summaryrefslogtreecommitdiff
path: root/libs/networking/include/Authorization.h
blob: fa04bd43bee05076fee4b6fb1fde25c3acc12724 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
/**
 * ======================== legal notice ======================
 * 
 * File:      Authorization.h
 * Created:   3. Juli 2012, 17:27
 * Author:    <a href="mailto:geronimo013@gmx.de">Geronimo</a>
 * Project:   libnetworking: classes for tcp/ip sockets and http-protocol handling
 * 
 * CMP - compound media player
 * 
 * is a client/server mediaplayer intended to play any media from any workstation
 * without the need to export or mount shares. cmps is an easy to use backend
 * with a (ready to use) HTML-interface. Additionally the backend supports
 * authentication via HTTP-digest authorization.
 * cmpc is a client with vdr-like osd-menues.
 * 
 * Copyright (c) 2012 Reinhard Mantey, some rights reserved!
 * published under Creative Commons by-sa
 * For details see http://creativecommons.org/licenses/by-sa/3.0/
 * 
 * The cmp project's homepage is at http://projects.vdr-developer.org/projects/cmp
 * 
 * --------------------------------------------------------------
 */
#ifndef AUTHORIZATION_H
#define	AUTHORIZATION_H

#include <HTTPRequest.h>
#include <Principal.h>
#include <string.h>
#include <stdlib.h>
#include <stddef.h>
#include <time.h>
#include <ManagedVector.h>

class cAuthorization {
public:
  cAuthorization(const cHTTPRequest &OriginalRequest, char *NOnceFromHeap);
  cAuthorization(cHTTPRequest::HTTPRequestMethod Method, const char *Raw);
  cAuthorization(const cAuthorization &other);
  cAuthorization(const cPrincipal *Principal, cHTTPRequest::HTTPRequestMethod Method, const cAuthorization &other);
  virtual ~cAuthorization();
  cAuthorization &operator =(const cAuthorization &other);
  size_t Write(char *Buffer, size_t BufSize);
  const char *CalculateResponse(const char *Uri = NULL, const char *Username = NULL, const char *Password = NULL);
  void Dump(void) const;
  const char *Uri(void) const { return uri; }
  const char *Response(void) const { return response; }
  const char *CNOnce(void) const { return cnonce; }
  const char *NOnce(void) const { return nonce; }
  const char *Opaque(void) const { return opaque; }
  const char *UserID(void) const {
    if (principal) return principal->Name();
    else if (tmp) return tmp->Name();
    return NULL;
  }
  const char *UserCredential(void) const {
    if (principal) return principal->Hash();
    else if (tmp) return tmp->Hash();
    return NULL;
  }
  const char *Realm(void) const {
    if (principal) return principal->Realm();
    else if (tmp) return tmp->Realm();
    return NULL;
  }
  void SetUser(const char *UserID, const char *Password);
  char *CalculateA1(const char *Username = NULL, const char *Password = NULL);
  char *CalculateA2(const char *Uri);

protected:
  virtual void ParseRawBuffer(const char *Raw);
  virtual void CreateClientHash();
  const cPrincipal *Principal(void) const { return principal; }
  void SetAttribute(char *Name, const char *Value);
  void SetOpaque(char *Value);
  void SetPrincipal(const cPrincipal *Principal) { principal = Principal; }

private:
  void SetServerID(const char *ServerID) { free(serverID); serverID = ServerID ? strdup(ServerID) : NULL; }
  void SetUri(const char *Uri) { free(uri); uri = Uri ? strdup(Uri) : NULL; }
  cPrincipal *tmp;
  const cPrincipal *principal;
  cHTTPRequest::HTTPRequestMethod method;
  char *serverID;
  bool sessAlgo;
  char *nonce;
  char *uri;
  char *response;
  char *opaque;
  char *cnonce;
  char *qop;
  int counter;
  time_t authTime;
  friend class cHTTPResponse;
  friend class cHTTPRequest;
  friend class cAuthorizations;
  friend class cConnectionHandler;
  };

class cConnectionPoint;
class cAuthorizations : public cManagedVector {
public:
  cAuthorizations();
  virtual ~cAuthorizations();

  cAuthorization *FindAuthorization(const char *SessionID);
  void Del(cAuthorization *Auth2Invalidate);
  const cAuthorization &CreateAuthorization(const cHTTPRequest &OriginalRequest, const cConnectionPoint &client, unsigned long connectionNumber);
  static char *CreateNOnce(const cConnectionPoint &client, unsigned long connectionNumber);
  static char *CreateSessionID(const cHTTPRequest &OriginalRequest, time_t AuthTime);
  };

#endif	/* AUTHORIZATION_H */