(file) Return to LocalAuthenticationHandler.cpp CVS log (file) (dir) Up to [Pegasus] / pegasus / src / Pegasus / Security / Authentication

Diff for /pegasus/src/Pegasus/Security/Authentication/LocalAuthenticationHandler.cpp between version 1.15 and 1.19.2.1

version 1.15, 2006/08/04 19:06:01 version 1.19.2.1, 2007/03/23 21:53:54
Line 29 
Line 29 
 // //
 //============================================================================== //==============================================================================
 // //
 // Author: Nag Boranna, Hewlett-Packard Company(nagaraja_boranna@hp.com)  
 //  
 // Modified By:  Josephine Eskaline Joyce (jojustin@in.ibm.com) for PEP#101  
 //            Sushma Fernandes, Hewlett-Packard Company(sushma_fernandes@hp.com)  
 //  
 //%///////////////////////////////////////////////////////////////////////////// //%/////////////////////////////////////////////////////////////////////////////
  
   #include <Pegasus/Common/AuditLogger.h>
 #include <Pegasus/Common/Logger.h> #include <Pegasus/Common/Logger.h>
 #include <Pegasus/Common/Tracer.h> #include <Pegasus/Common/Tracer.h>
   #include <Pegasus/Common/SessionKey.h>
  
 #include "SecureLocalAuthenticator.h" #include "SecureLocalAuthenticator.h"
 #include "LocalAuthenticationHandler.h" #include "LocalAuthenticationHandler.h"
Line 78 
Line 75 
     PEG_METHOD_ENTER(TRC_AUTHENTICATION,     PEG_METHOD_ENTER(TRC_AUTHENTICATION,
         "LocalAuthenticationHandler::authenticate()");         "LocalAuthenticationHandler::authenticate()");
  
     Boolean authenticated   = false;  
   
     // Look for ':' seperator     // Look for ':' seperator
     Uint32 colon1 = authHeader.find(':');     Uint32 colon1 = authHeader.find(':');
  
     if ( colon1 == PEG_NOT_FOUND )     if ( colon1 == PEG_NOT_FOUND )
     {     {
         PEG_METHOD_EXIT();         PEG_METHOD_EXIT();
         return ( authenticated );          return false;
     }     }
  
     String userName = authHeader.subString(0, colon1);     String userName = authHeader.subString(0, colon1);
Line 112 
Line 107 
     }     }
  
     //     //
       // Check if the authentication information is present
       //
       if (secretReceived.size() == 0 || userName.size() == 0)
       {
           PEG_METHOD_EXIT();
           return false;
       }
   
       String authenticatedUsername = authInfo->getAuthenticatedUser();
   
       //
       // If this connection has been previously authenticated then ensure
       // the username passed with the current request matches the
       // username previously authenticated.
       //
       if (authenticatedUsername.size() != 0 &&
           userName != authenticatedUsername)
       {
           PEG_METHOD_EXIT();
           return false;
       }
   
       //
     // Check if the user is a valid system user     // Check if the user is a valid system user
     //     //
     if ( !System::isSystemUser( userName.getCString() ) )     if ( !System::isSystemUser( userName.getCString() ) )
     {     {
         PEG_METHOD_EXIT();         PEG_METHOD_EXIT();
         return (authenticated);          return false;
     }     }
  
     // Check if the user is authorized to CIMSERV     // Check if the user is authorized to CIMSERV
Line 129 
Line 147 
             ".NOREAD_CIMSERV_ACCESS.PEGASUS_OS_ZOS",             ".NOREAD_CIMSERV_ACCESS.PEGASUS_OS_ZOS",
             "Request UserID $0 doesn't have READ permission to profile CIMSERV CL(WBEM).",             "Request UserID $0 doesn't have READ permission to profile CIMSERV CL(WBEM).",
             userName);             userName);
         return (authenticated);          return false;
     }     }
 #endif #endif
  
     authenticated = _localAuthenticator->authenticate(filePath,      // it is not necessary to check remote privileged user access local
         secretReceived, authInfo->getAuthChallenge());      // set the flag to "check done"
       authInfo->setRemotePrivilegedUserAccessChecked();
   
       SessionKey sessionKey;
   
       Boolean authenticated = _localAuthenticator->authenticate(filePath,
           secretReceived, authInfo->getLocalAuthSecret(), sessionKey);
   
       PEG_AUDIT_LOG(logLocalAuthentication(
                        userName,
                        authenticated));
  
     if (authenticated)     if (authenticated)
     {     {
         authInfo->setAuthenticatedUser(userName);         authInfo->setAuthenticatedUser(userName);
           authInfo->setSessionKey(sessionKey);
     }     }
  
     PEG_METHOD_EXIT();     PEG_METHOD_EXIT();
Line 159 
Line 188 
     PEG_METHOD_ENTER(TRC_AUTHENTICATION,     PEG_METHOD_ENTER(TRC_AUTHENTICATION,
         "LocalAuthenticationHandler::getAuthResponseHeader()");         "LocalAuthenticationHandler::getAuthResponseHeader()");
  
     String challenge = String::EMPTY;      String secret;
     String authResp = String::EMPTY;      String authResp;
  
     //     //
     // Check if the user is a valid system user     // Check if the user is a valid system user
Line 171 
Line 200 
         return ( authResp );         return ( authResp );
     }     }
  
     authResp = _localAuthenticator->getAuthResponseHeader(authType, userName, challenge);      authResp = _localAuthenticator->getAuthResponseHeader(authType, userName, secret);
  
     authInfo->setAuthChallenge(challenge);      authInfo->setLocalAuthSecret(secret);
  
     PEG_METHOD_EXIT();     PEG_METHOD_EXIT();
  

Legend:
Removed from v.1.15  
changed lines
  Added in v.1.19.2.1
No CVS admin address has been configured
 Powered by
ViewCVS 0.9.2