|
version 1.12, 2003/10/22 14:26:13
|
version 1.28.2.1, 2008/08/20 23:05:57
|
|
|
|
| //%2003//////////////////////////////////////////////////////////////////////// |
//%2006//////////////////////////////////////////////////////////////////////// |
| // | // |
| // Copyright (c) 2000, 2001, 2002 BMC Software, Hewlett-Packard Development |
// Copyright (c) 2000, 2001, 2002 BMC Software; Hewlett-Packard Development |
| // Company, L. P., IBM Corp., The Open Group, Tivoli Systems. |
// Company, L.P.; IBM Corp.; The Open Group; Tivoli Systems. |
| // Copyright (c) 2003 BMC Software; Hewlett-Packard Development Company, L. P.; | // Copyright (c) 2003 BMC Software; Hewlett-Packard Development Company, L. P.; |
| // IBM Corp.; EMC Corporation, The Open Group. | // IBM Corp.; EMC Corporation, The Open Group. |
| |
// Copyright (c) 2004 BMC Software; Hewlett-Packard Development Company, L.P.; |
| |
// IBM Corp.; EMC Corporation; VERITAS Software Corporation; The Open Group. |
| |
// Copyright (c) 2005 Hewlett-Packard Development Company, L.P.; IBM Corp.; |
| |
// EMC Corporation; VERITAS Software Corporation; The Open Group. |
| |
// Copyright (c) 2006 Hewlett-Packard Development Company, L.P.; IBM Corp.; |
| |
// EMC Corporation; Symantec Corporation; The Open Group. |
| // | // |
| // Permission is hereby granted, free of charge, to any person obtaining a copy | // Permission is hereby granted, free of charge, to any person obtaining a copy |
| // of this software and associated documentation files (the "Software"), to | // of this software and associated documentation files (the "Software"), to |
|
|
|
| // | // |
| //============================================================================== | //============================================================================== |
| // | // |
| // Author: Sushma Fernandes, Hewlett Packard Company (sushma_fernandes@hp.com) |
|
| // |
|
| // Modified By: |
|
| // |
|
| //%//////////////////////////////////////////////////////////////////////////// | //%//////////////////////////////////////////////////////////////////////////// |
| | |
| | |
|
|
|
| /////////////////////////////////////////////////////////////////////////////// | /////////////////////////////////////////////////////////////////////////////// |
| | |
| #include <Pegasus/Common/FileSystem.h> | #include <Pegasus/Common/FileSystem.h> |
| #include <Pegasus/Common/Destroyer.h> |
|
| #include <Pegasus/Common/Logger.h> | #include <Pegasus/Common/Logger.h> |
| #include <Pegasus/Common/System.h> | #include <Pegasus/Common/System.h> |
| #include <Pegasus/Common/Tracer.h> | #include <Pegasus/Common/Tracer.h> |
| |
#include <Pegasus/Common/IPCExceptions.h> |
| | |
| #include <Pegasus/Config/ConfigManager.h> | #include <Pegasus/Config/ConfigManager.h> |
| | |
| #include <Pegasus/Security/UserManager/UserFileHandler.h> | #include <Pegasus/Security/UserManager/UserFileHandler.h> |
| #include <Pegasus/Security/UserManager/UserExceptions.h> | #include <Pegasus/Security/UserManager/UserExceptions.h> |
| #include <Pegasus/Common/MessageLoader.h> //l10n |
#include <Pegasus/Common/MessageLoader.h> |
| | |
| PEGASUS_USING_STD; | PEGASUS_USING_STD; |
| | |
|
|
|
| // Get the PasswordFilePath property from the Config Manager. | // Get the PasswordFilePath property from the Config Manager. |
| // | // |
| String passwdFile; | String passwdFile; |
| passwdFile = configManager->getCurrentValue( |
passwdFile = ConfigManager::getHomedPath( |
| _PROPERTY_NAME_PASSWORD_FILEPATH); |
configManager->getCurrentValue(_PROPERTY_NAME_PASSWORD_FILEPATH)); |
| | |
| // | // |
| // Construct a PasswordFile object. | // Construct a PasswordFile object. |
| // | // |
| _passwordFile = new PasswordFile(passwdFile); |
_passwordFile.reset(new PasswordFile(passwdFile)); |
| | |
| // | // |
| // Load the user information in to the cache. | // Load the user information in to the cache. |
| // | // |
| try |
|
| { |
|
| _loadAllUsers(); | _loadAllUsers(); |
| } |
|
| catch (Exception& e) |
|
| { |
|
| throw e; |
|
| } |
|
| | |
| // | // |
| // Initialize the mutex, mutex lock needs to be held for any updates | // Initialize the mutex, mutex lock needs to be held for any updates |
| // to the password cache and password file. | // to the password cache and password file. |
| // | // |
| _mutex = new Mutex; |
_mutex.reset(new Mutex); |
| | |
| PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
| } | } |
|
|
|
| { | { |
| PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::~UserFileHandler"); | PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::~UserFileHandler"); |
| | |
| delete _passwordFile; |
|
| delete _mutex; |
|
| |
|
| PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
| } | } |
| | |
|
|
|
| _passwordTable.clear(); | _passwordTable.clear(); |
| _passwordFile->load(_passwordTable); | _passwordFile->load(_passwordTable); |
| } | } |
| catch (CannotOpenFile cof) |
catch (CannotOpenFile&) |
| { | { |
| _passwordTable.clear(); | _passwordTable.clear(); |
| PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
| throw cof; |
throw; |
| } | } |
| PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
| } | } |
|
|
|
| | |
| try | try |
| { | { |
| _mutex->timed_lock(_MUTEX_TIMEOUT, pegasus_thread_self()); |
if (!_mutex->timed_lock(_MUTEX_TIMEOUT)) |
| } |
|
| catch (TimeOut e) |
|
| { | { |
| //l10n |
throw PEGASUS_CIM_EXCEPTION_L(CIM_ERR_FAILED, |
| //throw PEGASUS_CIM_EXCEPTION( CIM_ERR_FAILED, |
MessageLoaderParms( |
| //"Timed out trying to perform requested operation." |
"Security.UserManager.UserFileHandler.TIMEOUT", |
| //"Please re-try the operation again."); |
"Timed out while attempting to perform the requested " |
| throw PEGASUS_CIM_EXCEPTION_L( CIM_ERR_FAILED, MessageLoaderParms("Security.UserManager.UserFileHandler.TIMEOUT", |
"operation. Try the operation again.")); |
| "Timed out trying to perform requested operation.Please re-try the operation again.")); |
} |
| } |
} |
| catch (WaitFailed e) |
catch (WaitFailed&) |
| { |
{ |
| //l10n |
// ATTN: This is an error case, not a timeout scenario |
| //throw PEGASUS_CIM_EXCEPTION( CIM_ERR_FAILED, |
throw PEGASUS_CIM_EXCEPTION_L(CIM_ERR_FAILED, |
| //"Timed out trying to perform requested operation." |
MessageLoaderParms( |
| //"Please re-try the operation again."); |
"Security.UserManager.UserFileHandler.TIMEOUT", |
| throw PEGASUS_CIM_EXCEPTION_L( CIM_ERR_FAILED, MessageLoaderParms("Security.UserManager.UserFileHandler.TIMEOUT", |
"Timed out while attempting to perform the requested " |
| "Timed out trying to perform requested operation.Please re-try the operation again.")); |
"operation. Try the operation again.")); |
| } |
|
| catch (Deadlock e) |
|
| { |
|
| //l10n |
|
| //throw PEGASUS_CIM_EXCEPTION( CIM_ERR_FAILED, |
|
| //"Deak lock encountered trying to perform requested operation." |
|
| //"Please re-try the operation again."); |
|
| throw PEGASUS_CIM_EXCEPTION_L( CIM_ERR_FAILED, MessageLoaderParms("Security.UserManager.UserFileHandler.DEADLOCK", |
|
| "Deak lock encountered trying to perform requested operation.Please re-try the operation again.")); |
|
| } | } |
| | |
| switch (operation) | switch (operation) |
|
|
|
| if (!_passwordTable.insert(userName,password)) | if (!_passwordTable.insert(userName,password)) |
| { | { |
| _mutex->unlock(); | _mutex->unlock(); |
| //l10n |
Logger::put_l( |
| //Logger::put(Logger::ERROR_LOG, System::CIMSERVER, |
Logger::ERROR_LOG, System::CIMSERVER, Logger::SEVERE, |
| //Logger::SEVERE, |
MessageLoaderParms( |
| //"Error updating user information for : $0.",userName); |
"Security.UserManager.UserFileHandler." |
| Logger::put_l(Logger::ERROR_LOG, System::CIMSERVER,Logger::SEVERE, |
"ERROR_UPDATING_USER_INFO", |
| "Security.UserManager.UserFileHandler.ERROR_UPDATING_USER_INFO", |
"Error updating the user information for user $0.", |
| "Error updating user information for : $0.",userName); |
userName)); |
| PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
| throw PasswordCacheError(); | throw PasswordCacheError(); |
| } | } |
|
|
|
| { | { |
| _passwordFile->save(_passwordTable); | _passwordFile->save(_passwordTable); |
| } | } |
| catch (CannotOpenFile& e) |
catch (const CannotOpenFile&) |
| { | { |
| _mutex->unlock(); | _mutex->unlock(); |
| PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
| throw e; |
throw; |
| } | } |
| catch (CannotRenameFile& e) |
catch (const CannotRenameFile&) |
| { | { |
| // | // |
| // reload password hash table from file | // reload password hash table from file |
|
|
|
| | |
| _mutex->unlock(); | _mutex->unlock(); |
| PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
| throw e; |
throw; |
| } | } |
| _mutex->unlock(); | _mutex->unlock(); |
| PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
|
|
|
| const String& password) | const String& password) |
| { | { |
| char salt[3]; | char salt[3]; |
| String encryptedPassword = String::EMPTY; |
String encryptedPassword; |
| | |
| PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::addUserEntry"); | PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::addUserEntry"); |
| | |
|
|
|
| const String& newPassword ) | const String& newPassword ) |
| { | { |
| char salt[3]; | char salt[3]; |
| String encryptedPassword = String::EMPTY; |
String encryptedPassword; |
| | |
| PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::modifyUserEntry"); | PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::modifyUserEntry"); |
| | |
| // | // |
| // Check if the given password matches the passwd in the file | // Check if the given password matches the passwd in the file |
| // | // |
| try |
|
| { |
|
| if ( !verifyCIMUserPassword (userName,password) ) | if ( !verifyCIMUserPassword (userName,password) ) |
| { | { |
| PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
| throw PasswordMismatch(userName); | throw PasswordMismatch(userName); |
| } | } |
| } |
|
| catch (Exception& e) |
|
| { |
|
| PEG_METHOD_EXIT(); |
|
| throw e; |
|
| } |
|
| | |
| // encrypt new password | // encrypt new password |
| _GetSalt(salt); | _GetSalt(salt); |
|
|
|
| "UserFileHandler::verifyCIMUserPassword"); | "UserFileHandler::verifyCIMUserPassword"); |
| | |
| // Check if the user's password mathches the specified password | // Check if the user's password mathches the specified password |
| String curPassword = String::EMPTY; |
String curPassword; |
| String encryptedPassword = String::EMPTY; |
String encryptedPassword; |
| String saltStr = String::EMPTY; |
String saltStr; |
| | |
| // Check if the user exists in the password table | // Check if the user exists in the password table |
| if ( !_passwordTable.lookup(userName,curPassword) ) | if ( !_passwordTable.lookup(userName,curPassword) ) |
Return to
UserFileHandler.cpp
CVS log
Up to [Pegasus] / pegasus / src / Pegasus / Security / UserManager