version 1.36.2.1, 2007/03/23 21:53:54
|
version 1.45, 2013/06/05 14:09:26
|
|
|
//%2006//////////////////////////////////////////////////////////////////////// |
//%LICENSE//////////////////////////////////////////////////////////////// |
// | // |
// Copyright (c) 2000, 2001, 2002 BMC Software; Hewlett-Packard Development |
// Licensed to The Open Group (TOG) under one or more contributor license |
// Company, L.P.; IBM Corp.; The Open Group; Tivoli Systems. |
// agreements. Refer to the OpenPegasusNOTICE.txt file distributed with |
// Copyright (c) 2003 BMC Software; Hewlett-Packard Development Company, L.P.; |
// this work for additional information regarding copyright ownership. |
// IBM Corp.; EMC Corporation, The Open Group. |
// Each contributor licenses this file to you under the OpenPegasus Open |
// Copyright (c) 2004 BMC Software; Hewlett-Packard Development Company, L.P.; |
// Source License; you may not use this file except in compliance with the |
// IBM Corp.; EMC Corporation; VERITAS Software Corporation; The Open Group. |
// License. |
// Copyright (c) 2005 Hewlett-Packard Development Company, L.P.; IBM Corp.; |
// |
// EMC Corporation; VERITAS Software Corporation; The Open Group. |
// Permission is hereby granted, free of charge, to any person obtaining a |
// Copyright (c) 2006 Hewlett-Packard Development Company, L.P.; IBM Corp.; |
// copy of this software and associated documentation files (the "Software"), |
// EMC Corporation; Symantec Corporation; The Open Group. |
// to deal in the Software without restriction, including without limitation |
// |
// the rights to use, copy, modify, merge, publish, distribute, sublicense, |
// Permission is hereby granted, free of charge, to any person obtaining a copy |
// and/or sell copies of the Software, and to permit persons to whom the |
// of this software and associated documentation files (the "Software"), to |
// Software is furnished to do so, subject to the following conditions: |
// deal in the Software without restriction, including without limitation the |
// |
// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or |
// The above copyright notice and this permission notice shall be included |
// sell copies of the Software, and to permit persons to whom the Software is |
// in all copies or substantial portions of the Software. |
// furnished to do so, subject to the following conditions: |
// |
// |
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS |
// THE ABOVE COPYRIGHT NOTICE AND THIS PERMISSION NOTICE SHALL BE INCLUDED IN |
// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF |
// ALL COPIES OR SUBSTANTIAL PORTIONS OF THE SOFTWARE. THE SOFTWARE IS PROVIDED |
// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. |
// "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT |
// IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY |
// LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR |
// CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, |
// PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT |
// TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE |
// HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN |
// SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. |
// ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION |
|
// WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. |
|
// | // |
//============================================================================== |
////////////////////////////////////////////////////////////////////////// |
// | // |
//%///////////////////////////////////////////////////////////////////////////// | //%///////////////////////////////////////////////////////////////////////////// |
| |
|
|
#include <Pegasus/Config/ConfigManager.h> | #include <Pegasus/Config/ConfigManager.h> |
#include <Pegasus/Common/Tracer.h> | #include <Pegasus/Common/Tracer.h> |
#include "PAMBasicAuthenticator.h" | #include "PAMBasicAuthenticator.h" |
|
#include "pam_rcToAuthStatus.h" |
| |
PEGASUS_USING_STD; | PEGASUS_USING_STD; |
| |
|
|
PEG_METHOD_ENTER(TRC_AUTHENTICATION, | PEG_METHOD_ENTER(TRC_AUTHENTICATION, |
"PAMBasicAuthenticator::PAMBasicAuthenticator()"); | "PAMBasicAuthenticator::PAMBasicAuthenticator()"); |
| |
// Build up realm: <hostname>:<port> |
// Build Authentication parameter realm required for Basic Challenge |
|
// e.g. realm="HostName" |
| |
_realm.assign(System::getHostName()); |
_realm.assign("realm="); |
|
_realm.append(Char16('"')); |
// get the configured port number |
_realm.append(System::getHostName()); |
ConfigManager* configManager = ConfigManager::getInstance(); |
_realm.append(Char16('"')); |
String port = configManager->getCurrentValue("httpPort"); |
|
|
|
// |
|
// Create realm that will be used for Basic challenges |
|
// |
|
_realm.append(":"); |
|
_realm.append(port); |
|
| |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
|
|
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
| |
Boolean PAMBasicAuthenticator::authenticate( |
AuthenticationStatus PAMBasicAuthenticator::authenticate( |
const String& userName, | const String& userName, |
const String& password, | const String& password, |
SessionKey& sessionKey) |
AuthenticationInfo* authInfo) |
{ | { |
PEG_METHOD_ENTER(TRC_AUTHENTICATION, | PEG_METHOD_ENTER(TRC_AUTHENTICATION, |
"PAMBasicAuthenticator::authenticate()"); | "PAMBasicAuthenticator::authenticate()"); |
| |
if (Executor::authenticatePassword( |
int pam_rc = |
userName.getCString(), password.getCString(), sessionKey) != 0) |
Executor::authenticatePassword( |
{ |
userName.getCString(), |
return false; |
password.getCString()); |
} |
|
| |
|
// return code of -1 will be translated to AUTHSC_UNAUTHORIZED |
|
AuthenticationStatus authStatus = _getAuthStatusFromPAM_RC(pam_rc); |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
return true; |
return authStatus; |
} | } |
| |
Boolean PAMBasicAuthenticator::validateUser(const String& userName) |
AuthenticationStatus PAMBasicAuthenticator::validateUser( |
|
const String& userName, |
|
AuthenticationInfo* authInfo) |
{ | { |
PEG_METHOD_ENTER(TRC_AUTHENTICATION, | PEG_METHOD_ENTER(TRC_AUTHENTICATION, |
"PAMBasicAuthenticator::validateUser()"); | "PAMBasicAuthenticator::validateUser()"); |
| |
if (Executor::validateUser(userName.getCString()) != 0) |
int pam_rc = Executor::validateUser(userName.getCString()); |
return false; |
// return code of -1 will be translated to AUTHSC_UNAUTHORIZED |
|
AuthenticationStatus authStatus = _getAuthStatusFromPAM_RC(pam_rc); |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
return true; |
return authStatus; |
} | } |
| |
| |
|
|
PEG_METHOD_ENTER(TRC_AUTHENTICATION, | PEG_METHOD_ENTER(TRC_AUTHENTICATION, |
"PAMBasicAuthenticator::getAuthResponseHeader()"); | "PAMBasicAuthenticator::getAuthResponseHeader()"); |
| |
// Build response header: WWW-Authenticate: Basic "<hostname>:<port>" |
// Build response header: WWW-Authenticate: Basic realm="HostName" |
| |
String responseHeader = "WWW-Authenticate: Basic \""; |
String responseHeader = "WWW-Authenticate: Basic "; |
responseHeader.append(_realm); | responseHeader.append(_realm); |
responseHeader.append("\""); |
|
| |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
return responseHeader; | return responseHeader; |