//%2003//////////////////////////////////////////////////////////////////////// // // Copyright (c) 2000, 2001, 2002 BMC Software, Hewlett-Packard Development // Company, L. P., IBM Corp., The Open Group, Tivoli Systems. // Copyright (c) 2003 BMC Software; Hewlett-Packard Development Company, L. P.; // IBM Corp.; EMC Corporation, The Open Group. // // Permission is hereby granted, free of charge, to any person obtaining a copy // of this software and associated documentation files (the "Software"), to // deal in the Software without restriction, including without limitation the // rights to use, copy, modify, merge, publish, distribute, sublicense, and/or // sell copies of the Software, and to permit persons to whom the Software is // furnished to do so, subject to the following conditions: // // THE ABOVE COPYRIGHT NOTICE AND THIS PERMISSION NOTICE SHALL BE INCLUDED IN // ALL COPIES OR SUBSTANTIAL PORTIONS OF THE SOFTWARE. THE SOFTWARE IS PROVIDED // "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT // LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR // PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT // HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN // ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. // //============================================================================== // // Author: Sushma Fernandes, Hewlett Packard Company (sushma_fernandes@hp.com) // // Modified By: Nag Boranna, Hewlett Packard Company (nagaraja_boranna@hp.com) // Carol Ann Krug Graves, Hewlett-Packard Company // (carolann_graves@hp.com) // //%//////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////////// // // User Manager // /////////////////////////////////////////////////////////////////////////////// #include #include #include #include #include #include PEGASUS_USING_STD; PEGASUS_NAMESPACE_BEGIN /** Initialize UserManager instance */ UserManager* UserManager::_instance = 0; // // Constructor // UserManager::UserManager(CIMRepository* repository) { PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::UserManager"); try { _userFileHandler = 0; #ifndef PEGASUS_NO_PASSWORDFILE _userFileHandler = new UserFileHandler(); #endif _authHandler = 0; _authHandler = new AuthorizationHandler(repository); } catch (Exception& e) { if (_userFileHandler) { delete _userFileHandler; } if (_authHandler) { delete _authHandler; } PEG_METHOD_EXIT(); throw e; } PEG_METHOD_EXIT(); } // // Destructor // UserManager::~UserManager() { PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::~UserManager"); if (_userFileHandler) { delete _userFileHandler; } if (_authHandler) { delete _authHandler; } PEG_METHOD_EXIT(); } // // Construct the singleton instance of the UserManager and return a // pointer to that instance. // UserManager* UserManager::getInstance(CIMRepository* repository) { PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::getInstance"); if (!_instance && !repository) { PEG_METHOD_EXIT(); throw CannotCreateUserManagerInstance(); } if (!_instance) { _instance = new UserManager(repository); } PEG_METHOD_EXIT(); return _instance; } // // Add a user // void UserManager::addUser(const String& userName, const String& password) { PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::addUser"); #ifndef PEGASUS_NO_PASSWORDFILE // // Check if the user is a valid system user // if ( !System::isSystemUser( userName.getCString() ) ) { PEG_METHOD_EXIT(); throw InvalidSystemUser(userName); } // // Add the user to the password file // try { _userFileHandler->addUserEntry(userName,password); } catch (Exception& e) { PEG_METHOD_EXIT(); throw e; } #endif PEG_METHOD_EXIT(); } // // Modify user's password // void UserManager::modifyUser( const String& userName, const String& password, const String& newPassword ) { PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::modifyUser"); #ifndef PEGASUS_NO_PASSWORDFILE try { _userFileHandler->modifyUserEntry(userName, password, newPassword); } catch (Exception& e) { PEG_METHOD_EXIT(); throw e; } #endif PEG_METHOD_EXIT(); } // // Remove a user // void UserManager::removeUser(const String& userName) { PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::removeUser"); #ifndef PEGASUS_NO_PASSWORDFILE try { _userFileHandler->removeUserEntry(userName); } catch (Exception& e) { PEG_METHOD_EXIT(); throw e; } #endif PEG_METHOD_EXIT(); } // // Get a list of all the user names. // void UserManager::getAllUserNames(Array& userNames) { PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::getAllUserNames"); #ifndef PEGASUS_NO_PASSWORDFILE try { _userFileHandler->getAllUserNames( userNames ); PEG_METHOD_EXIT(); } catch (Exception& e) { throw e; } #endif PEG_METHOD_EXIT(); } // // Verify whether the specified CIM user is valid // Boolean UserManager::verifyCIMUser (const String& userName) { PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::verifyCIMUser"); #ifndef PEGASUS_NO_PASSWORDFILE try { if ( _userFileHandler->verifyCIMUser( userName )) { PEG_METHOD_EXIT(); return true; } else { PEG_METHOD_EXIT(); return false; } } catch (InvalidUser& iu) { PEG_METHOD_EXIT(); throw iu; } catch (Exception& e) { PEG_METHOD_EXIT(); throw e; } #else PEG_METHOD_EXIT(); return false; #endif } // // Verify whether the specified user's password is valid // Boolean UserManager::verifyCIMUserPassword ( const String& userName, const String& password) { PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::verifyCIMUserPassword"); #ifndef PEGASUS_NO_PASSWORDFILE try { if ( _userFileHandler->verifyCIMUserPassword( userName, password )) { PEG_METHOD_EXIT(); return true; } else { PEG_METHOD_EXIT(); return false; } } catch (InvalidUser& iu) { PEG_METHOD_EXIT(); throw iu; } catch (Exception& e) { PEG_METHOD_EXIT(); throw e; } #else PEG_METHOD_EXIT(); return false; #endif } // // Verify whether the specified namespace is valid // Boolean UserManager::verifyNamespace( const CIMNamespaceName& myNamespace ) { PEG_METHOD_ENTER(TRC_AUTHORIZATION, "UserManager::verifyNamespace"); try { if ( _authHandler->verifyNamespace( myNamespace )) { PEG_METHOD_EXIT(); return true; } else { PEG_METHOD_EXIT(); return false; } } catch (Exception& e) { PEG_METHOD_EXIT(); throw e; } } // // Verify whether the specified operation has authorization // to be performed by the specified user. // Boolean UserManager::verifyAuthorization( const String& userName, const CIMNamespaceName& nameSpace, const CIMName& cimMethodName) { PEG_METHOD_ENTER(TRC_AUTHORIZATION, "UserManager::verifyAuthorization"); try { if ( _authHandler->verifyAuthorization( userName, nameSpace, cimMethodName ) ) { PEG_METHOD_EXIT(); return true; } else { PEG_METHOD_EXIT(); return false; } } catch (Exception& e) { PEG_METHOD_EXIT(); throw e; } } // // Set the authorizations // void UserManager::setAuthorization( const String& userName, const CIMNamespaceName& myNamespace, const String& auth) { PEG_METHOD_ENTER(TRC_AUTHORIZATION, "UserManager::setAuthorization"); try { _authHandler->setAuthorization( userName, myNamespace, auth ); } catch (Exception& e) { PEG_METHOD_EXIT(); throw e; } PEG_METHOD_EXIT(); } // // Remove the authorizations for the specified user and namespace // void UserManager::removeAuthorization( const String& userName, const CIMNamespaceName& myNamespace) { PEG_METHOD_ENTER(TRC_AUTHORIZATION, "UserManager::removeAuthorization"); try { _authHandler->removeAuthorization( userName, myNamespace); } catch (Exception& e) { PEG_METHOD_EXIT(); throw e; } PEG_METHOD_EXIT(); } // // Get the authorizations for the specified user and namespace // String UserManager::getAuthorization( const String& userName, const CIMNamespaceName& myNamespace) { PEG_METHOD_ENTER(TRC_AUTHORIZATION, "UserManager::getAuthorization"); String auth = String::EMPTY; try { auth = _authHandler->getAuthorization( userName, myNamespace); } catch (Exception& e) { PEG_METHOD_EXIT(); throw e; } PEG_METHOD_EXIT(); return auth; } PEGASUS_NAMESPACE_END