version 1.2, 2001/12/13 14:54:30
|
version 1.19.8.2, 2013/07/20 18:32:56
|
|
|
//%///////////////////////////////////////////////////////////////////////////// |
//%LICENSE//////////////////////////////////////////////////////////////// |
// | // |
// Copyright (c) 2000, 2001 BMC Software, Hewlett-Packard Company, IBM, |
// Licensed to The Open Group (TOG) under one or more contributor license |
// The Open Group, Tivoli Systems |
// agreements. Refer to the OpenPegasusNOTICE.txt file distributed with |
|
// this work for additional information regarding copyright ownership. |
|
// Each contributor licenses this file to you under the OpenPegasus Open |
|
// Source License; you may not use this file except in compliance with the |
|
// License. |
// | // |
// Permission is hereby granted, free of charge, to any person obtaining a | // Permission is hereby granted, free of charge, to any person obtaining a |
// copy of this software and associated documentation files (the "Software"), | // copy of this software and associated documentation files (the "Software"), |
|
|
// and/or sell copies of the Software, and to permit persons to whom the | // and/or sell copies of the Software, and to permit persons to whom the |
// Software is furnished to do so, subject to the following conditions: | // Software is furnished to do so, subject to the following conditions: |
// | // |
// The above copyright notice and this permission notice shall be included in |
// The above copyright notice and this permission notice shall be included |
// all copies of substantial portions of this software. |
// in all copies or substantial portions of the Software. |
// |
|
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR |
|
// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, |
|
// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL |
|
// THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER |
|
// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING |
|
// FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER |
|
// DEALINGS IN THE SOFTWARE. |
|
// |
|
//============================================================================== |
|
// | // |
// Author: Nag Boranna, Hewlett-Packard Company(nagaraja_boranna@hp.com) |
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS |
|
// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF |
|
// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. |
|
// IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY |
|
// CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, |
|
// TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE |
|
// SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. |
// | // |
// Modified By: |
////////////////////////////////////////////////////////////////////////// |
// | // |
//%///////////////////////////////////////////////////////////////////////////// | //%///////////////////////////////////////////////////////////////////////////// |
| |
|
|
#define Pegasus_AuthenticationManager_h | #define Pegasus_AuthenticationManager_h |
| |
#include <Pegasus/Common/Config.h> | #include <Pegasus/Common/Config.h> |
#include <Pegasus/Security/Authentication/Authenticator.h> |
|
#include "Linkage.h" |
|
| |
|
#include "Authenticator.h" |
|
|
|
#include <Pegasus/Security/Authentication/Linkage.h> |
|
|
|
#ifdef PEGASUS_KERBEROS_AUTHENTICATION |
|
#include <Pegasus/Common/AuthenticationInfo.h> |
|
#endif |
| |
PEGASUS_NAMESPACE_BEGIN | PEGASUS_NAMESPACE_BEGIN |
| |
/** |
/** This class implements the HTTP authentication and Pegasus Local |
|
authentication mecahnism. It provides methods to perform authentication |
|
and to generate authentication challenge headers. |
*/ | */ |
| |
class PEGASUS_SECURITY_LINKAGE AuthenticationManager | class PEGASUS_SECURITY_LINKAGE AuthenticationManager |
{ | { |
public: | public: |
| |
|
/**Constructor */ |
AuthenticationManager(); | AuthenticationManager(); |
| |
|
/**Destructor */ |
~AuthenticationManager(); | ~AuthenticationManager(); |
| |
Boolean performHttpAuthentication( |
/** Authenticates the requests from HTTP connections. |
String authHeader, |
@param authHeader String containing the Authorization header |
|
@param authInfo Reference to AuthenticationInfo object that holds the |
|
authentication information for the given connection. |
|
@return AuthenticationStatus holding http status code and error detail |
|
*/ |
|
AuthenticationStatus performHttpAuthentication( |
|
const String& authHeader, |
AuthenticationInfo* authInfo); | AuthenticationInfo* authInfo); |
| |
Boolean performPegasusAuthentication( |
/** Authenticates the requests from Local connections. |
String authHeader, |
@param authHeader String containing the Authorization header |
|
@param authInfo Reference to AuthenticationInfo object that holds the |
|
authentication information for the given connection. |
|
@return AuthenticationStatus holding http status code and error detail |
|
*/ |
|
AuthenticationStatus performPegasusAuthentication( |
|
const String& authHeader, |
|
AuthenticationInfo* authInfo); |
|
|
|
/** Validates whether the user is a valid user for requests |
|
from HTTP connections. |
|
@param userName name of the user |
|
@param authInfo Reference to AuthenticationInfo object that holds the |
|
authentication information for the given connection. |
|
@return AuthenticationStatus holding http status code and error detail |
|
*/ |
|
AuthenticationStatus validateUserForHttpAuth( |
|
const String& userName, |
AuthenticationInfo* authInfo); | AuthenticationInfo* authInfo); |
| |
|
/** Constructs the Pegasus Local authentication challenge header. |
|
@param authHeader String containing the Authorization header |
|
@param authInfo reference to AuthenticationInfo object that holds the |
|
authentication information for the given connection. |
|
@return String containing the authentication challenge |
|
*/ |
String getPegasusAuthResponseHeader( | String getPegasusAuthResponseHeader( |
String authHeader, |
const String& authHeader, |
AuthenticationInfo* authInfo); | AuthenticationInfo* authInfo); |
| |
|
/** Constructs the HTTP authentication challenge header. |
|
@return String containing the authentication challenge |
|
*/ |
|
#ifdef PEGASUS_KERBEROS_AUTHENTICATION |
|
String AuthenticationManager::getHttpAuthResponseHeader( |
|
AuthenticationInfo* authInfo = 0); |
|
#else |
String getHttpAuthResponseHeader(); | String getHttpAuthResponseHeader(); |
|
#endif |
|
|
|
static Boolean isRemotePrivilegedUserAccessAllowed( |
|
String & userName); |
| |
private: | private: |
| |
String _realm; |
Authenticator* _getLocalAuthHandler(); |
| |
void _parseAuthHeader( |
Authenticator* _getHttpAuthHandler(); |
String authHeader, String& authType, String& userName, String& cookie); |
|
| |
Authenticator* _localAuthHandler; | Authenticator* _localAuthHandler; |
|
|
Authenticator* _httpAuthHandler; | Authenticator* _httpAuthHandler; |
|
String _httpAuthType; |
Authenticator* _getLocalAuthHandler(); |
|
|
|
Authenticator* _getHttpAuthHandler(); |
|
| |
}; | }; |
| |