version 1.8.6.1, 2003/07/29 15:08:30
|
version 1.32, 2008/12/02 09:02:14
|
|
|
//%///////////////////////////////////////////////////////////////////////////// |
//%LICENSE//////////////////////////////////////////////////////////////// |
// | // |
// Copyright (c) 2000, 2001, 2002 BMC Software, Hewlett-Packard Company, IBM, |
// Licensed to The Open Group (TOG) under one or more contributor license |
// The Open Group, Tivoli Systems |
// agreements. Refer to the OpenPegasusNOTICE.txt file distributed with |
|
// this work for additional information regarding copyright ownership. |
|
// Each contributor licenses this file to you under the OpenPegasus Open |
|
// Source License; you may not use this file except in compliance with the |
|
// License. |
|
// |
|
// Permission is hereby granted, free of charge, to any person obtaining a |
|
// copy of this software and associated documentation files (the "Software"), |
|
// to deal in the Software without restriction, including without limitation |
|
// the rights to use, copy, modify, merge, publish, distribute, sublicense, |
|
// and/or sell copies of the Software, and to permit persons to whom the |
|
// Software is furnished to do so, subject to the following conditions: |
|
// |
|
// The above copyright notice and this permission notice shall be included |
|
// in all copies or substantial portions of the Software. |
|
// |
|
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS |
|
// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF |
|
// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. |
|
// IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY |
|
// CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, |
|
// TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE |
|
// SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. |
// | // |
// Permission is hereby granted, free of charge, to any person obtaining a copy |
////////////////////////////////////////////////////////////////////////// |
// of this software and associated documentation files (the "Software"), to |
|
// deal in the Software without restriction, including without limitation the |
|
// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or |
|
// sell copies of the Software, and to permit persons to whom the Software is |
|
// furnished to do so, subject to the following conditions: |
|
// |
|
// THE ABOVE COPYRIGHT NOTICE AND THIS PERMISSION NOTICE SHALL BE INCLUDED IN |
|
// ALL COPIES OR SUBSTANTIAL PORTIONS OF THE SOFTWARE. THE SOFTWARE IS PROVIDED |
|
// "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT |
|
// LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR |
|
// PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT |
|
// HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN |
|
// ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION |
|
// WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. |
|
// |
|
//============================================================================== |
|
// |
|
// Author: Sushma Fernandes, Hewlett Packard Company (sushma_fernandes@hp.com) |
|
// |
|
// Modified By: |
|
// | // |
//%//////////////////////////////////////////////////////////////////////////// | //%//////////////////////////////////////////////////////////////////////////// |
| |
|
|
/////////////////////////////////////////////////////////////////////////////// | /////////////////////////////////////////////////////////////////////////////// |
| |
#include <Pegasus/Common/FileSystem.h> | #include <Pegasus/Common/FileSystem.h> |
#include <Pegasus/Common/Destroyer.h> |
|
#include <Pegasus/Common/Logger.h> | #include <Pegasus/Common/Logger.h> |
#include <Pegasus/Common/System.h> | #include <Pegasus/Common/System.h> |
#include <Pegasus/Common/Tracer.h> | #include <Pegasus/Common/Tracer.h> |
|
|
| |
#include <Pegasus/Security/UserManager/UserFileHandler.h> | #include <Pegasus/Security/UserManager/UserFileHandler.h> |
#include <Pegasus/Security/UserManager/UserExceptions.h> | #include <Pegasus/Security/UserManager/UserExceptions.h> |
#include <Pegasus/Common/MessageLoader.h> //l10n |
#include <Pegasus/Common/MessageLoader.h> |
| |
PEGASUS_USING_STD; | PEGASUS_USING_STD; |
| |
|
|
System::getCurrentTime( sec, milliSec ); | System::getCurrentTime( sec, milliSec ); |
| |
srand( (int) sec ); | srand( (int) sec ); |
|
#ifdef PEGASUS_PLATFORM_SOLARIS_SPARC |
|
Unit32 seed; |
|
randNum = rand_r(*seed); |
|
#else |
randNum = rand(); | randNum = rand(); |
|
#endif |
| |
// | // |
// Make sure the random number generated is between 0-63. | // Make sure the random number generated is between 0-63. |
|
|
randNum >>= 6; | randNum >>= 6; |
*salt++ = _SALT_STRING[ randNum & 0x3f ]; | *salt++ = _SALT_STRING[ randNum & 0x3f ]; |
| |
salt[2] = '\0'; |
*salt = '\0'; |
| |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
|
|
// Get the PasswordFilePath property from the Config Manager. | // Get the PasswordFilePath property from the Config Manager. |
// | // |
String passwdFile; | String passwdFile; |
passwdFile = configManager->getCurrentValue( |
passwdFile = ConfigManager::getHomedPath( |
_PROPERTY_NAME_PASSWORD_FILEPATH); |
configManager->getCurrentValue(_PROPERTY_NAME_PASSWORD_FILEPATH)); |
| |
// | // |
// Construct a PasswordFile object. | // Construct a PasswordFile object. |
// | // |
_passwordFile = new PasswordFile(passwdFile); |
_passwordFile.reset(new PasswordFile(passwdFile)); |
| |
// | // |
// Load the user information in to the cache. | // Load the user information in to the cache. |
// | // |
try |
|
{ |
|
_loadAllUsers(); | _loadAllUsers(); |
} |
|
catch (Exception& e) |
|
{ |
|
throw e; |
|
} |
|
| |
// | // |
// Initialize the mutex, mutex lock needs to be held for any updates | // Initialize the mutex, mutex lock needs to be held for any updates |
// to the password cache and password file. | // to the password cache and password file. |
// | // |
_mutex = new Mutex; |
_mutex.reset(new Mutex); |
| |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
|
|
{ | { |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::~UserFileHandler"); | PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::~UserFileHandler"); |
| |
delete _passwordFile; |
|
delete _mutex; |
|
|
|
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
| |
|
|
_passwordTable.clear(); | _passwordTable.clear(); |
_passwordFile->load(_passwordTable); | _passwordFile->load(_passwordTable); |
} | } |
catch (CannotOpenFile cof) |
catch (CannotOpenFile&) |
{ | { |
_passwordTable.clear(); | _passwordTable.clear(); |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
throw cof; |
throw; |
} | } |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
} | } |
|
|
// at any given time | // at any given time |
// | // |
| |
try |
if (!_mutex->timed_lock(_MUTEX_TIMEOUT)) |
{ |
|
_mutex->timed_lock(_MUTEX_TIMEOUT, pegasus_thread_self()); |
|
} |
|
catch (TimeOut e) |
|
{ | { |
//l10n |
throw PEGASUS_CIM_EXCEPTION_L(CIM_ERR_FAILED, |
//throw PEGASUS_CIM_EXCEPTION( CIM_ERR_FAILED, |
MessageLoaderParms( |
//"Timed out trying to perform requested operation." |
"Security.UserManager.UserFileHandler.TIMEOUT", |
//"Please re-try the operation again."); |
"Timed out while attempting to perform the requested " |
throw PEGASUS_CIM_EXCEPTION_L( CIM_ERR_FAILED, MessageLoaderParms("Security.UserManager.UserFileHandler.TIMEOUT", |
"operation. Try the operation again.")); |
"Timed out trying to perform requested operation.Please re-try the operation again.")); |
|
} |
|
catch (WaitFailed e) |
|
{ |
|
//l10n |
|
//throw PEGASUS_CIM_EXCEPTION( CIM_ERR_FAILED, |
|
//"Timed out trying to perform requested operation." |
|
//"Please re-try the operation again."); |
|
throw PEGASUS_CIM_EXCEPTION_L( CIM_ERR_FAILED, MessageLoaderParms("Security.UserManager.UserFileHandler.TIMEOUT", |
|
"Timed out trying to perform requested operation.Please re-try the operation again.")); |
|
} |
|
catch (Deadlock e) |
|
{ |
|
//l10n |
|
//throw PEGASUS_CIM_EXCEPTION( CIM_ERR_FAILED, |
|
//"Deak lock encountered trying to perform requested operation." |
|
//"Please re-try the operation again."); |
|
throw PEGASUS_CIM_EXCEPTION_L( CIM_ERR_FAILED, MessageLoaderParms("Security.UserManager.UserFileHandler.DEADLOCK", |
|
"Deak lock encountered trying to perform requested operation.Please re-try the operation again.")); |
|
} | } |
| |
switch (operation) | switch (operation) |
|
|
if (!_passwordTable.insert(userName,password)) | if (!_passwordTable.insert(userName,password)) |
{ | { |
_mutex->unlock(); | _mutex->unlock(); |
//l10n |
Logger::put_l( |
//Logger::put(Logger::ERROR_LOG, System::CIMSERVER, |
Logger::ERROR_LOG, System::CIMSERVER, Logger::SEVERE, |
//Logger::SEVERE, |
MessageLoaderParms( |
//"Error updating user information for : $0.",userName); |
"Security.UserManager.UserFileHandler." |
Logger::put_l(Logger::ERROR_LOG, System::CIMSERVER,Logger::SEVERE, |
"ERROR_UPDATING_USER_INFO", |
"Security.UserManager.UserFileHandler.ERROR_UPDATING_USER_INFO", |
"Error updating the user information for user $0.", |
"Error updating user information for : $0.",userName); |
userName)); |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
throw PasswordCacheError(); | throw PasswordCacheError(); |
} | } |
|
|
{ | { |
_passwordFile->save(_passwordTable); | _passwordFile->save(_passwordTable); |
} | } |
catch (CannotOpenFile& e) |
catch (const CannotOpenFile&) |
{ | { |
_mutex->unlock(); | _mutex->unlock(); |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
throw e; |
throw; |
} | } |
catch (CannotRenameFile& e) |
catch (const CannotRenameFile&) |
{ | { |
// | // |
// reload password hash table from file | // reload password hash table from file |
|
|
| |
_mutex->unlock(); | _mutex->unlock(); |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
throw e; |
throw; |
} | } |
_mutex->unlock(); | _mutex->unlock(); |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
|
|
const String& password) | const String& password) |
{ | { |
char salt[3]; | char salt[3]; |
String encryptedPassword = String::EMPTY; |
String encryptedPassword; |
| |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::addUserEntry"); | PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::addUserEntry"); |
| |
|
|
const String& newPassword ) | const String& newPassword ) |
{ | { |
char salt[3]; | char salt[3]; |
String encryptedPassword = String::EMPTY; |
String encryptedPassword; |
| |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::modifyUserEntry"); | PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserFileHandler::modifyUserEntry"); |
| |
// | // |
// Check if the given password matches the passwd in the file | // Check if the given password matches the passwd in the file |
// | // |
try |
|
{ |
|
if ( !verifyCIMUserPassword (userName,password) ) | if ( !verifyCIMUserPassword (userName,password) ) |
{ | { |
PEG_METHOD_EXIT(); | PEG_METHOD_EXIT(); |
throw PasswordMismatch(userName); | throw PasswordMismatch(userName); |
} | } |
} |
|
catch (Exception& e) |
|
{ |
|
PEG_METHOD_EXIT(); |
|
throw e; |
|
} |
|
| |
// encrypt new password | // encrypt new password |
_GetSalt(salt); | _GetSalt(salt); |
|
|
"UserFileHandler::verifyCIMUserPassword"); | "UserFileHandler::verifyCIMUserPassword"); |
| |
// Check if the user's password mathches the specified password | // Check if the user's password mathches the specified password |
String curPassword = String::EMPTY; |
String curPassword; |
String encryptedPassword = String::EMPTY; |
String encryptedPassword; |
String saltStr = String::EMPTY; |
String saltStr; |
| |
// Check if the user exists in the password table | // Check if the user exists in the password table |
if ( !_passwordTable.lookup(userName,curPassword) ) | if ( !_passwordTable.lookup(userName,curPassword) ) |