|
version 1.2, 2001/12/13 14:54:33
|
version 1.18, 2005/12/21 06:18:54
|
|
|
|
| //%//////////////////////////////////////////////////////////////////////////// |
//%2005//////////////////////////////////////////////////////////////////////// |
| // | // |
| // Copyright (c) 2000, 2001 BMC Software, Hewlett-Packard Company, IBM, |
// Copyright (c) 2000, 2001, 2002 BMC Software; Hewlett-Packard Development |
| // The Open Group, Tivoli Systems |
// Company, L.P.; IBM Corp.; The Open Group; Tivoli Systems. |
| |
// Copyright (c) 2003 BMC Software; Hewlett-Packard Development Company, L.P.; |
| |
// IBM Corp.; EMC Corporation, The Open Group. |
| |
// Copyright (c) 2004 BMC Software; Hewlett-Packard Development Company, L.P.; |
| |
// IBM Corp.; EMC Corporation; VERITAS Software Corporation; The Open Group. |
| |
// Copyright (c) 2005 Hewlett-Packard Development Company, L.P.; IBM Corp.; |
| |
// EMC Corporation; VERITAS Software Corporation; The Open Group. |
| // | // |
| // Permission is hereby granted, free of charge, to any person obtaining a copy | // Permission is hereby granted, free of charge, to any person obtaining a copy |
| // of this software and associated documentation files (the "Software"), to | // of this software and associated documentation files (the "Software"), to |
|
|
|
| // ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION | // ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION |
| // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. | // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. |
| // | // |
| //============================================================================= |
//============================================================================== |
| // | // |
| // Author: Sushma Fernandes, Hewlett Packard Company (sushma_fernandes@hp.com) | // Author: Sushma Fernandes, Hewlett Packard Company (sushma_fernandes@hp.com) |
| // | // |
| // Modified By: Nag Boranna, Hewlett Packard Company (nagaraja_boranna@hp.com) | // Modified By: Nag Boranna, Hewlett Packard Company (nagaraja_boranna@hp.com) |
| |
// Carol Ann Krug Graves, Hewlett-Packard Company |
| |
// (carolann_graves@hp.com) |
| |
// Amit K Arora, IBM (amita@in.ibm.com) for PEP#101 |
| |
// Aruran, IBM (ashanmug@in.ibm.com) for Bug#4421 |
| // | // |
| //%//////////////////////////////////////////////////////////////////////////// | //%//////////////////////////////////////////////////////////////////////////// |
| | |
|
|
|
| // | // |
| /////////////////////////////////////////////////////////////////////////////// | /////////////////////////////////////////////////////////////////////////////// |
| | |
| #include <Pegasus/Common/Destroyer.h> |
|
| #include <Pegasus/Common/System.h> | #include <Pegasus/Common/System.h> |
| #include <Pegasus/Common/Tracer.h> | #include <Pegasus/Common/Tracer.h> |
| |
#include <Pegasus/Common/PegasusVersion.h> |
| |
|
| #include <Pegasus/Security/UserManager/UserManager.h> | #include <Pegasus/Security/UserManager/UserManager.h> |
| #include <Pegasus/Security/UserManager/UserExceptions.h> | #include <Pegasus/Security/UserManager/UserExceptions.h> |
| | |
|
|
|
| Initialize UserManager instance | Initialize UserManager instance |
| */ | */ |
| UserManager* UserManager::_instance = 0; | UserManager* UserManager::_instance = 0; |
| |
Mutex UserManager::_userManagerMutex; |
| | |
| // | // |
| // Constructor | // Constructor |
| // | // |
| UserManager::UserManager(CIMRepository* repository) | UserManager::UserManager(CIMRepository* repository) |
| { | { |
| const char METHOD_NAME[] = "UserManager::UserManager"; |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::UserManager"); |
| |
|
| PEG_FUNC_ENTER(TRC_USER_MANAGER, METHOD_NAME); |
|
| |
|
| try |
|
| { |
|
| _userFileHandler = 0; |
|
| _userFileHandler = new UserFileHandler(); |
|
| |
|
| _authHandler = 0; |
|
| _authHandler = new AuthorizationHandler(repository); |
|
| } |
|
| catch (Exception& e) |
|
| { |
|
| if (_userFileHandler) |
|
| { |
|
| delete _userFileHandler; |
|
| } |
|
| if (_authHandler) |
|
| { |
|
| delete _authHandler; |
|
| } |
|
| | |
| PEG_FUNC_EXIT(TRC_USER_MANAGER, METHOD_NAME); |
#ifndef PEGASUS_NO_PASSWORDFILE |
| throw e; |
_userFileHandler.reset(new UserFileHandler()); |
| } |
#endif |
| |
_authHandler.reset(new AuthorizationHandler(repository)); |
| | |
| PEG_FUNC_EXIT(TRC_USER_MANAGER, METHOD_NAME); |
PEG_METHOD_EXIT(); |
| } | } |
| | |
| // | // |
|
|
|
| // | // |
| UserManager::~UserManager() | UserManager::~UserManager() |
| { | { |
| const char METHOD_NAME[] = "UserManager::~UserManager"; |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::~UserManager"); |
| |
|
| PEG_FUNC_ENTER(TRC_USER_MANAGER, METHOD_NAME); |
|
| |
|
| delete _userFileHandler; |
|
| |
|
| delete _authHandler; |
|
| | |
| PEG_FUNC_EXIT(TRC_USER_MANAGER, METHOD_NAME); |
PEG_METHOD_EXIT(); |
| } | } |
| | |
| // | // |
| |
// Terminates the usermanager; |
| |
// |
| |
void |
| |
UserManager::destroy(void) |
| |
{ |
| |
if (_instance) |
| |
{ |
| |
delete _instance; |
| |
_instance = 0; |
| |
} |
| |
} |
| |
// |
| // Construct the singleton instance of the UserManager and return a | // Construct the singleton instance of the UserManager and return a |
| // pointer to that instance. | // pointer to that instance. |
| // | // |
| UserManager* UserManager::getInstance(CIMRepository* repository) | UserManager* UserManager::getInstance(CIMRepository* repository) |
| { | { |
| const char METHOD_NAME[] = "UserManager::getInstance"; |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::getInstance"); |
| | |
| PEG_FUNC_ENTER(TRC_USER_MANAGER, METHOD_NAME); |
if (!_instance && !repository) |
| |
{ |
| |
PEG_METHOD_EXIT(); |
| |
throw CannotCreateUserManagerInstance(); |
| |
} |
| | |
| if (!_instance && repository) |
if (!_instance) |
| |
{ |
| |
AutoMutex lock(_userManagerMutex); |
| |
if (!_instance) |
| { | { |
| _instance = new UserManager(repository); | _instance = new UserManager(repository); |
| } | } |
| |
} |
| | |
| PEG_FUNC_EXIT(TRC_USER_MANAGER, METHOD_NAME); |
PEG_METHOD_EXIT(); |
| | |
| return _instance; | return _instance; |
| } | } |
|
|
|
| // | // |
| void UserManager::addUser(const String& userName, const String& password) | void UserManager::addUser(const String& userName, const String& password) |
| { | { |
| |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::addUser"); |
| | |
| const char METHOD_NAME[] = "UserManager::addUser"; |
#ifndef PEGASUS_NO_PASSWORDFILE |
| |
|
| PEG_FUNC_ENTER( TRC_USER_MANAGER, METHOD_NAME ); |
|
| |
|
| // | // |
| // Check if the user is a valid system user | // Check if the user is a valid system user |
| // | // |
| ArrayDestroyer<char> un(userName.allocateCString()); |
if ( !System::isSystemUser( userName.getCString() ) ) |
| if ( !System::isSystemUser( un.getPointer() ) ) |
|
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| throw InvalidSystemUser(userName); | throw InvalidSystemUser(userName); |
| } | } |
| | |
|
|
|
| { | { |
| _userFileHandler->addUserEntry(userName,password); | _userFileHandler->addUserEntry(userName,password); |
| } | } |
| catch (Exception& e) |
catch (const Exception&) |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| throw e; |
throw; |
| } | } |
| |
#endif |
| | |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| } | } |
| | |
| // | // |
|
|
|
| const String& password, | const String& password, |
| const String& newPassword ) | const String& newPassword ) |
| { | { |
| const char METHOD_NAME[] = "UserManager::modifyUser"; |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::modifyUser"); |
| |
|
| PEG_FUNC_ENTER( TRC_USER_MANAGER, METHOD_NAME ); |
|
| | |
| |
#ifndef PEGASUS_NO_PASSWORDFILE |
| try | try |
| { | { |
| _userFileHandler->modifyUserEntry(userName, password, newPassword); | _userFileHandler->modifyUserEntry(userName, password, newPassword); |
| } | } |
| catch (Exception& e) |
catch (const Exception&) |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| throw e; |
throw; |
| } | } |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
#endif |
| |
|
| |
PEG_METHOD_EXIT(); |
| } | } |
| | |
| // | // |
|
|
|
| // | // |
| void UserManager::removeUser(const String& userName) | void UserManager::removeUser(const String& userName) |
| { | { |
| const char METHOD_NAME[] = "UserManager::removeUser"; |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::removeUser"); |
| PEG_FUNC_ENTER( TRC_USER_MANAGER, METHOD_NAME ); |
|
| |
#ifndef PEGASUS_NO_PASSWORDFILE |
| try | try |
| { | { |
| _userFileHandler->removeUserEntry(userName); | _userFileHandler->removeUserEntry(userName); |
| } | } |
| catch (Exception& e) |
catch (const Exception&) |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| throw e; |
throw; |
| } | } |
| |
#endif |
| | |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| } | } |
| | |
| | |
|
|
|
| // | // |
| void UserManager::getAllUserNames(Array<String>& userNames) | void UserManager::getAllUserNames(Array<String>& userNames) |
| { | { |
| const char METHOD_NAME[] = "UserManager::getAllUserNames"; |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::getAllUserNames"); |
| PEG_FUNC_ENTER( TRC_USER_MANAGER, METHOD_NAME ); |
|
| | |
| |
#ifndef PEGASUS_NO_PASSWORDFILE |
| try | try |
| { | { |
| _userFileHandler->getAllUserNames( userNames ); | _userFileHandler->getAllUserNames( userNames ); |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| } | } |
| catch (Exception& e) |
catch (const Exception&) |
| { | { |
| throw e; |
throw; |
| } | } |
| |
#endif |
| | |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| } | } |
| | |
| // | // |
|
|
|
| // | // |
| Boolean UserManager::verifyCIMUser (const String& userName) | Boolean UserManager::verifyCIMUser (const String& userName) |
| { | { |
| const char METHOD_NAME[] = "UserManager::verifyCIMUser"; |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::verifyCIMUser"); |
| PEG_FUNC_ENTER( TRC_USER_MANAGER, METHOD_NAME ); |
|
| | |
| |
#ifndef PEGASUS_NO_PASSWORDFILE |
| try | try |
| { | { |
| if ( _userFileHandler->verifyCIMUser( userName )) | if ( _userFileHandler->verifyCIMUser( userName )) |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| return true; | return true; |
| } | } |
| else | else |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| return false; | return false; |
| } | } |
| } | } |
| catch (Exception& e) |
catch (const InvalidUser&) |
| |
{ |
| |
PEG_METHOD_EXIT(); |
| |
throw; |
| |
} |
| |
catch (const Exception&) |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| throw e; |
throw; |
| } | } |
| |
#else |
| |
PEG_METHOD_EXIT(); |
| |
return false; |
| |
#endif |
| } | } |
| | |
| // | // |
|
|
|
| const String& userName, | const String& userName, |
| const String& password) | const String& password) |
| { | { |
| const char METHOD_NAME[] = "UserManager::verifyCIMUserPassword"; |
PEG_METHOD_ENTER(TRC_USER_MANAGER, "UserManager::verifyCIMUserPassword"); |
| PEG_FUNC_ENTER( TRC_USER_MANAGER, METHOD_NAME ); |
|
| | |
| |
#ifndef PEGASUS_NO_PASSWORDFILE |
| try | try |
| { | { |
| if ( _userFileHandler->verifyCIMUserPassword( userName, password )) | if ( _userFileHandler->verifyCIMUserPassword( userName, password )) |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| return true; | return true; |
| } | } |
| else | else |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| return false; | return false; |
| } | } |
| } | } |
| catch (Exception& e) |
catch (const InvalidUser&) |
| |
{ |
| |
PEG_METHOD_EXIT(); |
| |
throw; |
| |
} |
| |
catch (const Exception&) |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| throw e; |
throw; |
| } | } |
| |
#else |
| |
PEG_METHOD_EXIT(); |
| |
return false; |
| |
#endif |
| } | } |
| | |
| // | // |
| // Verify whether the specified namespace is valid | // Verify whether the specified namespace is valid |
| // | // |
| Boolean UserManager::verifyNamespace( const String& myNamespace ) |
Boolean UserManager::verifyNamespace( const CIMNamespaceName& myNamespace ) |
| { | { |
| const char METHOD_NAME[] = "UserManager::verifyNamespace"; |
PEG_METHOD_ENTER(TRC_AUTHORIZATION, "UserManager::verifyNamespace"); |
| PEG_FUNC_ENTER( TRC_USER_MANAGER, METHOD_NAME ); |
|
| | |
| try | try |
| { | { |
| if ( _authHandler->verifyNamespace( myNamespace )) | if ( _authHandler->verifyNamespace( myNamespace )) |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| return true; | return true; |
| } | } |
| else | else |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| return false; | return false; |
| } | } |
| } | } |
| catch (Exception& e) |
catch (const Exception&) |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| throw e; |
throw; |
| } | } |
| } | } |
| | |
|
|
|
| // | // |
| Boolean UserManager::verifyAuthorization( | Boolean UserManager::verifyAuthorization( |
| const String& userName, | const String& userName, |
| const String& nameSpace, |
const CIMNamespaceName& nameSpace, |
| const String& cimMethodName) |
const CIMName& cimMethodName) |
| { | { |
| const char METHOD_NAME[] = "UserManager::verifyAuthorization"; |
PEG_METHOD_ENTER(TRC_AUTHORIZATION, "UserManager::verifyAuthorization"); |
| PEG_FUNC_ENTER( TRC_USER_MANAGER, METHOD_NAME ); |
|
| | |
| try | try |
| { | { |
| if ( _authHandler->verifyAuthorization( | if ( _authHandler->verifyAuthorization( |
| userName, nameSpace, cimMethodName ) ) | userName, nameSpace, cimMethodName ) ) |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| return true; | return true; |
| } | } |
| else | else |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| return false; | return false; |
| } | } |
| } | } |
| catch (Exception& e) |
catch (const Exception&) |
| { | { |
| PEG_FUNC_EXIT( TRC_USER_MANAGER, METHOD_NAME ); |
PEG_METHOD_EXIT(); |
| throw e; |
throw; |
| } | } |
| } | } |
| | |
|
|
|
| // | // |
| void UserManager::setAuthorization( | void UserManager::setAuthorization( |
| const String& userName, | const String& userName, |
| const String& myNamespace, |
const CIMNamespaceName& myNamespace, |
| const String& auth) | const String& auth) |
| { | { |
| |
PEG_METHOD_ENTER(TRC_AUTHORIZATION, "UserManager::setAuthorization"); |
| |
|
| try | try |
| { | { |
| _authHandler->setAuthorization( userName, myNamespace, auth ); | _authHandler->setAuthorization( userName, myNamespace, auth ); |
| } | } |
| catch (Exception& e) |
catch (const Exception&) |
| { | { |
| throw e; |
PEG_METHOD_EXIT(); |
| |
throw; |
| } | } |
| |
|
| |
PEG_METHOD_EXIT(); |
| } | } |
| | |
| // | // |
|
|
|
| // | // |
| void UserManager::removeAuthorization( | void UserManager::removeAuthorization( |
| const String& userName, | const String& userName, |
| const String& myNamespace) |
const CIMNamespaceName& myNamespace) |
| { | { |
| |
PEG_METHOD_ENTER(TRC_AUTHORIZATION, "UserManager::removeAuthorization"); |
| |
|
| try | try |
| { | { |
| _authHandler->removeAuthorization( userName, myNamespace); | _authHandler->removeAuthorization( userName, myNamespace); |
| } | } |
| catch (Exception& e) |
catch (const Exception&) |
| { | { |
| throw e; |
PEG_METHOD_EXIT(); |
| |
throw; |
| } | } |
| |
|
| |
PEG_METHOD_EXIT(); |
| } | } |
| | |
| | |
|
|
|
| // | // |
| String UserManager::getAuthorization( | String UserManager::getAuthorization( |
| const String& userName, | const String& userName, |
| const String& myNamespace) |
const CIMNamespaceName& myNamespace) |
| { | { |
| |
PEG_METHOD_ENTER(TRC_AUTHORIZATION, "UserManager::getAuthorization"); |
| |
|
| String auth = String::EMPTY; | String auth = String::EMPTY; |
| | |
| try | try |
| { | { |
| auth = _authHandler->getAuthorization( userName, myNamespace); | auth = _authHandler->getAuthorization( userName, myNamespace); |
| } | } |
| catch (Exception& e) |
catch (const Exception&) |
| { | { |
| throw e; |
PEG_METHOD_EXIT(); |
| |
throw; |
| } | } |
| | |
| |
PEG_METHOD_EXIT(); |
| |
|
| return auth; | return auth; |
| } | } |
| | |
Return to
UserManager.cpp
CVS log
Up to [Pegasus] / pegasus / src / Pegasus / Security / UserManager