version 1.21, 2007/02/28 20:46:07
|
version 1.37, 2014/09/26 07:46:58
|
|
|
//%2006//////////////////////////////////////////////////////////////////////// |
//%LICENSE//////////////////////////////////////////////////////////////// |
// | // |
// Copyright (c) 2000, 2001, 2002 BMC Software; Hewlett-Packard Development |
// Licensed to The Open Group (TOG) under one or more contributor license |
// Company, L.P.; IBM Corp.; The Open Group; Tivoli Systems. |
// agreements. Refer to the OpenPegasusNOTICE.txt file distributed with |
// Copyright (c) 2003 BMC Software; Hewlett-Packard Development Company, L.P.; |
// this work for additional information regarding copyright ownership. |
// IBM Corp.; EMC Corporation, The Open Group. |
// Each contributor licenses this file to you under the OpenPegasus Open |
// Copyright (c) 2004 BMC Software; Hewlett-Packard Development Company, L.P.; |
// Source License; you may not use this file except in compliance with the |
// IBM Corp.; EMC Corporation; VERITAS Software Corporation; The Open Group. |
// License. |
// Copyright (c) 2005 Hewlett-Packard Development Company, L.P.; IBM Corp.; |
|
// EMC Corporation; VERITAS Software Corporation; The Open Group. |
|
// Copyright (c) 2006 Hewlett-Packard Development Company, L.P.; IBM Corp.; |
|
// EMC Corporation; Symantec Corporation; The Open Group. |
|
// |
|
// Permission is hereby granted, free of charge, to any person obtaining a copy |
|
// of this software and associated documentation files (the "Software"), to |
|
// deal in the Software without restriction, including without limitation the |
|
// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or |
|
// sell copies of the Software, and to permit persons to whom the Software is |
|
// furnished to do so, subject to the following conditions: |
|
// |
|
// THE ABOVE COPYRIGHT NOTICE AND THIS PERMISSION NOTICE SHALL BE INCLUDED IN |
|
// ALL COPIES OR SUBSTANTIAL PORTIONS OF THE SOFTWARE. THE SOFTWARE IS PROVIDED |
|
// "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT |
|
// LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR |
|
// PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT |
|
// HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN |
|
// ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION |
|
// WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. |
|
// | // |
//============================================================================== |
// Permission is hereby granted, free of charge, to any person obtaining a |
|
// copy of this software and associated documentation files (the "Software"), |
|
// to deal in the Software without restriction, including without limitation |
|
// the rights to use, copy, modify, merge, publish, distribute, sublicense, |
|
// and/or sell copies of the Software, and to permit persons to whom the |
|
// Software is furnished to do so, subject to the following conditions: |
|
// |
|
// The above copyright notice and this permission notice shall be included |
|
// in all copies or substantial portions of the Software. |
|
// |
|
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS |
|
// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF |
|
// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. |
|
// IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY |
|
// CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, |
|
// TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE |
|
// SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. |
|
// |
|
////////////////////////////////////////////////////////////////////////// |
// | // |
//%///////////////////////////////////////////////////////////////////////////// | //%///////////////////////////////////////////////////////////////////////////// |
| |
|
|
#include <Pegasus/Common/Tracer.h> | #include <Pegasus/Common/Tracer.h> |
#include "AuthenticationInfoRep.h" | #include "AuthenticationInfoRep.h" |
#include <Pegasus/Common/SSLContext.h> | #include <Pegasus/Common/SSLContext.h> |
|
#include <Pegasus/Common/FileSystem.h> |
|
#include <Pegasus/Common/Executor.h> |
| |
PEGASUS_USING_STD; | PEGASUS_USING_STD; |
| |
PEGASUS_NAMESPACE_BEGIN | PEGASUS_NAMESPACE_BEGIN |
| |
const String AuthenticationInfoRep::AUTH_TYPE_SSL = "SSL"; | const String AuthenticationInfoRep::AUTH_TYPE_SSL = "SSL"; |
|
const String AuthenticationInfoRep::AUTH_TYPE_ZOS_LOCAL_DOMIAN_SOCKET = "LDS"; |
AuthenticationInfoRep::AuthenticationInfoRep(Boolean flag) |
const String AuthenticationInfoRep::AUTH_TYPE_ZOS_ATTLS = "ATTLS"; |
: |
const String AuthenticationInfoRep::AUTH_TYPE_COOKIE = "COOKIE"; |
_authUser(String::EMPTY), |
|
_authPassword(String::EMPTY), |
AuthenticationInfoRep::AuthenticationInfoRep() |
_authChallenge(String::EMPTY), |
: _connectionAuthenticated(false), |
_authSecret(String::EMPTY), |
_wasRemotePrivilegedUserAccessChecked(false), |
_authType(String::EMPTY), |
_authHandle(), |
_authStatus(NEW_REQUEST), |
_isExpiredPassword(false), |
_wasRemotePrivilegedUserAccessChecked(false) |
_cookie() |
{ | { |
PEG_METHOD_ENTER( | PEG_METHOD_ENTER( |
TRC_AUTHENTICATION, "AuthenticationInfoRep::AuthenticationInfoRep"); | TRC_AUTHENTICATION, "AuthenticationInfoRep::AuthenticationInfoRep"); |
|
#ifdef PEGASUS_NEGOTIATE_AUTHENTICATION |
|
_session.reset(new NegotiateServerSession()); |
|
#endif |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
| |
|
|
AuthenticationInfoRep::~AuthenticationInfoRep() | AuthenticationInfoRep::~AuthenticationInfoRep() |
{ | { |
PEG_METHOD_ENTER( | PEG_METHOD_ENTER( |
TRC_AUTHENTICATION, "AuthenticationInfoRep::~AuthenticationInfoRep"); | TRC_AUTHENTICATION, "AuthenticationInfoRep::~AuthenticationInfoRep"); |
| |
|
// initiate the deletion of _localAuthFilePath. |
|
if(FileSystem::exists(_localAuthFilePath)) |
|
{ |
|
// No response was received from the local client for the |
|
// authentication challenge. Hence deleting the file here. |
|
|
|
// Use executor, if present. |
|
if (Executor::detectExecutor() == 0) |
|
{ |
|
Executor::removeFile(_localAuthFilePath.getCString()); |
|
} |
|
else |
|
{ |
|
FileSystem::removeFile(_localAuthFilePath); |
|
} |
|
} |
|
|
|
PEG_METHOD_EXIT(); |
|
} |
|
|
|
void AuthenticationInfoRep::setConnectionAuthenticated( |
|
Boolean connectionAuthenticated) |
|
{ |
|
PEG_METHOD_ENTER(TRC_AUTHENTICATION, |
|
"AuthenticationInfoRep::setConnectionAuthenticated"); |
|
|
|
_connectionAuthenticated = connectionAuthenticated; |
|
|
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
| |
void AuthenticationInfoRep::setAuthStatus(AuthStatus status) |
#ifdef PEGASUS_OS_ZOS |
|
|
|
// The connection user is for z/OS only. |
|
// On z/OS Unix Local Domain Sockets and sockets |
|
// protected by AT-TLS are able to get the user ID of |
|
// the connected user. |
|
// This information is needed for later authentication |
|
// steps. |
|
|
|
void AuthenticationInfoRep::setConnectionUser(const String& userName) |
{ | { |
PEG_METHOD_ENTER( | PEG_METHOD_ENTER( |
TRC_AUTHENTICATION, "AuthenticationInfoRep::setAuthStatus"); |
TRC_AUTHENTICATION, "AuthenticationInfoRep::setConnectionUser()"); |
| |
_authStatus = status; |
_connectionUser = userName; |
| |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
|
#endif |
| |
void AuthenticationInfoRep::setAuthenticatedUser(const String& userName) | void AuthenticationInfoRep::setAuthenticatedUser(const String& userName) |
{ | { |
|
|
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
| |
void AuthenticationInfoRep::setAuthChallenge(const String& challenge) |
void AuthenticationInfoRep::setLocalAuthFilePath(const String& filePath) |
{ | { |
PEG_METHOD_ENTER( | PEG_METHOD_ENTER( |
TRC_AUTHENTICATION, "AuthenticationInfoRep::setAuthChallenge"); |
TRC_AUTHENTICATION, "AuthenticationInfoRep::setLocalAuthFilePath"); |
| |
_authChallenge = challenge; |
_localAuthFilePath = filePath; |
| |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
| |
void AuthenticationInfoRep::setAuthSecret(const String& secret) |
void AuthenticationInfoRep::setLocalAuthSecret(const String& secret) |
{ | { |
PEG_METHOD_ENTER( | PEG_METHOD_ENTER( |
TRC_AUTHENTICATION, "AuthenticationInfoRep::setAuthSecret"); |
TRC_AUTHENTICATION, "AuthenticationInfoRep::setLocalAuthSecret"); |
| |
_authSecret = secret; |
_localAuthSecret = secret; |
| |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
|
|
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
| |
#ifdef PEGASUS_KERBEROS_AUTHENTICATION |
|
void AuthenticationInfoRep::setSecurityAssociation() |
|
{ |
|
PEG_METHOD_ENTER( |
|
TRC_AUTHENTICATION, "AuthenticationInfoRep::setSecurityAssociation"); |
|
|
|
if ( !_securityAssoc.get() ) |
|
{ |
|
_securityAssoc.reset(new CIMKerberosSecurityAssociation); |
|
} |
|
|
|
PEG_METHOD_EXIT(); |
|
} |
|
#endif |
|
|
|
void AuthenticationInfoRep::setClientCertificateChain( | void AuthenticationInfoRep::setClientCertificateChain( |
Array<SSLCertificateInfo*> clientCertificate) | Array<SSLCertificateInfo*> clientCertificate) |
{ | { |
|
|
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
| |
|
|
PEGASUS_NAMESPACE_END | PEGASUS_NAMESPACE_END |