implemented enforcement-report metadata
[strongswan.git] / src / libcharon / plugins / tnc_ifmap / tnc_ifmap_soap.h
index 833a748..4bf421e 100644 (file)
@@ -23,6 +23,7 @@
 
 #include <library.h>
 #include <utils/host.h>
+#include <sa/ike_sa.h>
 
 typedef struct tnc_ifmap_soap_t tnc_ifmap_soap_t;
 
@@ -48,17 +49,11 @@ struct tnc_ifmap_soap_t {
        /**
         * Publish metadata about established/deleted IKE_SAs 
         *
-        * @param ike_sa_id             unique IKE_SA id
-        * @param id                    id of remote endpoint
-        * @param is_user               TRUE if id is an EAP username
-        * @param host                  IP address of remote endpoint
+        * @param ike_sa                IKE_SA for which metadate is published
         * @param up                    TRUE if IKE_SEA is up, FALSE if down
         * @return                              TRUE if command was successful
         */
-
-       bool (*publish_ike_sa)(tnc_ifmap_soap_t *this,  u_int32_t ike_sa_id,
-                                                  identification_t *id, bool is_user,
-                                                  host_t *host, bool up);
+       bool (*publish_ike_sa)(tnc_ifmap_soap_t *this, ike_sa_t *ike_sa, bool up);
 
        /**
         * Publish PEP device-ip metadata 
@@ -66,10 +61,20 @@ struct tnc_ifmap_soap_t {
         * @param host                  IP address of local endpoint
         * @return                              TRUE if command was successful
         */
-
        bool (*publish_device_ip)(tnc_ifmap_soap_t *this, host_t *host);
 
        /**
+        * Publish enforcement-report metadata
+        *
+        * @param host                  Host to be enforced
+        * @param action                Enforcement action ("block" or "quarantine")
+        * @param reason                Enforcement reason
+        * @return                              TRUE if command was successful
+        */
+       bool (*publish_enforcement_report)(tnc_ifmap_soap_t *this, host_t *host,
+                                                                          char *action, char *reason);
+
+       /**
         * Ends an IF-MAP session
         *
         * @return                              TRUE if command was successful