pegasus/src/Pegasus/Security/Authentication/SecureLocalAuthenticator.cpp - diff

Return to SecureLocalAuthenticator.cpp CVS log

Up to [Pegasus] / pegasus / src / Pegasus / Security / Authentication

Diff for /pegasus/src/Pegasus/Security/Authentication/SecureLocalAuthenticator.cpp between version 1.9 and 1.20

version 1.9, 2005/02/05 23:00:44

version 1.20, 2013/06/05 14:09:26

Line 1

//%2005////////////////////////////////////////////////////////////////////////

//%LICENSE////////////////////////////////////////////////////////////////

// Licensed to The Open Group (TOG) under one or more contributor license

// Company, L.P.; IBM Corp.; The Open Group; Tivoli Systems.

// agreements. Refer to the OpenPegasusNOTICE.txt file distributed with

// this work for additional information regarding copyright ownership.

// IBM Corp.; EMC Corporation, The Open Group.

// Each contributor licenses this file to you under the OpenPegasus Open

// Source License; you may not use this file except in compliance with the

// IBM Corp.; EMC Corporation; VERITAS Software Corporation; The Open Group.

// License.

// EMC Corporation; VERITAS Software Corporation; The Open Group.

// Permission is hereby granted, free of charge, to any person obtaining a

// copy of this software and associated documentation files (the "Software"),

// Permission is hereby granted, free of charge, to any person obtaining a copy

// to deal in the Software without restriction, including without limitation

// of this software and associated documentation files (the "Software"), to

// the rights to use, copy, modify, merge, publish, distribute, sublicense,

// deal in the Software without restriction, including without limitation the

// and/or sell copies of the Software, and to permit persons to whom the

// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or

// Software is furnished to do so, subject to the following conditions:

// sell copies of the Software, and to permit persons to whom the Software is

// furnished to do so, subject to the following conditions:

// The above copyright notice and this permission notice shall be included

// in all copies or substantial portions of the Software.

// THE ABOVE COPYRIGHT NOTICE AND THIS PERMISSION NOTICE SHALL BE INCLUDED IN

// ALL COPIES OR SUBSTANTIAL PORTIONS OF THE SOFTWARE. THE SOFTWARE IS PROVIDED

// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS

// "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT

// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF

// LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR

// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.

// PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT

// IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY

// HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN

// CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,

// ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION

// TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE

// WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

// SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

//==============================================================================

//////////////////////////////////////////////////////////////////////////

// Author: Nag Boranna, Hewlett-Packard Company(nagaraja_boranna@hp.com)

// Modified By:

//%/////////////////////////////////////////////////////////////////////////////

#include <Pegasus/Common/FileSystem.h>

#include <Pegasus/Common/Tracer.h>

#include <Pegasus/Common/Executor.h>

#include "LocalAuthFile.h"

#include "SecureLocalAuthenticator.h"

Line 74

Line 71

// Does local authentication

Boolean SecureLocalAuthenticator::authenticate

AuthenticationStatus SecureLocalAuthenticator::authenticate(

(

const String& filePath,

const String& secretReceived,

const String& secretKept

const String& secretKept)

)

{

PEG_METHOD_ENTER(TRC_AUTHENTICATION,

"SecureLocalAuthenticator::authenticate()");

Boolean authenticated = false;

// Use executor, if present.

if ((!String::equal(secretReceived, String::EMPTY)) &&

if (Executor::detectExecutor() == 0)

(!String::equal(secretKept, String::EMPTY)))

{

if (!String::equal(secretKept, String::EMPTY) &&

String::equal(secretKept, secretReceived))

{

if (String::equal(secretKept, secretReceived))

authenticated = true;

}

else if (Executor::authenticateLocal(

(const char*)filePath.getCString(),

(const char*)secretReceived.getCString()) == 0)

{

authenticated = true;

}

else

{

// Check secret.

if (!String::equal(secretKept, String::EMPTY) &&

String::equal(secretKept, secretReceived))

{

authenticated = true;

}

// Remove the auth file created for this user request

// remove the auth file created for this user request

if (filePath.size())

{

if (FileSystem::exists(filePath))

Line 106

Line 116

FileSystem::removeFile(filePath);

}

PEG_METHOD_EXIT();

return (authenticated);

return AuthenticationStatus(authenticated);

}

AuthenticationStatus SecureLocalAuthenticator::validateUser(

const String& userName,

AuthenticationInfo* authInfo)

{

PEG_METHOD_ENTER(TRC_AUTHENTICATION,

"SecureLocalAuthenticator::validateUser()");

Boolean authenticated = false;

if (System::isSystemUser(userName.getCString()))

{

authenticated = true;

}

PEG_METHOD_EXIT();

return AuthenticationStatus(authenticated);

}

Line 118

Line 147

String SecureLocalAuthenticator::getAuthResponseHeader(

const String& authType,

const String& userName,

String& challenge)

String& filePath,

String& secret)

{

PEG_METHOD_ENTER(TRC_AUTHENTICATION,

"SecureLocalAuthenticator::getAuthResponseHeader()");

Line 127

Line 157

responseHeader.append(authType);

responseHeader.append(" \"");

// Use executor, if present.

if (Executor::detectExecutor() == 0)

{

char filePathBuffer[EXECUTOR_BUFFER_SIZE];

if (Executor::challengeLocal(

userName.getCString(), filePathBuffer) != 0)

{

PEG_METHOD_EXIT();

throw CannotOpenFile(filePathBuffer);

}

filePath = filePathBuffer;

secret.clear();

responseHeader.append(filePath);

responseHeader.append("\"");

}

else

{

// create a file using user name and write a random number in it.

LocalAuthFile localAuthFile(userName);

String filePath = localAuthFile.create();

filePath = localAuthFile.create();

// get the challenge string

// get the secret string

String temp = localAuthFile.getChallengeString();

secret = localAuthFile.getSecretString();

challenge = temp;

// build response header with file path and challenge string.

responseHeader.append(filePath);

responseHeader.append("\"");

}

PEG_METHOD_EXIT();

return responseHeader;

return (responseHeader);

}

PEGASUS_NAMESPACE_END

Legend:

Removed from v.1.9
changed lines
	Added in v.1.20

No CVS admin address has been configured