src/server/daemon/keyfile_auth.h

Sun, 11 Jun 2023 15:53:55 +0200

author
Olaf Wintermann <olaf.wintermann@gmail.com>
date
Sun, 11 Jun 2023 15:53:55 +0200
changeset 502
11ac3761c0e3
parent 467
4d038bc6f86e
permissions
-rw-r--r--

fix non-blocking CGI handler and non-blocking SSL-IO

/*
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
 *
 * Copyright 2013 Olaf Wintermann. All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions are met:
 *
 *   1. Redistributions of source code must retain the above copyright
 *      notice, this list of conditions and the following disclaimer.
 *
 *   2. Redistributions in binary form must reproduce the above copyright
 *      notice, this list of conditions and the following disclaimer in the
 *      documentation and/or other materials provided with the distribution.
 *
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE
 * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
 * POSSIBILITY OF SUCH DAMAGE.
 */

#ifndef KEYFILE_AUTH_H
#define	KEYFILE_AUTH_H

#include "../public/auth.h"

#include <cx/map.h>
#include <inttypes.h>

#ifdef	__cplusplus
extern "C" {
#endif

typedef struct keyfile        Keyfile;
typedef struct keyfile_user   KeyfileUser;
    
enum KeyfileHashType {
    KEYFILE_SSHA = 0,
    KEYFILE_SSHA256,
    KEYFILE_SSHA512
};

struct keyfile {
    AuthDB       authdb;
    CxMap       *users;
};

struct keyfile_user {
    User                 user;
    cxmutstr             *groups;
    size_t               numgroups;
    enum KeyfileHashType hash_type;
    char                 *hash;
    size_t               hashlen;
};

Keyfile* keyfile_new(CxAllocator *a);

int keyfile_add_user(
        Keyfile *keyfile,
        cxmutstr user,
        enum KeyfileHashType hash_type,
        cxmutstr hash,
        cxmutstr *groups,
        size_t ngroups);

User* keyfile_get_user(AuthDB *db, Session *sn, Request *rq, const char *user);
int keyfile_user_verify_password(User *user, const char *password);
int keyfile_user_check_group(User *user, const char *group);
void keyfile_user_free(User *user);

// SSHA password compare
int ssha_verify(KeyfileUser *user, const char *password);

#ifdef	__cplusplus
}
#endif

#endif	/* KEYFILE_AUTH_H */

mercurial