version 1.9, 2004/10/17 20:40:10
|
version 1.19.8.2, 2013/07/20 18:32:56
|
|
|
//%2004//////////////////////////////////////////////////////////////////////// |
//%LICENSE//////////////////////////////////////////////////////////////// |
// | // |
// Copyright (c) 2000, 2001, 2002 BMC Software; Hewlett-Packard Development |
// Licensed to The Open Group (TOG) under one or more contributor license |
// Company, L.P.; IBM Corp.; The Open Group; Tivoli Systems. |
// agreements. Refer to the OpenPegasusNOTICE.txt file distributed with |
// Copyright (c) 2003 BMC Software; Hewlett-Packard Development Company, L.P.; |
// this work for additional information regarding copyright ownership. |
// IBM Corp.; EMC Corporation, The Open Group. |
// Each contributor licenses this file to you under the OpenPegasus Open |
// Copyright (c) 2004 BMC Software; Hewlett-Packard Development Company, L.P.; |
// Source License; you may not use this file except in compliance with the |
// IBM Corp.; EMC Corporation; VERITAS Software Corporation; The Open Group. |
// License. |
// |
// |
// Permission is hereby granted, free of charge, to any person obtaining a copy |
// Permission is hereby granted, free of charge, to any person obtaining a |
// of this software and associated documentation files (the "Software"), to |
// copy of this software and associated documentation files (the "Software"), |
// deal in the Software without restriction, including without limitation the |
// to deal in the Software without restriction, including without limitation |
// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or |
// the rights to use, copy, modify, merge, publish, distribute, sublicense, |
// sell copies of the Software, and to permit persons to whom the Software is |
// and/or sell copies of the Software, and to permit persons to whom the |
// furnished to do so, subject to the following conditions: |
// Software is furnished to do so, subject to the following conditions: |
// |
// |
// THE ABOVE COPYRIGHT NOTICE AND THIS PERMISSION NOTICE SHALL BE INCLUDED IN |
// The above copyright notice and this permission notice shall be included |
// ALL COPIES OR SUBSTANTIAL PORTIONS OF THE SOFTWARE. THE SOFTWARE IS PROVIDED |
// in all copies or substantial portions of the Software. |
// "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT |
// |
// LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR |
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS |
// PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT |
// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF |
// HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN |
// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. |
// ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION |
// IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY |
// WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. |
// CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, |
|
// TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE |
|
// SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. |
// | // |
//============================================================================== |
////////////////////////////////////////////////////////////////////////// |
// |
|
// Author: Nag Boranna, Hewlett-Packard Company(nagaraja_boranna@hp.com) |
|
// |
|
// Modified By: |
|
// | // |
//%///////////////////////////////////////////////////////////////////////////// | //%///////////////////////////////////////////////////////////////////////////// |
| |
|
|
@param authHeader String containing the Authorization header | @param authHeader String containing the Authorization header |
@param authInfo Reference to AuthenticationInfo object that holds the | @param authInfo Reference to AuthenticationInfo object that holds the |
authentication information for the given connection. | authentication information for the given connection. |
@return true on successful authentication, false otherwise |
@return AuthenticationStatus holding http status code and error detail |
*/ | */ |
Boolean performHttpAuthentication( |
AuthenticationStatus performHttpAuthentication( |
const String& authHeader, | const String& authHeader, |
AuthenticationInfo* authInfo); | AuthenticationInfo* authInfo); |
| |
|
|
@param authHeader String containing the Authorization header | @param authHeader String containing the Authorization header |
@param authInfo Reference to AuthenticationInfo object that holds the | @param authInfo Reference to AuthenticationInfo object that holds the |
authentication information for the given connection. | authentication information for the given connection. |
@return true on successful authentication, false otherwise |
@return AuthenticationStatus holding http status code and error detail |
*/ | */ |
Boolean performPegasusAuthentication( |
AuthenticationStatus performPegasusAuthentication( |
const String& authHeader, | const String& authHeader, |
AuthenticationInfo* authInfo); | AuthenticationInfo* authInfo); |
| |
|
/** Validates whether the user is a valid user for requests |
|
from HTTP connections. |
|
@param userName name of the user |
|
@param authInfo Reference to AuthenticationInfo object that holds the |
|
authentication information for the given connection. |
|
@return AuthenticationStatus holding http status code and error detail |
|
*/ |
|
AuthenticationStatus validateUserForHttpAuth( |
|
const String& userName, |
|
AuthenticationInfo* authInfo); |
|
|
/** Constructs the Pegasus Local authentication challenge header. | /** Constructs the Pegasus Local authentication challenge header. |
@param authHeader String containing the Authorization header | @param authHeader String containing the Authorization header |
@param authInfo reference to AuthenticationInfo object that holds the | @param authInfo reference to AuthenticationInfo object that holds the |
|
|
#else | #else |
String getHttpAuthResponseHeader(); | String getHttpAuthResponseHeader(); |
#endif | #endif |
private: |
|
| |
Boolean _parseLocalAuthHeader( |
static Boolean isRemotePrivilegedUserAccessAllowed( |
const String& authHeader, |
String & userName); |
String& authType, |
|
String& userName, |
|
String& cookie); |
|
| |
Boolean _parseHttpAuthHeader( |
private: |
const String& authHeader, |
|
String& authType, |
|
String& cookie); |
|
| |
Authenticator* _getLocalAuthHandler(); | Authenticator* _getLocalAuthHandler(); |
| |