version 1.12, 2003/10/22 14:26:13
|
version 1.28.2.1, 2008/08/20 23:05:57
|
|
|
//%2003//////////////////////////////////////////////////////////////////////// |
//%2006//////////////////////////////////////////////////////////////////////// |
// | // |
// Copyright (c) 2000, 2001, 2002 BMC Software, Hewlett-Packard Development |
// Copyright (c) 2000, 2001, 2002 BMC Software; Hewlett-Packard Development |
// Company, L. P., IBM Corp., The Open Group, Tivoli Systems. |
// Company, L.P.; IBM Corp.; The Open Group; Tivoli Systems. |
// Copyright (c) 2003 BMC Software; Hewlett-Packard Development Company, L. P.; | // Copyright (c) 2003 BMC Software; Hewlett-Packard Development Company, L. P.; |
// IBM Corp.; EMC Corporation, The Open Group. | // IBM Corp.; EMC Corporation, The Open Group. |
|
// Copyright (c) 2004 BMC Software; Hewlett-Packard Development Company, L.P.; |
|
// IBM Corp.; EMC Corporation; VERITAS Software Corporation; The Open Group. |
|
// Copyright (c) 2005 Hewlett-Packard Development Company, L.P.; IBM Corp.; |
|
// EMC Corporation; VERITAS Software Corporation; The Open Group. |
|
// Copyright (c) 2006 Hewlett-Packard Development Company, L.P.; IBM Corp.; |
|
// EMC Corporation; Symantec Corporation; The Open Group. |
// | // |
// Permission is hereby granted, free of charge, to any person obtaining a copy | // Permission is hereby granted, free of charge, to any person obtaining a copy |
// of this software and associated documentation files (the "Software"), to | // of this software and associated documentation files (the "Software"), to |
|
|
// | // |
//============================================================================== | //============================================================================== |
// | // |
// Author: Sushma Fernandes, Hewlett Packard Company (sushma_fernandes@hp.com) |
|
// |
|
// Modified By: |
|
// |
|
//%//////////////////////////////////////////////////////////////////////////// | //%//////////////////////////////////////////////////////////////////////////// |
| |
| |
|
|
/////////////////////////////////////////////////////////////////////////////// | /////////////////////////////////////////////////////////////////////////////// |
| |
#include <Pegasus/Common/FileSystem.h> | #include <Pegasus/Common/FileSystem.h> |
#include <Pegasus/Common/Destroyer.h> |
|
#include <Pegasus/Common/Logger.h> | #include <Pegasus/Common/Logger.h> |
#include <Pegasus/Common/System.h> | #include <Pegasus/Common/System.h> |
#include <Pegasus/Common/Tracer.h> | #include <Pegasus/Common/Tracer.h> |
|
#include <Pegasus/Common/IPCExceptions.h> |
| |
#include <Pegasus/Config/ConfigManager.h> | #include <Pegasus/Config/ConfigManager.h> |
| |
#include <Pegasus/Security/UserManager/UserFileHandler.h> | #include <Pegasus/Security/UserManager/UserFileHandler.h> |
#include <Pegasus/Security/UserManager/UserExceptions.h> | #include <Pegasus/Security/UserManager/UserExceptions.h> |
#include <Pegasus/Common/MessageLoader.h> //l10n |
#include <Pegasus/Common/MessageLoader.h> |
| |
PEGASUS_USING_STD; | PEGASUS_USING_STD; |
| |
|
|
// Get the PasswordFilePath property from the Config Manager. | // Get the PasswordFilePath property from the Config Manager. |
// | // |
String passwdFile; | String passwdFile; |
passwdFile = configManager->getCurrentValue( |
passwdFile = ConfigManager::getHomedPath( |
_PROPERTY_NAME_PASSWORD_FILEPATH); |
configManager->getCurrentValue(_PROPERTY_NAME_PASSWORD_FILEPATH)); |
| |
// | // |
// Construct a PasswordFile object. | // Construct a PasswordFile object. |
// | // |
_passwordFile = new PasswordFile(passwdFile); |
_passwordFile.reset(new PasswordFile(passwdFile)); |
| |
// | // |
// Load the user information in to the cache. | // Load the user information in to the cache. |
// | // |
try |
|
{ |
|
_loadAllUsers(); | _loadAllUsers(); |
} |
|
catch (Exception& e) |
|
{ |
|
throw e; |
|
} |
|
| |
// | // |
// Initialize the mutex, mutex lock needs to be held for any updates | // Initialize the mutex, mutex lock needs to be held for any updates |
// to the password cache and password file. | // to the password cache and password file. |
// | // |
_mutex = new Mutex; |
_mutex.reset(new Mutex); |
| |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
|
|
{ | { |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::~UserFileHandler"); | PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::~UserFileHandler"); |
| |
delete _passwordFile; |
|
delete _mutex; |
|
|
|
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
| |
|
|
_passwordTable.clear(); | _passwordTable.clear(); |
_passwordFile->load(_passwordTable); | _passwordFile->load(_passwordTable); |
} | } |
catch (CannotOpenFile cof) |
catch (CannotOpenFile&) |
{ | { |
_passwordTable.clear(); | _passwordTable.clear(); |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
throw cof; |
throw; |
} | } |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
|
|
| |
try | try |
{ | { |
_mutex->timed_lock(_MUTEX_TIMEOUT, pegasus_thread_self()); |
if (!_mutex->timed_lock(_MUTEX_TIMEOUT)) |
} |
|
catch (TimeOut e) |
|
{ | { |
//l10n |
throw PEGASUS_CIM_EXCEPTION_L(CIM_ERR_FAILED, |
//throw PEGASUS_CIM_EXCEPTION( CIM_ERR_FAILED, |
MessageLoaderParms( |
//"Timed out trying to perform requested operation." |
"Security.UserManager.UserFileHandler.TIMEOUT", |
//"Please re-try the operation again."); |
"Timed out while attempting to perform the requested " |
throw PEGASUS_CIM_EXCEPTION_L( CIM_ERR_FAILED, MessageLoaderParms("Security.UserManager.UserFileHandler.TIMEOUT", |
"operation. Try the operation again.")); |
"Timed out trying to perform requested operation.Please re-try the operation again.")); |
} |
} |
} |
catch (WaitFailed e) |
catch (WaitFailed&) |
{ |
{ |
//l10n |
// ATTN: This is an error case, not a timeout scenario |
//throw PEGASUS_CIM_EXCEPTION( CIM_ERR_FAILED, |
throw PEGASUS_CIM_EXCEPTION_L(CIM_ERR_FAILED, |
//"Timed out trying to perform requested operation." |
MessageLoaderParms( |
//"Please re-try the operation again."); |
"Security.UserManager.UserFileHandler.TIMEOUT", |
throw PEGASUS_CIM_EXCEPTION_L( CIM_ERR_FAILED, MessageLoaderParms("Security.UserManager.UserFileHandler.TIMEOUT", |
"Timed out while attempting to perform the requested " |
"Timed out trying to perform requested operation.Please re-try the operation again.")); |
"operation. Try the operation again.")); |
} |
|
catch (Deadlock e) |
|
{ |
|
//l10n |
|
//throw PEGASUS_CIM_EXCEPTION( CIM_ERR_FAILED, |
|
//"Deak lock encountered trying to perform requested operation." |
|
//"Please re-try the operation again."); |
|
throw PEGASUS_CIM_EXCEPTION_L( CIM_ERR_FAILED, MessageLoaderParms("Security.UserManager.UserFileHandler.DEADLOCK", |
|
"Deak lock encountered trying to perform requested operation.Please re-try the operation again.")); |
|
} | } |
| |
switch (operation) | switch (operation) |
|
|
if (!_passwordTable.insert(userName,password)) | if (!_passwordTable.insert(userName,password)) |
{ | { |
_mutex->unlock(); | _mutex->unlock(); |
//l10n |
Logger::put_l( |
//Logger::put(Logger::ERROR_LOG, System::CIMSERVER, |
Logger::ERROR_LOG, System::CIMSERVER, Logger::SEVERE, |
//Logger::SEVERE, |
MessageLoaderParms( |
//"Error updating user information for : $0.",userName); |
"Security.UserManager.UserFileHandler." |
Logger::put_l(Logger::ERROR_LOG, System::CIMSERVER,Logger::SEVERE, |
"ERROR_UPDATING_USER_INFO", |
"Security.UserManager.UserFileHandler.ERROR_UPDATING_USER_INFO", |
"Error updating the user information for user $0.", |
"Error updating user information for : $0.",userName); |
userName)); |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
throw PasswordCacheError(); | throw PasswordCacheError(); |
} | } |
|
|
{ | { |
_passwordFile->save(_passwordTable); | _passwordFile->save(_passwordTable); |
} | } |
catch (CannotOpenFile& e) |
catch (const CannotOpenFile&) |
{ | { |
_mutex->unlock(); | _mutex->unlock(); |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
throw e; |
throw; |
} | } |
catch (CannotRenameFile& e) |
catch (const CannotRenameFile&) |
{ | { |
// | // |
// reload password hash table from file | // reload password hash table from file |
|
|
| |
_mutex->unlock(); | _mutex->unlock(); |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
throw e; |
throw; |
} | } |
_mutex->unlock(); | _mutex->unlock(); |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
|
|
const String& password) | const String& password) |
{ | { |
char salt[3]; | char salt[3]; |
String encryptedPassword = String::EMPTY; |
String encryptedPassword; |
| |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::addUserEntry"); | PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::addUserEntry"); |
| |
|
|
const String& newPassword ) | const String& newPassword ) |
{ | { |
char salt[3]; | char salt[3]; |
String encryptedPassword = String::EMPTY; |
String encryptedPassword; |
| |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::modifyUserEntry"); | PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::modifyUserEntry"); |
| |
// | // |
// Check if the given password matches the passwd in the file | // Check if the given password matches the passwd in the file |
// | // |
try |
|
{ |
|
if ( !verifyCIMUserPassword (userName,password) ) | if ( !verifyCIMUserPassword (userName,password) ) |
{ | { |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
throw PasswordMismatch(userName); | throw PasswordMismatch(userName); |
} | } |
} |
|
catch (Exception& e) |
|
{ |
|
PEG_METHOD_EXIT(); |
|
throw e; |
|
} |
|
| |
// encrypt new password | // encrypt new password |
_GetSalt(salt); | _GetSalt(salt); |
|
|
"UserFileHandler::verifyCIMUserPassword"); | "UserFileHandler::verifyCIMUserPassword"); |
| |
// Check if the user's password mathches the specified password | // Check if the user's password mathches the specified password |
String curPassword = String::EMPTY; |
String curPassword; |
String encryptedPassword = String::EMPTY; |
String encryptedPassword; |
String saltStr = String::EMPTY; |
String saltStr; |
| |
// Check if the user exists in the password table | // Check if the user exists in the password table |
if ( !_passwordTable.lookup(userName,curPassword) ) | if ( !_passwordTable.lookup(userName,curPassword) ) |