/usr/include/pion/http/auth.hpp is in libpion-dev 5.0.7+dfsg-4.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 | // ---------------------------------------------------------------------
// pion: a Boost C++ framework for building lightweight HTTP interfaces
// ---------------------------------------------------------------------
// Copyright (C) 2007-2014 Splunk Inc. (https://github.com/splunk/pion)
//
// Distributed under the Boost Software License, Version 1.0.
// See http://www.boost.org/LICENSE_1_0.txt
//
#ifndef __PION_HTTP_AUTH_HEADER__
#define __PION_HTTP_AUTH_HEADER__
#include <set>
#include <map>
#include <boost/noncopyable.hpp>
#include <boost/shared_ptr.hpp>
#include <pion/config.hpp>
#include <pion/error.hpp>
#include <pion/logger.hpp>
#include <pion/hash_map.hpp>
#include <pion/tcp/connection.hpp>
#include <pion/user.hpp>
#include <pion/http/request.hpp>
#include <boost/date_time/posix_time/posix_time.hpp> // order important, otherwise compiling error under win32
namespace pion { // begin namespace pion
namespace http { // begin namespace http
///
/// auth: a base class for handling HTTP Authentication and session management
///
class PION_API auth :
private boost::noncopyable
{
public:
/// default constructor
auth(user_manager_ptr userManager)
: m_logger(PION_GET_LOGGER("pion.http.auth")),
m_user_manager(userManager)
{}
/// virtual destructor
virtual ~auth() {}
/**
* attempts to validate authentication of a new HTTP request.
* If request valid, pointer to user identity object (if any) will be preserved in
* the request and return "true".
* If request not authenticated, appropriate response is sent over tcp_conn
* and return "false";
*
* @param http_request_ptr the new HTTP request to handle
* @param tcp_conn the TCP connection that has the new request
*
* @return true if request valid and user identity inserted into request
*/
virtual bool handle_request(const http::request_ptr& http_request_ptr, const tcp::connection_ptr& tcp_conn) = 0;
/**
* sets a configuration option
*
* @param name the name of the option to change
* @param value the value of the option
*/
virtual void set_option(const std::string& name, const std::string& value) {
BOOST_THROW_EXCEPTION( error::bad_arg() << error::errinfo_arg_name(name) );
}
/**
* adds a resource that requires authentication
*
* @param resource the resource name or uri-stem that requires authentication
*/
void add_restrict(const std::string& resource);
/**
* adds a resource that does NOT require authentication
*
* @param resource the resource name or uri-stem that does not require authentication
*/
void add_permit(const std::string& resource);
/**
* used to add a new user
*
* @ return false if user with such name already exists
*/
virtual bool add_user(std::string const &username, std::string const &password) {
return m_user_manager->add_user(username, password);
}
/**
* update password for given user
*
* @return false if user with such a name doesn't exist
*/
virtual bool update_user(std::string const &username, std::string const &password) {
return m_user_manager->update_user(username, password);
}
/**
* used to remove given user
*
* @return false if no user with such username
*/
virtual bool remove_user(std::string const &username) {
return m_user_manager->remove_user(username);
};
/**
* Used to locate user object by username
*/
virtual user_ptr get_user(std::string const &username) {
return m_user_manager->get_user(username);
}
protected:
/// data type for a set of resources to be authenticated
typedef std::set<std::string> resource_set_type;
/// data type used to map authentication credentials to user objects
typedef std::map<std::string,std::pair<boost::posix_time::ptime,user_ptr> > user_cache_type;
/**
* check if given HTTP request requires authentication
*
* @param http_request_ptr the HTTP request to check
*/
bool need_authentication(http::request_ptr const& http_request_ptr) const;
/**
* tries to find a resource in a given collection
*
* @param resource_set the collection of resource to look in
* @param resource the resource to look for
*
* @return true if the resource was found
*/
bool find_resource(const resource_set_type& resource_set,
const std::string& resource) const;
/// sets the logger to be used
inline void set_logger(logger log_ptr) { m_logger = log_ptr; }
/// primary logging interface used by this class
mutable logger m_logger;
/// container used to manager user objects
user_manager_ptr m_user_manager;
/// collection of resources that require authentication
resource_set_type m_restrict_list;
/// collection of resources that do NOT require authentication
resource_set_type m_white_list;
/// mutex used to protect access to the resources
mutable boost::mutex m_resource_mutex;
};
/// data type for a auth pointer
typedef boost::shared_ptr<auth> auth_ptr;
} // end namespace http
} // end namespace pion
#endif
|