pegasus/src/Pegasus/Server/HTTPAuthenticatorDelegator.cpp - diff

Return to HTTPAuthenticatorDelegator.cpp CVS log

Up to [Pegasus] / pegasus / src / Pegasus / Server

Diff for /pegasus/src/Pegasus/Server/HTTPAuthenticatorDelegator.cpp between version 1.51 and 1.52

version 1.51, 2005/07/22 21:54:09

version 1.52, 2005/07/26 00:06:18

Line 35

// Amit K Arora, IBM (amita@in.ibm.com) for PEP#101

// David Dillard, VERITAS Software Corp.

// (david.dillard@veritas.com)

// John Alex, IBM (johnalex@us.ibm.com) - Bug#2290

//%/////////////////////////////////////////////////////////////////////////////

Line 91

Line 92

void HTTPAuthenticatorDelegator::_sendResponse(

Uint32 queueId,

Array<char>& message)

Array<char>& message,

Boolean closeConnect)

{

PEG_METHOD_ENTER(TRC_HTTP,

"HTTPAuthenticatorDelegator::_sendResponse");

Line 103

Line 105

HTTPMessage* httpMessage = new HTTPMessage(message);

httpMessage->dest = queue->getQueueId();

httpMessage->setCloseConnect(closeConnect);

queue->enqueue(httpMessage);

}

Line 112

Line 116

#ifdef PEGASUS_KERBEROS_AUTHENTICATION

void HTTPAuthenticatorDelegator::_sendSuccess(

Uint32 queueId,

const String& authResponse)

const String& authResponse,

Boolean closeConnect)

{

PEG_METHOD_ENTER(TRC_HTTP,

"HTTPAuthenticatorDelegator::_sendSuccess");

Line 124

Line 129

Array<char> message;

XmlWriter::appendOKResponseHeader(message, authResponse);

_sendResponse(queueId, message);

_sendResponse(queueId, message,closeConnect);

PEG_METHOD_EXIT();

}

Line 132

Line 137

void HTTPAuthenticatorDelegator::_sendChallenge(

Uint32 queueId,

const String& authResponse)

const String& authResponse,

Boolean closeConnect)

{

PEG_METHOD_ENTER(TRC_HTTP,

"HTTPAuthenticatorDelegator::_sendChallenge");

Line 144

Line 150

Array<char> message;

XmlWriter::appendUnauthorizedResponseHeader(message, authResponse);

_sendResponse(queueId, message);

_sendResponse(queueId, message,closeConnect);

PEG_METHOD_EXIT();

}

Line 154

Line 160

Uint32 queueId,

const String& status,

const String& cimError,

const String& pegasusError)

const String& pegasusError,

Boolean closeConnect)

{

PEG_METHOD_ENTER(TRC_HTTP,

"HTTPAuthenticatorDelegator::_sendHttpError");

Line 169

Line 176

cimError,

pegasusError);

_sendResponse(queueId, message);

_sendResponse(queueId, message,closeConnect);

PEG_METHOD_EXIT();

}

Line 198

Line 205

if (deleteMessage)

{

PEG_TRACE_STRING(TRC_HTTP, Tracer::LEVEL3,

"Deleting Message in HTTPAuthenticator::handleEnqueue");

delete message;

}

Line 245

Line 255

String startLine;

Array<HTTPHeader> headers;

Uint32 contentLength;

String connectClose;

Boolean closeConnect = false;

httpMessage->parse(startLine, headers, contentLength);

// Check for Connection: Close

if(HTTPMessage::lookupHeader(headers, "Connection", connectClose, false))

{

if (String::equalNoCase(connectClose, "Close"))

{

PEG_TRACE_STRING(TRC_HTTP, Tracer::LEVEL3,

"Header in HTTP Message Contains a Connection: Close");

closeConnect = true;

httpMessage->setCloseConnect(closeConnect);

}

// Check if the request was received on the export connection.

// Do not accept CIMOperation requests on the export connection.

// Username-password authentication is not done for CIMExport requests

Line 274

Line 301

String msg(MessageLoader::getMessage(msgParms));

PEG_METHOD_EXIT();

_sendHttpError(queueId,

_sendHttpError(

queueId,

HTTP_STATUS_FORBIDDEN,

String::EMPTY,

msg);

msg,

closeConnect);

}

Line 323

Line 352

PEGASUS_ASSERT(0);

PEG_METHOD_EXIT();

_sendHttpError(queueId, HTTP_STATUS_BADREQUEST);

_sendHttpError(

queueId,

HTTP_STATUS_BADREQUEST,

String::EMPTY,

closeConnect);

}

PEG_METHOD_EXIT();

return;

Line 367

Line 401

MessageLoaderParms msgParms("Pegasus.Server.HTTPAuthenticatorDelegator.BAD_CERTIFICATE",

"The certificate used for authentication is not valid.");

String msg(MessageLoader::getMessage(msgParms));

_sendHttpError(queueId,

_sendHttpError(

queueId,

HTTP_STATUS_UNAUTHORIZED,

String::EMPTY,

msg);

msg,

closeConnect);

PEG_METHOD_EXIT();

return;

}

Line 443

Line 479

"The certificate used for authentication is not valid.");

String msg(MessageLoader::getMessage(msgParms));

PEG_TRACE_STRING(TRC_HTTP, Tracer::LEVEL3, msg);

_sendHttpError(queueId,

_sendHttpError(

queueId,

HTTP_STATUS_UNAUTHORIZED,

String::EMPTY,

msg);

msg,

closeConnect);

PEG_METHOD_EXIT();

return;

}

Line 467

Line 505

PEG_METHOD_EXIT();

return;

}

httpMessage->authInfo->setAuthenticatedUser(userName);

PEG_TRACE_STRING(TRC_HTTP, Tracer::LEVEL3, "User name for certificate is " + userName);

Line 481

Line 520

"No username is registered to this certificate.");

String msg(MessageLoader::getMessage(msgParms));

PEG_TRACE_STRING(TRC_HTTP, Tracer::LEVEL3, msg);

_sendHttpError(queueId,

_sendHttpError(

queueId,

HTTP_STATUS_UNAUTHORIZED,

String::EMPTY,

msg);

msg,

closeConnect);

PEG_METHOD_EXIT();

return;

}

Line 506

Line 547

return;

}

httpMessage->authInfo->setAuthenticatedUser(trustStoreUserName);

PEG_TRACE_STRING(TRC_HTTP, Tracer::LEVEL3, "User name for certificate is " + trustStoreUserName);

PEG_TRACE_STRING(

Logger::put(Logger::STANDARD_LOG, System::CIMSERVER, Logger::TRACE,

TRC_HTTP,

"HTTPAuthenticatorDelegator - The trusted client certificate is registered to $0.", trustStoreUserName);

Tracer::LEVEL3,

"User name for certificate is " + trustStoreUserName);

Logger::put(

Logger::STANDARD_LOG,

System::CIMSERVER,

Logger::TRACE,

"HTTPAuthenticatorDelegator - The trusted client certificate is registered to $0.",

trustStoreUserName);

}

Line 555

Line 604

MessageLoaderParms msgParms("Pegasus.Server.HTTPAuthenticatorDelegator.REQUEST_NOT_VALID","request-not-valid");

String msg(MessageLoader::getMessage(msgParms));

_sendHttpError(queueId, HTTP_STATUS_BADREQUEST,

_sendHttpError(

queueId,

HTTP_STATUS_BADREQUEST,

msg,

e.getMessage());

e.getMessage(),

closeConnect);

PEG_METHOD_EXIT();

return;

}

Line 589

Line 641

if (methodName != "M-POST" && methodName != "POST")

{

// Only POST and M-POST are implemented by this server

_sendHttpError(queueId,

_sendHttpError(

HTTP_STATUS_NOTIMPLEMENTED);

queueId,

HTTP_STATUS_NOTIMPLEMENTED,

String::EMPTY,

closeConnect);

}

else if ((httpMethod == HTTP_METHOD_M_POST) &&

(httpVersion == "HTTP/1.0"))

Line 598

Line 654

// M-POST method is not valid with version 1.0

_sendHttpError(queueId,

_sendHttpError(

HTTP_STATUS_BADREQUEST);

queueId,

HTTP_STATUS_BADREQUEST,

String::EMPTY,

closeConnect);

}

else

{

Line 644

Line 704

if (!String::equal(authResp, String::EMPTY))

{

_sendChallenge(queueId, authResp);

_sendChallenge(queueId, authResp,closeConnect);

}

else

{

MessageLoaderParms msgParms("Pegasus.Server.HTTPAuthenticatorDelegator.AUTHORIZATION_HEADER_ERROR","Authorization header error");

String msg(MessageLoader::getMessage(msgParms));

_sendHttpError(queueId,

_sendHttpError(

queueId,

HTTP_STATUS_BADREQUEST,

String::EMPTY,

msg);

msg,

closeConnect);

}

PEG_METHOD_EXIT();

Line 662

Line 724

}

catch (const CannotOpenFile &)

{

_sendHttpError(queueId,

_sendHttpError(

HTTP_STATUS_INTERNALSERVERERROR);

queueId,

HTTP_STATUS_INTERNALSERVERERROR,

String::EMPTY,

closeConnect);

PEG_METHOD_EXIT();

return;

Line 714

Line 780

#endif

if (!String::equal(authResp, String::EMPTY))

{

_sendChallenge(queueId, authResp);

_sendChallenge(queueId, authResp,closeConnect);

}

else

{

MessageLoaderParms msgParms("Pegasus.Server.HTTPAuthenticatorDelegator.AUTHORIZATION_HEADER_ERROR","Authorization header error");

String msg(MessageLoader::getMessage(msgParms));

_sendHttpError(queueId,

_sendHttpError(

queueId,

HTTP_STATUS_BADREQUEST,

String::EMPTY,

msg);

msg,

closeConnect);

}

PEG_METHOD_EXIT();

Line 749

Line 817

{

MessageLoaderParms msgParms("Pegasus.Server.HTTPAuthenticatorDelegator.AUTHORIZATION_HEADER_ERROR","Authorization header error");

String msg(MessageLoader::getMessage(msgParms));

_sendHttpError(queueId,

_sendHttpError(

queueId,

HTTP_STATUS_BADREQUEST,

String::EMPTY,

msg);

msg,

closeConnect);

}

else

{

if (sendAction == 1) // Send success

{

_sendSuccess(queueId,

_sendSuccess(

String(httpMessage->message.getData(), httpMessage->message.size()));

queueId,

String(

httpMessage->message.getData(),httpMessage->message.size()),

closeConnect);

}

if (sendAction == 2) // Send response

{

_sendResponse(queueId, httpMessage->message);

_sendResponse(queueId, httpMessage->message,closeConnect);

}

Line 804

Line 877

catch(const bad_alloc &)

{

delete httpMessage;

_sendHttpError(queueId,

_sendHttpError(

HTTP_STATUS_REQUEST_TOO_LARGE);

queueId,

HTTP_STATUS_REQUEST_TOO_LARGE,

String::EMPTY,

closeConnect);

PEG_METHOD_EXIT();

deleteMessage = false;

return;

Line 856

Line 933

// without the CIMError header since this request must not be

// processed as a CIM request.

_sendHttpError(queueId,

_sendHttpError(

HTTP_STATUS_BADREQUEST);

queueId,

HTTP_STATUS_BADREQUEST,

String::EMPTY,

closeConnect);

PEG_METHOD_EXIT();

return;

} // bad request

Line 874

Line 955

if (!String::equal(authResp, String::EMPTY))

{

_sendChallenge(queueId, authResp);

_sendChallenge(queueId, authResp,closeConnect);

}

else

{

MessageLoaderParms msgParms("Pegasus.Server.HTTPAuthenticatorDelegator.AUTHORIZATION_HEADER_ERROR","Authorization header error");

String msg(MessageLoader::getMessage(msgParms));

_sendHttpError(queueId,

_sendHttpError(

queueId,

HTTP_STATUS_BADREQUEST,

String::EMPTY,

msg);

msg,

closeConnect);

}

} // M-POST and POST processing

Legend:

Removed from v.1.51
changed lines
	Added in v.1.52

No CVS admin address has been configured