * System recognizes following values currently: ALL (all boxes), UPG
1288 * (effectively OVM boxes), POA (active boxes allowing receiving commercial
1289 * messages), OVM (OVM gross type boxes), OPN (boxes allowing receiving
1290 * commercial messages). This argument is a string because specification
1291 * states new values can appear in the future. Not all list types are
1292 * available to all users.
1293 * @buffer is automatically reallocated memory to store the list of boxes. The
1294 * list is zipped CSV file.
1295 * @buffer_length is size of @buffer data in bytes.
1296 * In case of error @buffer will be freed and @buffer_length will be
1297 * undefined.*/
1301 /* Find boxes suiting given criteria.
1302 * @context is ISDS session context.
1303 * @criteria is filter. You should fill in at least some members. aifoIsds,
1304 * address->adCode, address->adDistrict members are ignored.
1305 * @boxes is automatically reallocated list of isds_DbOwnerInfo structures,
1306 * possibly empty. Input NULL or valid old structure.
1307 * @return:
1308 * IE_SUCCESS if search succeeded, @boxes contains useful data
1309 * IE_NOEXIST if no such box exists, @boxes will be NULL
1310 * IE_2BIG if too much boxes exist and server truncated the results, @boxes
1311 * contains still valid data
1312 * other code if something bad happens. @boxes will be NULL. */
1317 /* Find accessible FO-type boxes suiting given criteria.
1318 * @criteria is filter. You should fill in at least some members. dbType, ic,
1319 * personName->pnLastNameAtBirth, firmName, email, telNumber, identifier,
1320 * registryCode, dbState, dbEffectiveOVM, dbOpenAdressing members are ignored.
1321 * @boxes is automatically reallocated list of isds_DbOwnerInfo structures,
1322 * possibly empty. Input NULL or valid old structure.
1323 * @return:
1324 * IE_SUCCESS if search succeeded, @boxes contains useful data
1325 * IE_NOEXIST if no such box exists, @boxes will be NULL
1326 * IE_2BIG if too much boxes exist and server truncated the results, @boxes
1327 * contains still valid data
1328 * other code if something bad happens. @boxes will be NULL. */
1333 /* Find boxes matching a given full-text criteria.
1334 * @context is a session context
1335 * @query is a non-empty string which consists of words to search
1336 * @target selects box attributes to search for @query words. Pass NULL if you
1337 * don't care.
1338 * @box_type restricts searching to given box type. Value DBTYPE_SYSTEM means
1339 * to search in all box types. Value DBTYPE_OVM_MAIN means to search in
1340 * non-subsudiary OVM box types. Pass NULL to let server to use default value
1341 * which is DBTYPE_SYSTEM.
1342 * @page_size defines count of boxes to constitute a response page. It counts
1343 * from zero. Pass NULL to let server to use a default value (50 now).
1344 * @page_number defines ordinar number of the response page to return. It
1345 * counts from zero. Pass NULL to let server to use a default value (0 now).
1346 * @track_matches points to true for marking @query words found in the box
1347 * attributes. It points to false for not marking. Pass NULL to let the server
1348 * to use default value (false now).
1349 * @total_matching_boxes outputs reallocated number of all boxes matching the
1350 * query. Will be pointer to NULL if server did not provide the value.
1351 * Pass NULL if you don't care.
1352 * @current_page_beginning outputs reallocated ordinar number of the first box
1353 * in this @boxes page. It counts from zero. It will be pointer to NULL if the
1354 * server did not provide the value. Pass NULL if you don't care.
1355 * @current_page_size outputs reallocated count of boxes in the this @boxes
1356 * page. It will be pointer to NULL if the server did not provide the value.
1357 * Pass NULL if you don't care.
1358 * @last_page outputs pointer to reallocated boolean. True if this @boxes page
1359 * is the last one, false if more boxes match, NULL if the server did not
1360 * provude the value. Pass NULL if you don't care.
1361 * @boxes outputs reallocated list of isds_fulltext_result structures,
1362 * possibly empty.
1363 * @return:
1364 * IE_SUCCESS if search succeeded
1365 * IE_2BIG if @page_size is too large
1366 * other code if something bad happens; output arguments will be NULL. */
1380 /* Get status of a box.
1381 * @context is ISDS session context.
1382 * @box_id is UTF-8 encoded box identifier as zero terminated string
1383 * @box_status is return value of box status.
1384 * @return:
1385 * IE_SUCCESS if box has been found and its status retrieved
1386 * IE_NOEXIST if box is not known to ISDS server
1387 * or other appropriate error.
1388 * You can use isds_DbState to enumerate box status. However out of enum
1389 * range value can be returned too. This is feature because ISDS
1390 * specification leaves the set of values open.
1391 * Be ware that status DBSTATE_REMOVED is signaled as IE_SUCCESS. That means
1392 * the box has been deleted, but ISDS still lists its former existence. */
1396 /* Get history of box state changes.
1397 * @context is ISDS session context.
1398 * @box_id is UTF-8 encoded sender box identifier as zero terminated string.
1399 * @from_time is first second of history to return in @history. Server ignores
1400 * subseconds. NULL means time of creating the box.
1401 * @to_time is last second of history to return in @history. Server ignores
1402 * subseconds. It's valid to have the @from_time equaled to the @to_time. The
1403 * interval is closed from both ends. NULL means now.
1404 * @history outputs auto-reallocated list of pointers to struct
1405 * isds_box_state_period. Each item describes a continues time when the box
1406 * was in one state. The state is 1 for accessible box. Otherwise the box
1407 * is inaccessible (priviledged users will get exact box state as enumerated
1408 * in isds_DbState, other users 0).
1409 * @return:
1410 * IE_SUCCESS if the history has been obtained correctly,
1411 * or other appropriate error. Please note that server allows to retrieve
1412 * the history only to some users. */
1418 /* Get list of permissions to send commercial messages.
1419 * @context is ISDS session context.
1420 * @box_id is UTF-8 encoded sender box identifier as zero terminated string
1421 * @permissions is a reallocated list of permissions (struct
1422 * isds_commercial_permission*) to send commercial messages from @box_id. The
1423 * order of permissions is significant as the server applies the permissions
1424 * and associated pre-paid credits in the order. Empty list means no
1425 * permission.
1426 * @return:
1427 * IE_SUCCESS if the list has been obtained correctly,
1428 * or other appropriate error. */
1432 /* Get details about credit for sending pre-paid commercial messages.
1433 * @context is ISDS session context.
1434 * @box_id is UTF-8 encoded sender box identifier as zero terminated string.
1435 * @from_date is first day of credit history to return in @history. Only
1436 * tm_year, tm_mon and tm_mday carry sane value.
1437 * @to_date is last day of credit history to return in @history. Only
1438 * tm_year, tm_mon and tm_mday carry sane value.
1439 * @credit outputs current credit value into pre-allocated memory. Pass NULL
1440 * if you don't care. This and all other credit values are integers in
1441 * hundredths of Czech Crowns.
1442 * @email outputs notification e-mail address where notifications about credit
1443 * are sent. This is automatically reallocated string. Pass NULL if you don't
1444 * care. It can return NULL if no address is defined.
1445 * @history outputs auto-reallocated list of pointers to struct
1446 * isds_credit_event. Events in closed interval @from_time to @to_time are
1447 * returned. Pass NULL @to_time and @from_time if you don't care. The events
1448 * are sorted by time.
1449 * @return:
1450 * IE_SUCCESS if the credit details have been obtained correctly,
1451 * or other appropriate error. Please note that server allows to retrieve
1452 * only limited history of events. */
1458 /* Switch box into state where box can receive commercial messages (off by
1459 * default)
1460 * @context is ISDS session context.
1461 * @box_id is UTF-8 encoded box identifier as zero terminated string
1462 * @allow is true for enable, false for disable commercial messages income
1463 * @approval is optional external approval of box manipulation
1464 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1465 * NULL, if you don't care. */
1470 /* Switch box into / out of state where non-OVM box can act as OVM (e.g. force
1471 * message acceptance). This is just a box permission. Sender must apply
1472 * such role by sending each message.
1473 * @context is ISDS session context.
1474 * @box_id is UTF-8 encoded box identifier as zero terminated string
1475 * @allow is true for enable, false for disable OVM role permission
1476 * @approval is optional external approval of box manipulation
1477 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1478 * NULL, if you don't care. */
1483 /* Switch box accessibility state on request of box owner.
1484 * Despite the name, owner must do the request off-line. This function is
1485 * designed for such off-line meeting points (e.g. Czech POINT).
1486 * @context is ISDS session context.
1487 * @box identifies box to switch accessibility state. aifoIsds,
1488 * address->adCode, address->adDistrict members are ignored.
1489 * @allow is true for making accessible, false to disallow access.
1490 * @approval is optional external approval of box manipulation
1491 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1492 * NULL, if you don't care. */
1498 /* Disable box accessibility on law enforcement (e.g. by prison) since exact
1499 * date.
1500 * @context is ISDS session context.
1501 * @box identifies box to switch accessibility state. aifoIsds,
1502 * address->adCode, address->adDistrict members are ignored.
1503 * @since is date since accessibility has been denied. This can be past too.
1504 * Only tm_year, tm_mon and tm_mday carry sane value.
1505 * @approval is optional external approval of box manipulation
1506 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1507 * NULL, if you don't care. */
1513 /* Send a message via ISDS to a recipient
1514 * @context is session context
1515 * @outgoing_message is message to send; Some members are mandatory (like
1516 * dbIDRecipient), some are optional and some are irrelevant (especially data
1517 * about sender). Included pointer to isds_list documents must contain at
1518 * least one document of FILEMETATYPE_MAIN. This is read-write structure, some
1519 * members will be filled with valid data from ISDS. Exact list of write
1520 * members is subject to change. Currently dmID is changed.
1521 * @return ISDS_SUCCESS, or other error code if something goes wrong. */
1525 /* Send a message via ISDS to a multiple recipients
1526 * @context is session context
1527 * @outgoing_message is message to send; Some members are mandatory,
1528 * some are optional and some are irrelevant (especially data
1529 * about sender). Data about recipient will be substituted by ISDS from
1530 * @copies. Included pointer to isds_list documents must
1531 * contain at least one document of FILEMETATYPE_MAIN.
1532 * @copies is list of isds_message_copy structures addressing all desired
1533 * recipients. This is read-write structure, some members will be filled with
1534 * valid data from ISDS (message IDs, error codes, error descriptions).
1535 * @return
1536 * ISDS_SUCCESS if all messages have been sent
1537 * ISDS_PARTIAL_SUCCESS if sending of some messages has failed (failed and
1538 * succeeded messages can be identified by copies->data->error),
1539 * or other error code if something other goes wrong. */
1544 /* Get list of outgoing (already sent) messages.
1545 * Any criterion argument can be NULL, if you don't care about it.
1546 * @context is session context. Must not be NULL.
1547 * @from_time is minimal time and date of message sending inclusive.
1548 * @to_time is maximal time and date of message sending inclusive
1549 * @dmSenderOrgUnitNum is the same as isds_envelope.dmSenderOrgUnitNum
1550 * @status_filter is bit field of isds_message_status values. Use special
1551 * value MESSAGESTATE_ANY to signal you don't care. (It's defined as union of
1552 * all values, you can use bit-wise arithmetic if you want.)
1553 * @offset is index of first message we are interested in. First message is 1.
1554 * Set to 0 (or 1) if you don't care.
1555 * @number is maximal length of list you want to get as input value, outputs
1556 * number of messages matching these criteria. Can be NULL if you don't care
1557 * (applies to output value either).
1558 * @messages is automatically reallocated list of isds_message's. Be ware that
1559 * it returns only brief overview (envelope and some other fields) about each
1560 * message, not the complete message. FIXME: Specify exact fields.
1561 * The list is sorted by delivery time in ascending order.
1562 * Use NULL if you don't care about the meta data (useful if you want to know
1563 * only the @number). If you provide &NULL, list will be allocated on heap,
1564 * if you provide pointer to non-NULL, list will be freed automatically at
1565 * first. Also in case of error the list will be NULLed.
1566 * @return IE_SUCCESS or appropriate error code. */
1573 /* Get list of incoming (addressed to you) messages.
1574 * Any criterion argument can be NULL, if you don't care about it.
1575 * @context is session context. Must not be NULL.
1576 * @from_time is minimal time and date of message sending inclusive.
1577 * @to_time is maximal time and date of message sending inclusive
1578 * @dmRecipientOrgUnitNum is the same as isds_envelope.dmRecipientOrgUnitNum
1579 * @status_filter is bit field of isds_message_status values. Use special
1580 * value MESSAGESTATE_ANY to signal you don't care. (It's defined as union of
1581 * all values, you can use bit-wise arithmetic if you want.)
1582 * @offset is index of first message we are interested in. First message is 1.
1583 * Set to 0 (or 1) if you don't care.
1584 * @number is maximal length of list you want to get as input value, outputs
1585 * number of messages matching these criteria. Can be NULL if you don't care
1586 * (applies to output value either).
1587 * @messages is automatically reallocated list of isds_message's. Be ware that
1588 * it returns only brief overview (envelope and some other fields) about each
1589 * message, not the complete message. FIXME: Specify exact fields.
1590 * Use NULL if you don't care about the meta data (useful if you want to know
1591 * only the @number). If you provide &NULL, list will be allocated on heap,
1592 * if you provide pointer to non-NULL, list will be freed automatically at
1593 * first. Also in case of error the list will be NULLed.
1594 * @return IE_SUCCESS or appropriate error code. */
1602 /* Get list of sent message state changes.
1603 * Any criterion argument can be NULL, if you don't care about it.
1604 * @context is session context. Must not be NULL.
1605 * @from_time is minimal time and date of status changes inclusive
1606 * @to_time is maximal time and date of status changes inclusive
1607 * @changed_states is automatically reallocated list of
1608 * isds_message_status_change's. If you provide &NULL, list will be allocated
1609 * on heap, if you provide pointer to non-NULL, list will be freed
1610 * automatically at first. Also in case of error the list will be NULLed.
1611 * XXX: The list item ordering is not specified.
1612 * XXX: Server provides only `recent' changes.
1613 * @return IE_SUCCESS or appropriate error code. */
1619 /* Download incoming message envelope identified by ID.
1620 * @context is session context
1621 * @message_id is message identifier (you can get them from
1622 * isds_get_list_of_received_messages())
1623 * @message is automatically reallocated message retrieved from ISDS.
1624 * It will miss documents per se. Use isds_get_received_message(), if you are
1625 * interested in documents (content) too.
1626 * Returned hash and timestamp require documents to be verifiable. */
1630 /* Download signed delivery info-sheet of given message identified by ID.
1631 * @context is session context
1632 * @message_id is message identifier (you can get them from
1633 * isds_get_list_of_{sent,received}_messages())
1634 * @message is automatically reallocated message retrieved from ISDS.
1635 * It will miss documents per se. Use isds_get_signed_received_message(),
1636 * if you are interested in documents (content). OTOH, only this function
1637 * can get list events message has gone through. */
1641 /* Load delivery info of any format from buffer.
1642 * @context is session context
1643 * @raw_type advertises format of @buffer content. Only delivery info types
1644 * are accepted.
1645 * @buffer is DER encoded PKCS#7 structure with signed delivery info. You can
1646 * retrieve such data from message->raw after calling
1647 * isds_get_signed_delivery_info().
1648 * @length is length of buffer in bytes.
1649 * @message is automatically reallocated message parsed from @buffer.
1650 * @strategy selects how buffer will be attached into raw isds_message member.
1651 * */
1657 /* Download delivery info-sheet of given message identified by ID.
1658 * @context is session context
1659 * @message_id is message identifier (you can get them from
1660 * isds_get_list_of_{sent,received}_messages())
1661 * @message is automatically reallocated message retrieved from ISDS.
1662 * It will miss documents per se. Use isds_get_received_message(), if you are
1663 * interested in documents (content). OTOH, only this function can get list
1664 * of events message has gone through. */
1668 /* Download incoming message identified by ID.
1669 * @context is session context
1670 * @message_id is message identifier (you can get them from
1671 * isds_get_list_of_received_messages())
1672 * @message is automatically reallocated message retrieved from ISDS */
1676 /* Load message of any type from buffer.
1677 * @context is session context
1678 * @raw_type defines content type of @buffer. Only message types are allowed.
1679 * @buffer is message raw representation. Format (CMS, plain signed,
1680 * message direction) is defined in @raw_type. You can retrieve such data
1681 * from message->raw after calling isds_get_[signed]{received,sent}_message().
1682 * @length is length of buffer in bytes.
1683 * @message is automatically reallocated message parsed from @buffer.
1684 * @strategy selects how buffer will be attached into raw isds_message member.
1685 * */
1690 /* Determine type of raw message or delivery info according some heuristics.
1691 * It does not validate the raw blob.
1692 * @context is session context
1693 * @raw_type returns content type of @buffer. Valid only if exit code of this
1694 * function is IE_SUCCESS. The pointer must be valid. This is no automatically
1695 * reallocated memory.
1696 * @buffer is message raw representation.
1697 * @length is length of buffer in bytes. */
1701 /* Download signed incoming message identified by ID.
1702 * @context is session context
1703 * @message_id is message identifier (you can get them from
1704 * isds_get_list_of_received_messages())
1705 * @message is automatically reallocated message retrieved from ISDS. The raw
1706 * member will be filled with PKCS#7 structure in DER format. */
1710 /* Download signed outgoing message identified by ID.
1711 * @context is session context
1712 * @message_id is message identifier (you can get them from
1713 * isds_get_list_of_sent_messages())
1714 * @message is automatically reallocated message retrieved from ISDS. The raw
1715 * member will be filled with PKCS#7 structure in DER format. */
1719 /* Get type and name of user who sent a message identified by ID.
1720 * @context is session context
1721 * @message_id is message identifier
1722 * @sender_type is pointer to automatically allocated type of sender detected
1723 * from @raw_sender_type string. If @raw_sender_type is unknown to this
1724 * library or to the server, NULL will be returned. Pass NULL if you don't
1725 * care about it.
1726 * @raw_sender_type is automatically reallocated UTF-8 string describing
1727 * sender type or NULL if not known to server. Pass NULL if you don't care.
1728 * @sender_name is automatically reallocated UTF-8 name of user who sent the
1729 * message, or NULL if not known to ISDS. Pass NULL if you don't care. */
1734 /* Retrieve hash of message identified by ID stored in ISDS.
1735 * @context is session context
1736 * @message_id is message identifier
1737 * @hash is automatically reallocated message hash downloaded from ISDS.
1738 * Message must exist in system and must not be deleted. */
1742 /* Compute hash of message from raw representation and store it into envelope.
1743 * Original hash structure will be destroyed in envelope.
1744 * @context is session context
1745 * @message is message carrying raw XML message blob
1746 * @algorithm is desired hash algorithm to use */
1750 /* Compare two hashes.
1751 * @h1 is first hash
1752 * @h2 is another hash
1753 * @return
1754 * IE_SUCCESS if hashes equal
1755 * IE_NOTUNIQ if hashes are comparable, but they don't equal
1756 * IE_ENUM if not comparable, but both structures defined
1757 * IE_INVAL if some of the structures are undefined (NULL)
1758 * IE_ERROR if internal error occurs */
1762 /* Check message has gone through ISDS by comparing message hash stored in
1763 * ISDS and locally computed hash. You must provide message with valid raw
1764 * member (do not use isds_load_message(..., BUFFER_DONT_STORE)).
1765 * This is convenient wrapper for isds_download_message_hash(),
1766 * isds_compute_message_hash(), and isds_hash_cmp() sequence.
1767 * @context is session context
1768 * @message is message with valid raw and envelope member; envelope->hash
1769 * member will be changed during function run. Use envelope on heap only.
1770 * @return
1771 * IE_SUCCESS if message originates in ISDS
1772 * IE_NOTEQUAL if message is unknown to ISDS
1773 * other code for other errors */
1777 /* Submit CMS signed message to ISDS to verify its originality. This is
1778 * stronger form of isds_verify_message_hash() because ISDS does more checks
1779 * than simple one (potentialy old weak) hash comparison.
1780 * @context is session context
1781 * @message is memory with raw CMS signed message bit stream
1782 * @length is @message size in bytes
1783 * @return
1784 * IE_SUCCESS if message originates in ISDS
1785 * IE_NOTEQUAL if message is unknown to ISDS
1786 * other code for other errors */
1790 /* Submit CMS signed message or delivery info to ISDS to re-sign the content
1791 * including adding new CMS time stamp. Only CMS blobs without time stamp can
1792 * be re-signed.
1793 * @context is session context
1794 * @input_data is memory with raw CMS signed message or delivery info bit
1795 * stream to re-sign
1796 * @input_length is @input_data size in bytes
1797 * @output_data is pointer to auto-allocated memory where to store re-signed
1798 * input data blob. Caller must free it.
1799 * @output_data is pointer where to store @output_data size in bytes
1800 * @valid_to is pointer to auto-allocated date of time stamp expiration.
1801 * Only tm_year, tm_mon and tm_mday will be set. Pass NULL, if you don't care.
1802 * @return
1803 * IE_SUCCESS if CMS blob has been re-signed successfully
1804 * other code for other errors */
1809 /* Erase message specified by @message_id from long term storage. Other
1810 * message cannot be erased on user request.
1811 * @context is session context
1812 * @message_id is message identifier.
1813 * @incoming is true for incoming message, false for outgoing message.
1814 * @return
1815 * IE_SUCCESS if message has ben removed
1816 * IE_INVAL if message does not exist in long term storage or message
1817 * belongs to different box
1818 * TODO: IE_NOEPRM if user has no permission to erase a message */
1822 /* Mark message as read. This is a transactional commit function to acknowledge
1823 * to ISDS the message has been downloaded and processed by client properly.
1824 * @context is session context
1825 * @message_id is message identifier. */
1829 /* Mark message as received by recipient. This is applicable only to
1830 * commercial message. Use envelope->dmType message member to distinguish
1831 * commercial message from government message. Government message is
1832 * received automatically (by law), commercial message on recipient request.
1833 * @context is session context
1834 * @message_id is message identifier. */
1838 /* Send bogus request to ISDS.
1839 * Just for test purposes */
1842 /* Send document for authorized conversion into Czech POINT system.
1843 * This is public anonymous service, no log-in necessary. Special context is
1844 * used to reuse keep-a-live HTTPS connection.
1845 * @context is Czech POINT session context. DO NOT use context connected to
1846 * ISDS server. Use new context or context used by this function previously.
1847 * @document is document to convert. Only data, data_length, dmFileDescr and
1848 * is_xml members are significant. Be ware that not all document formats can be
1849 * converted (signed PDF 1.3 and higher only (2010-02 state)).
1850 * @id is reallocated identifier assigned by Czech POINT system to
1851 * your document on submit. Use is to tell it to Czech POINT officer.
1852 * @date is reallocated document submit date (submitted documents
1853 * expires after some period). Only tm_year, tm_mon and tm_mday carry sane
1854 * value. */
1859 /* Close possibly opened connection to Czech POINT document deposit.
1860 * @context is Czech POINT session context. */
1863 /* Send request for new box creation in testing ISDS instance.
1864 * It's not possible to request for a production box currently, as it
1865 * communicates via e-mail.
1866 * XXX: This function does not work either. Server complains about invalid
1867 * e-mail address.
1868 * XXX: Remove context->type hacks in isds.c and validator.c when removing
1869 * this function
1870 * @context is special session context for box creation request. DO NOT use
1871 * standard context as it could reveal your password. Use fresh new context or
1872 * context previously used by this function.
1873 * @box is box description to create including single primary user (in case of
1874 * FO box type). aifoIsds, address->adCode, address->adDistrict members are
1875 * ignored. It outputs box ID assigned by ISDS in dbID element.
1876 * @users is list of struct isds_DbUserInfo (primary users in case of non-FO
1877 * box, or contact address of PFO box owner). The email member is mandatory as
1878 * it will be used to deliver credentials.
1879 * @former_names is optional undocumented string. Pass NULL if you don't care.
1880 * @approval is optional external approval of box manipulation
1881 * @refnumber is reallocated serial number of request assigned by ISDS. Use
1882 * NULL, if you don't care.*/
1888 /* Search for document by document ID in list of documents. IDs are compared
1889 * as UTF-8 string.
1890 * @documents is list of isds_documents
1891 * @id is document identifier
1892 * @return first matching document or NULL. */
1896 /* Normalize @mime_type to be proper MIME type.
1897 * ISDS servers pass invalid MIME types (e.g. "pdf"). This function tries to
1898 * guess regular MIME type (e.g. "application/pdf").
1899 * @mime_type is UTF-8 encoded MIME type to fix
1900 * @return original @mime_type if no better interpretation exists, or
1901 * constant static UTF-8 encoded string with proper MIME type. */
1904 /* Deallocate structure isds_pki_credentials and NULL it.
1905 * Pass-phrase is discarded.
1906 * @pki credentials to to free */
1909 /* Free isds_list with all member data.
1910 * @list list to free, on return will be NULL */
1913 /* Deallocate structure isds_hash and NULL it.
1914 * @hash hash to to free */
1917 /* Deallocate structure isds_PersonName recursively and NULL it */
1920 /* Deallocate structure isds_BirthInfo recursively and NULL it */
1923 /* Deallocate structure isds_Address recursively and NULL it */
1926 /* Deallocate structure isds_DbOwnerInfo recursively and NULL it */
1929 /* Deallocate structure isds_DbUserInfo recursively and NULL it */
1932 /* Deallocate struct isds_event recursively and NULL it */
1935 /* Deallocate struct isds_envelope recursively and NULL it */
1938 /* Deallocate struct isds_document recursively and NULL it */
1941 /* Deallocate struct isds_message recursively and NULL it */
1944 /* Deallocate struct isds_message_copy recursively and NULL it */
1947 /* Deallocate struct isds_message_status_change recursively and NULL it */
1951 /* Deallocate struct isds_approval recursively and NULL it */
1954 /* Deallocate struct isds_commercial_permission recursively and NULL it */
1958 /* Deallocate struct isds_credit_event recursively and NULL it */
1961 /* Deallocate struct isds_credentials_delivery recursively and NULL it.
1962 * The email string is deallocated too. */
1966 /* Deallocate struct isds_fulltext_result recursively and NULL it */
1970 /* Deallocate struct isds_box_state_period recursively and NULL it */
1973 /* Copy structure isds_PersonName recursively */
1977 /* Copy structure isds_Address recursively */
1981 /* Copy structure isds_DbOwnerInfo recursively */
1985 /* Copy structure isds_DbUserInfo recursively */
1989 /* Copy structure isds_box_state_period recursively */
1994 }
1995 #endif
1997 #endif