qgis · May 23, 2017
diff --git a/‎python/auto_sip.blacklist
Lines changed: 0 additions & 4 deletions b/‎python/auto_sip.blacklist
Lines changed: 0 additions & 4 deletions
diff --git a/‎python/core/auth/qgsauthcertutils.sip
Lines changed: 158 additions & 127 deletions b/‎python/core/auth/qgsauthcertutils.sip
Lines changed: 158 additions & 127 deletions
diff --git a/‎python/core/auth/qgsauthconfig.sip
Lines changed: 349 additions & 170 deletions b/‎python/core/auth/qgsauthconfig.sip
Lines changed: 349 additions & 170 deletions
diff --git a/‎python/core/auth/qgsauthmanager.sip
Lines changed: 522 additions & 279 deletions b/‎python/core/auth/qgsauthmanager.sip
Lines changed: 522 additions & 279 deletions
diff --git a/‎python/core/auth/qgsauthmethod.sip
Lines changed: 120 additions & 60 deletions b/‎python/core/auth/qgsauthmethod.sip
Lines changed: 120 additions & 60 deletions
diff --git a/‎src/core/auth/qgsauthconfig.h
Lines changed: 52 additions & 0 deletions b/‎src/core/auth/qgsauthconfig.h
Lines changed: 52 additions & 0 deletions
diff --git a/‎src/core/auth/qgsauthmanager.h
Lines changed: 11 additions & 9 deletions b/‎src/core/auth/qgsauthmanager.h
Lines changed: 11 additions & 9 deletions
@@ -3,10 +3,6 @@ core/qgsexception.sip
 core/qgis.sip
 core/qgsrange.sip
 core/qgsvectorlayerfeatureiterator.sip
-core/auth/qgsauthcertutils.sip
-core/auth/qgsauthconfig.sip
-core/auth/qgsauthmanager.sip
-core/auth/qgsauthmethod.sip
 core/composer/qgsaddremoveitemcommand.sip
 core/composer/qgsgroupungroupitemscommand.sip
 core/composer/qgsaddremovemultiframecommand.sip
 
@@ -1,34 +1,47 @@
-/** \ingroup core
- * \brief Utilities for working with certificates and keys
- */
+/************************************************************************
+ * This file has been generated automatically from                      *
+ *                                                                      *
+ * src/core/auth/qgsauthcertutils.h                                     *
+ *                                                                      *
+ * Do not edit manually ! Edit header and run scripts/sipify.pl again   *
+ ************************************************************************/
+
+
+
+
+
+
+
+
 class QgsAuthCertUtils
 {
+%Docstring
+ Utilities for working with certificates and keys
+%End
+
 %TypeHeaderCode
-#include <qgsauthcertutils.h>
+#include "qgsauthcertutils.h"
 %End
   public:
-    /** Type of CA certificate source */
     enum CaCertSource
     {
-      SystemRoot = 0,
-      FromFile = 1,
-      InDatabase = 2,
-      Connection = 3
+      SystemRoot,
+      FromFile,
+      InDatabase,
+      Connection
     };
 
-    /** Type of certificate trust policy */
     enum CertTrustPolicy
     {
-      DefaultTrust = 0,
-      Trusted = 1,
-      Untrusted = 2,
-      NoPolicy = 3
+      DefaultTrust,
+      Trusted,
+      Untrusted,
+      NoPolicy
     };
 
-    /** Type of certificate usage */
     enum CertUsageType
     {
-      UndeterminedUsage = 0,
+      UndeterminedUsage,
       AnyOrUnspecifiedUsage,
       CertAuthorityUsage,
       CertIssuerUsage,
@@ -41,170 +54,188 @@ class QgsAuthCertUtils
       CRLSigningUsage
     };
 
-    /** Type of certificate key group */
     enum ConstraintGroup
     {
-      KeyUsage = 0,
-      ExtendedKeyUsage = 1
+      KeyUsage,
+      ExtendedKeyUsage
     };
 
 
-    /** SSL Protocol name strings per enum */
     static QString getSslProtocolName( QSsl::SslProtocol protocol );
+%Docstring
+SSL Protocol name strings per enum
+ :rtype: str
+%End
 
-    /** Map certificate sha1 to certificate as simple cache */
     static QMap<QString, QSslCertificate> mapDigestToCerts( const QList<QSslCertificate> &certs );
+%Docstring
+Map certificate sha1 to certificate as simple cache
+ :rtype: QMap<str, QSslCertificate>
+%End
 
-    /** Map certificates to their oraganization.
-     * @note not available in Python bindings
-     */
-    // static QMap< QString, QList<QSslCertificate> > certsGroupedByOrg( QList<QSslCertificate> certs );
 
-    /** Map SSL custom configs' certificate sha1 to custom config as simple cache
-     */
     static QMap<QString, QgsAuthConfigSslServer> mapDigestToSslConfigs( const QList<QgsAuthConfigSslServer> &configs );
+%Docstring
+ Map SSL custom configs' certificate sha1 to custom config as simple cache
+ :rtype: QMap<str, QgsAuthConfigSslServer>
+%End
 
-    /** Map SSL custom configs' certificates to their oraganization.
-     * @note not available in Python bindings
-     */
-    // static QMap< QString, QList<QgsAuthConfigSslServer> > sslConfigsGroupedByOrg( const QList<QgsAuthConfigSslServer> &configs );
 
-    /** Return list of concatenated certs from a PEM or DER formatted file */
     static QList<QSslCertificate> certsFromFile( const QString &certspath );
+%Docstring
+Return list of concatenated certs from a PEM or DER formatted file
+ :rtype: list of QSslCertificate
+%End
 
-    /** Return first cert from a PEM or DER formatted file */
     static QSslCertificate certFromFile( const QString &certpath );
+%Docstring
+Return first cert from a PEM or DER formatted file
+ :rtype: QSslCertificate
+%End
 
-    /** Return non-encrypted key from a PEM or DER formatted file
-     * @param keypath File path to private key
-     * @param keypass Passphrase for private key
-     * @param algtype QString to set with resolved algorithm type
-     */
     static QSslKey keyFromFile( const QString &keypath,
                                 const QString &keypass = QString(),
                                 QString *algtype = 0 );
+%Docstring
+ Return non-encrypted key from a PEM or DER formatted file
+ \param keypath File path to private key
+ \param keypass Passphrase for private key
+ \param algtype QString to set with resolved algorithm type
+ :rtype: QSslKey
+%End
 
-    /** Return list of concatenated certs from a PEM Base64 text block */
     static QList<QSslCertificate> certsFromString( const QString &pemtext );
+%Docstring
+Return list of concatenated certs from a PEM Base64 text block
+ :rtype: list of QSslCertificate
+%End
 
-    /** Return list of certificate, private key and algorithm (as PEM text) from file path components
-     * @param certpath File path to certificate
-     * @param keypath File path to private key
-     * @param keypass Passphrase for private key
-     * @param reencrypt Whether to re-encrypt the private key with the passphrase
-     * @return certificate, private key, key's algorithm type
-     */
     static QStringList certKeyBundleToPem( const QString &certpath,
                                            const QString &keypath,
                                            const QString &keypass = QString(),
                                            bool reencrypt = true );
+%Docstring
+ Return list of certificate, private key and algorithm (as PEM text) from file path components
+ \param certpath File path to certificate
+ \param keypath File path to private key
+ \param keypass Passphrase for private key
+ \param reencrypt Whether to re-encrypt the private key with the passphrase
+ :return: certificate, private key, key's algorithm type
+ :rtype: list of str
+%End
 
-    /** Return list of certificate, private key and algorithm (as PEM text) for a PKCS#12 bundle
-     * @param bundlepath File path to the PKCS bundle
-     * @param bundlepass Passphrase for bundle
-     * @param reencrypt Whether to re-encrypt the private key with the passphrase
-     * @return certificate, private key, key's algorithm type
-     */
     static QStringList pkcs12BundleToPem( const QString &bundlepath,
                                           const QString &bundlepass = QString(),
                                           bool reencrypt = true );
+%Docstring
+ Return list of certificate, private key and algorithm (as PEM text) for a PKCS#12 bundle
+ \param bundlepath File path to the PKCS bundle
+ \param bundlepass Passphrase for bundle
+ \param reencrypt Whether to re-encrypt the private key with the passphrase
+ :return: certificate, private key, key's algorithm type
+ :rtype: list of str
+%End
 
-    /** Write a temporary file for a PEM text of cert/key/CAs bundle component
-     * @param pemtext Component content as PEM text
-     * @param name Name of file
-     * @return File path to temporary file
-     */
     static QString pemTextToTempFile( const QString &name, const QByteArray &pemtext );
+%Docstring
+ Write a temporary file for a PEM text of cert/key/CAs bundle component
+ \param pemtext Component content as PEM text
+ \param name Name of file
+ :return: File path to temporary file
+ :rtype: str
+%End
 
-    /** Get the general name for CA source enum type
-     * @param source The enum source type for the CA
-     * @param single Whether to return singular or plural description
-     */
-    static QString getCaSourceName( QgsAuthCertUtils::CaCertSource source , bool single = false );
+    static QString getCaSourceName( QgsAuthCertUtils::CaCertSource source, bool single = false );
+%Docstring
+ Get the general name for CA source enum type
+ \param source The enum source type for the CA
+ \param single Whether to return singular or plural description
+ :rtype: str
+%End
 
-    /** Get the general name via RFC 5280 resolution */
     static QString resolvedCertName( const QSslCertificate &cert, bool issuer = false );
+%Docstring
+Get the general name via RFC 5280 resolution
+ :rtype: str
+%End
+
 
-    /** Get combined distinguished name for certificate
-     * @param qcert Qt SSL cert object
-     * @param acert QCA SSL cert object to add more info to the output
-     * @param issuer Whether to return cert's subject or issuer combined name
-     * @note not available in Python bindings
-     */
-    // static QString getCertDistinguishedName( const QSslCertificate& qcert,
-    //                                                const QCA::Certificate& acert = QCA::Certificate(),
-    //                                                bool issuer = false );
-
-    /** Get the general name for certificate trust */
     static QString getCertTrustName( QgsAuthCertUtils::CertTrustPolicy trust );
+%Docstring
+Get the general name for certificate trust
+ :rtype: str
+%End
 
-    /** Get string with colon delimiters every 2 characters */
     static QString getColonDelimited( const QString &txt );
+%Docstring
+Get string with colon delimiters every 2 characters
+ :rtype: str
+%End
+
+    static QString shaHexForCert( const QSslCertificate &cert, bool formatted = false );
+%Docstring
+ Get the sha1 hash for certificate
+ \param cert Qt SSL certificate to generate hash from
+ \param formatted Whether to colon-delimit the hash
+ :rtype: str
+%End
+
+
+
+
+
+
+
 
-    /** Get the sha1 hash for certificate
-     * @param cert Qt SSL certificate to generate hash from
-     * @param formatted Whether to colon-delimit the hash
-     */
-    static QString shaHexForCert( const QSslCertificate &cert , bool formatted = false );
-
-    /** Convert a QSslCertificate to a QCA::Certificate.
-     * @note not available in Python bindings
-     */
-    // static QCA::Certificate qtCertToQcaCert( const QSslCertificate &cert );
-
-    /** Convert a QList of QSslCertificate to a QCA::CertificateCollection.
-     * @note not available in Python bindings
-     */
-    // static QCA::CertificateCollection qtCertsToQcaCollection( const QList<QSslCertificate> &certs );
-
-    /** PKI key/cert bundle from file path, e.g. from .p12 or pfx files.
-     * @note not available in Python bindings
-     */
-    // static QCA::KeyBundle qcaKeyBundle( const QString &path, const QString &pass );
-
-    /** Certificate validity check messages per enum.
-     * @note not available in Python bindings
-     */
-    // static QString qcaValidityMessage( QCA::Validity validity );
-
-    /** Certificate signature algorithm strings per enum.
-     * @note not available in Python bindings
-     */
-    // static QString qcaSignatureAlgorithm( QCA::SignatureAlgorithm algorithm );
-
-    /** Certificate well-known constraint strings per enum.
-     * @note not available in Python bindings
-     */
-    // static QString qcaKnownConstraint( QCA::ConstraintTypeKnown constraint );
-
-    /** Certificate usage type strings per enum
-     * @note not available in Python bindings
-     */
-    static QString certificateUsageTypeString( QgsAuthCertUtils::CertUsageType usagetype );
-
-    /** Try to determine the certificates usage types */
     static QList<QgsAuthCertUtils::CertUsageType> certificateUsageTypes( const QSslCertificate &cert );
+%Docstring
+Try to determine the certificates usage types
+ :rtype: list of QgsAuthCertUtils.CertUsageType
+%End
 
-    /** Get whether a certificate is an Authority */
     static bool certificateIsAuthority( const QSslCertificate &cert );
+%Docstring
+Get whether a certificate is an Authority
+ :rtype: bool
+%End
 
-    /** Get whether a certificate can sign other certificates */
     static bool certificateIsIssuer( const QSslCertificate &cert );
+%Docstring
+Get whether a certificate can sign other certificates
+ :rtype: bool
+%End
 
-    /** Get whether a certificate is an Authority or can at least sign other certificates */
     static bool certificateIsAuthorityOrIssuer( const QSslCertificate &cert );
+%Docstring
+Get whether a certificate is an Authority or can at least sign other certificates
+ :rtype: bool
+%End
 
-    /** Get whether a certificate is probably used for a SSL server */
     static bool certificateIsSslServer( const QSslCertificate &cert );
+%Docstring
+Get whether a certificate is probably used for a SSL server
+ :rtype: bool
+%End
 
-    /** Get whether a certificate is probably used for a client identity */
     static bool certificateIsSslClient( const QSslCertificate &cert );
+%Docstring
+Get whether a certificate is probably used for a client identity
+ :rtype: bool
+%End
 
-    /** Get short strings describing an SSL error */
     static QString sslErrorEnumString( QSslError::SslError errenum );
+%Docstring
+Get short strings describing an SSL error
+ :rtype: str
+%End
+
 
-    /** Get short strings describing SSL errors.
-     * @note not available in Python bindings
-     */
-    // static QList<QPair<QSslError::SslError, QString> > sslErrorEnumStrings();
 };
+
+/************************************************************************
+ * This file has been generated automatically from                      *
+ *                                                                      *
+ * src/core/auth/qgsauthcertutils.h                                     *
+ *                                                                      *
+ * Do not edit manually ! Edit header and run scripts/sipify.pl again   *
+ ************************************************************************/
@@ -1,21 +1,29 @@
+/************************************************************************
+ * This file has been generated automatically from                      *
+ *                                                                      *
+ * src/core/auth/qgsauthmethod.h                                        *
+ *                                                                      *
+ * Do not edit manually ! Edit header and run scripts/sipify.pl again   *
+ ************************************************************************/
+
+
+
+
+
 class QgsAuthMethod : QObject
 {
-%TypeHeaderCode
-#include <qgsauthmethod.h>
+%Docstring
+ Abstract base class for authentication method plugins
 %End
 
+%TypeHeaderCode
+#include "qgsauthmethod.h"
+%End
   public:
 
-    /** Flags that represent the update points (where authentication configurations are expanded)
-     * supported by an authentication method. These equate to the 'update*()' virtual functions
-     * below, and allow for update point code to skip calling an unused update by a method, because
-     * the base virtual function will always return true, giving a false impression an update occurred.
-     * @note When adding an 'update' member function, also add the corresponding Expansion flag.
-     * @note These flags will be added to as new update points are added
-     */
     enum Expansion
     {
-      // TODO: Figure out all different authentication expansions current layer providers use
+      // TODO
       NetworkRequest,
       NetworkReply,
       DataSourceUri,
@@ -24,90 +32,142 @@ class QgsAuthMethod : QObject
     };
     typedef QFlags<QgsAuthMethod::Expansion> Expansions;
 
-    virtual ~QgsAuthMethod();
 
-    /** A non-translated short name representing the auth method */
     virtual QString key() const = 0;
+%Docstring
+A non-translated short name representing the auth method
+ :rtype: str
+%End
 
-    /** A non-translated short description representing the auth method for use in debug output and About dialog */
     virtual QString description() const = 0;
+%Docstring
+A non-translated short description representing the auth method for use in debug output and About dialog
+ :rtype: str
+%End
 
-    /** Translatable display version of the 'description()' */
     virtual QString displayDescription() const = 0;
+%Docstring
+Translatable display version of the 'description()'
+ :rtype: str
+%End
 
-    /** Increment this if method is significantly updated, allow updater code to be written for previously stored authcfg */
     int version() const;
+%Docstring
+Increment this if method is significantly updated, allow updater code to be written for previously stored authcfg
+ :rtype: int
+%End
 
-    /** Flags that represent the update points (where authentication configurations are expanded)
-     * supported by an authentication method.
-     * @note These should directly correlate to existing 'update*()' member functions
-     */
     QgsAuthMethod::Expansions supportedExpansions() const;
+%Docstring
+ Flags that represent the update points (where authentication configurations are expanded)
+ supported by an authentication method.
+.. note::
+
+   These should directly correlate to existing 'update*()' member functions
+ :rtype: QgsAuthMethod.Expansions
+%End
 
-    /** The data providers that the method supports, allowing for filtering out authcfgs that are not
-     * applicable to a given provider, or where the updating code is not currently implemented.
-     */
     QStringList supportedDataProviders() const;
+%Docstring
+ The data providers that the method supports, allowing for filtering out authcfgs that are not
+ applicable to a given provider, or where the updating code is not currently implemented.
+ :rtype: list of str
+%End
 
-    /** Update a network request with authentication components
-     * @param request The network request to update
-     * @param authcfg Authentication configuration ID
-     * @param dataprovider Textual key for a data provider, e.g. 'postgres', that allows
-     * for custom updater code specific to the provider
-     * @return Whether the update succeeded
-     */
     virtual bool updateNetworkRequest( QNetworkRequest &request, const QString &authcfg,
                                        const QString &dataprovider = QString() );
+%Docstring
+ Update a network request with authentication components
+ \param request The network request to update
+ \param authcfg Authentication configuration ID
+ \param dataprovider Textual key for a data provider, e.g. 'postgres', that allows
+ for custom updater code specific to the provider
+ :return: Whether the update succeeded
+ :rtype: bool
+%End
 
-    /** Update a network reply with authentication components
-     * @param reply The network reply object to update
-     * @param authcfg Authentication configuration ID
-     * @param dataprovider Textual key for a data provider, e.g. 'postgres', that allows
-     * for custom updater code specific to the provider
-     * @return Whether the update succeeded
-     */
     virtual bool updateNetworkReply( QNetworkReply *reply, const QString &authcfg,
                                      const QString &dataprovider = QString() );
+%Docstring
+ Update a network reply with authentication components
+ \param reply The network reply object to update
+ \param authcfg Authentication configuration ID
+ \param dataprovider Textual key for a data provider, e.g. 'postgres', that allows
+ for custom updater code specific to the provider
+ :return: Whether the update succeeded
+ :rtype: bool
+%End
 
-    /** Update data source connection items with authentication components
-     * @param connectionItems QStringlist of 'key=value' pairs, as utilized in QgsDataSourceUri::connectionInfo()
-     * @param authcfg Authentication configuration ID
-     * @param dataprovider Textual key for a data provider, e.g. 'postgres', that allows
-     * for custom updater code specific to the provider
-     * @return Whether the update succeeded
-     */
     virtual bool updateDataSourceUriItems( QStringList &connectionItems, const QString &authcfg,
                                            const QString &dataprovider = QString() );
+%Docstring
+ Update data source connection items with authentication components
+ \param connectionItems QStringlist of 'key=value' pairs, as utilized in QgsDataSourceUri.connectionInfo()
+ \param authcfg Authentication configuration ID
+ \param dataprovider Textual key for a data provider, e.g. 'postgres', that allows
+ for custom updater code specific to the provider
+ :return: Whether the update succeeded
+ :rtype: bool
+%End
 
-    /** Clear any cached configuration. Called when the QgsAuthManager deletes an authentication configuration (authcfg).
-     * @note It is highly recommended that a cache of authentication components (per requested authcfg)
-     * be implemented, to avoid excessive queries on the auth database. Such a cache could be as
-     * simple as a QHash or QMap of authcfg -> QgsAuthMethodConfig. See 'Basic' auth method plugin for example.
-     */
     virtual void clearCachedConfig( const QString &authcfg ) = 0;
+%Docstring
+ Clear any cached configuration. Called when the QgsAuthManager deletes an authentication configuration (authcfg).
+.. note::
+
+   It is highly recommended that a cache of authentication components (per requested authcfg)
+ be implemented, to avoid excessive queries on the auth database. Such a cache could be as
+ simple as a QHash or QMap of authcfg -> QgsAuthMethodConfig. See 'Basic' auth method plugin for example.
+%End
 
-    /** Update an authentication configuration in place
-     * @note Useful for updating previously stored authcfgs, when an authentication method has been significantly updated
-     */
     virtual void updateMethodConfig( QgsAuthMethodConfig &mconfig ) = 0;
+%Docstring
+ Update an authentication configuration in place
+.. note::
+
+   Useful for updating previously stored authcfgs, when an authentication method has been significantly updated
+%End
 
   protected:
-    /**
-     * Construct a default authentication method
-     * @note Non-public since this is an abstract base class
-     */
+
     explicit QgsAuthMethod();
+%Docstring
+ Construct a default authentication method
+.. note::
+
+   Non-public since this is an abstract base class
+%End
 
-    /** Tag signifying that this is an authentcation method (e.g. for use as title in message log panel output) */
     static QString authMethodTag();
+%Docstring
+Tag signifying that this is an authentcation method (e.g. for use as title in message log panel output)
+ :rtype: str
+%End
 
-    /** Set the version of the auth method (useful for future upgrading) */
     void setVersion( int version );
+%Docstring
+Set the version of the auth method (useful for future upgrading)
+%End
 
-    /** Set the support expansions (points in providers where the authentication is injected) of the auth method */
     void setExpansions( QgsAuthMethod::Expansions expansions );
-    /** Set list of data providers this auth method supports */
+%Docstring
+Set the support expansions (points in providers where the authentication is injected) of the auth method
+%End
     void setDataProviders( const QStringList &dataproviders );
+%Docstring
+Set list of data providers this auth method supports
+%End
+
 };
+QFlags<QgsAuthMethod::Expansion> operator|(QgsAuthMethod::Expansion f1, QFlags<QgsAuthMethod::Expansion> f2);
+
+
+typedef QHash<QString, QgsAuthMethod *> QgsAuthMethodsMap;
 
-typedef QHash<QString, QgsAuthMethod*> QgsAuthMethodsMap;
+/************************************************************************
+ * This file has been generated automatically from                      *
+ *                                                                      *
+ * src/core/auth/qgsauthmethod.h                                        *
+ *                                                                      *
+ * Do not edit manually ! Edit header and run scripts/sipify.pl again   *
+ ************************************************************************/
@@ -291,6 +291,58 @@ class CORE_EXPORT QgsPkiConfigBundle
 };
 
 
+
+#ifdef SIP_RUN
+% MappedType QList<QSslError::SslError>
+{
+  % TypeHeaderCode
+#include <QList>
+  % End
+
+  % ConvertFromTypeCode
+  // Create the list.
+  PyObject *l;
+
+  if ( ( l = PyList_New( sipCpp->size() ) ) == NULL )
+    return NULL;
+
+  // Set the list elements.
+  QList<QSslError::SslError>::iterator it = sipCpp->begin();
+  for ( int i = 0; it != sipCpp->end(); ++it, ++i )
+  {
+    PyObject *tobj;
+
+    if ( ( tobj = sipConvertFromEnum( *it, sipType_QSslError_SslError ) ) == NULL )
+    {
+      Py_DECREF( l );
+      return NULL;
+    }
+    PyList_SET_ITEM( l, i, tobj );
+  }
+
+  return l;
+  % End
+
+  % ConvertToTypeCode
+  // Check the type if that is all that is required.
+  if ( sipIsErr == NULL )
+    return PyList_Check( sipPy );
+
+  QList<QSslError::SslError> *qlist = new QList<QSslError::SslError>;
+
+  for ( int i = 0; i < PyList_GET_SIZE( sipPy ); ++i )
+  {
+    *qlist << ( QSslError::SslError )SIPLong_AsLong( PyList_GET_ITEM( sipPy, i ) );
+  }
+
+  *sipCppPtr = qlist;
+  return sipGetState( sipTransferObj );
+  % End
+};
+#endif
+
+
+
 /** \ingroup core
  * \brief Configuration container for SSL server connection exceptions or overrides
  */
 
@@ -41,10 +41,12 @@
 // Qt5KeyChain library
 #include "keychain.h"
 
+#ifndef SIP_RUN
 namespace QCA
 {
   class Initializer;
 }
+#endif
 class QgsAuthMethod;
 class QgsAuthMethodEdit;
 class QgsAuthProvider;
@@ -142,7 +144,7 @@ class CORE_EXPORT QgsAuthManager : public QObject
      * \param keepbackup Whether to keep the generated backup of current database
      * \param backuppath Where the backup is located, if kept
      */
-    bool resetMasterPassword( const QString &newpass, const QString &oldpass, bool keepbackup, QString *backuppath = nullptr );
+    bool resetMasterPassword( const QString &newpass, const QString &oldpass, bool keepbackup, QString *backuppath SIP_INOUT = nullptr );
 
     /** Whether there is a scheduled opitonal erase of authentication database.
      * \note not available in Python bindings
@@ -252,7 +254,7 @@ class CORE_EXPORT QgsAuthManager : public QObject
      * \param mconfig Associated authentication config id
      * \returns Whether operation succeeded
      */
-    bool storeAuthenticationConfig( QgsAuthMethodConfig &mconfig );
+    bool storeAuthenticationConfig( QgsAuthMethodConfig &mconfig SIP_INOUT );
 
     /**
      * Update an authentication config in the database
@@ -268,7 +270,7 @@ class CORE_EXPORT QgsAuthManager : public QObject
      * \param full Whether to decrypt and populate all sensitive data in subclass
      * \returns Whether operation succeeded
      */
-    bool loadAuthenticationConfig( const QString &authcfg, QgsAuthMethodConfig &mconfig, bool full = false );
+    bool loadAuthenticationConfig( const QString &authcfg, QgsAuthMethodConfig &mconfig SIP_INOUT, bool full = false );
 
     /**
      * Remove an authentication config in the database
@@ -287,15 +289,15 @@ class CORE_EXPORT QgsAuthManager : public QObject
      * Close connection to current authentication database and back it up
      * \returns Path to backup
      */
-    bool backupAuthenticationDatabase( QString *backuppath = nullptr );
+    bool backupAuthenticationDatabase( QString *backuppath SIP_INOUT = nullptr );
 
     /**
      * Erase all rows from all tables in authentication database
      * \param backup Whether to backup of current database
      * \param backuppath Where the backup is locate
      * \returns Whether operation succeeded
      */
-    bool eraseAuthenticationDatabase( bool backup, QString *backuppath = nullptr );
+    bool eraseAuthenticationDatabase( bool backup, QString *backuppath SIP_INOUT = nullptr );
 
 
     ////////////////// Auth Method calls ///////////////////////
@@ -307,7 +309,7 @@ class CORE_EXPORT QgsAuthManager : public QObject
      * \param dataprovider Provider key filter, offering logic branching in authentication method
      * \returns Whether operation succeeded
      */
-    bool updateNetworkRequest( QNetworkRequest &request, const QString &authcfg,
+    bool updateNetworkRequest( QNetworkRequest &request SIP_INOUT, const QString &authcfg,
                                const QString &dataprovider = QString() );
 
     /**
@@ -327,7 +329,7 @@ class CORE_EXPORT QgsAuthManager : public QObject
      * \param dataprovider Provider key filter, offering logic branching in authentication method
      * \returns Whether operation succeeded
      */
-    bool updateDataSourceUriItems( QStringList &connectionItems, const QString &authcfg,
+    bool updateDataSourceUriItems( QStringList &connectionItems SIP_INOUT, const QString &authcfg,
                                    const QString &dataprovider = QString() );
 
     ////////////////// Generic settings ///////////////////////
@@ -555,7 +557,7 @@ class CORE_EXPORT QgsAuthManager : public QObject
      * \param tag Associated tag (title)
      * \param level Message log level
      */
-    void messageOut( const QString &message, const QString &tag = AUTH_MAN_TAG, QgsAuthManager::MessageLevel level = INFO ) const;
+    void messageOut( const QString &message, const QString &tag = QgsAuthManager::AUTH_MAN_TAG, QgsAuthManager::MessageLevel level = QgsAuthManager::INFO ) const;
 
     /**
      * Custom logging signal to inform the user about master password <-> password manager interactions
@@ -564,7 +566,7 @@ class CORE_EXPORT QgsAuthManager : public QObject
      * @param tag Associated tag (title)
      * @param level Message log level
      */
-    void passwordHelperMessageOut( const QString &message, const QString &tag = AUTH_MAN_TAG, QgsAuthManager::MessageLevel level = INFO ) const;
+    void passwordHelperMessageOut( const QString &message, const QString &tag = QgsAuthManager::AUTH_MAN_TAG, QgsAuthManager::MessageLevel level = QgsAuthManager::INFO ) const;
 
 
     /**