Mercurial > dovecot > original-hg > dovecot-1.2
view src/auth/passdb-passwd-file.c @ 4891:6ab2712f1a93 HEAD
Only imap binary was actually working.
| author | Timo Sirainen <tss@iki.fi> |
|---|---|
| date | Sun, 10 Dec 2006 14:35:02 +0200 |
| parents | 2c1cc5bbc260 |
| children | 971050640e3b |
line wrap: on
line source
/* Copyright (C) 2002-2003 Timo Sirainen */ #include "common.h" #ifdef PASSDB_PASSWD_FILE #include "str.h" #include "auth-cache.h" #include "var-expand.h" #include "passdb.h" #include "password-scheme.h" #include "db-passwd-file.h" #define PASSWD_FILE_CACHE_KEY "%u" #define PASSWD_FILE_DEFAULT_SCHEME "CRYPT" struct passwd_file_passdb_module { struct passdb_module module; struct auth *auth; struct db_passwd_file *pwf; }; static void passwd_file_save_results(struct auth_request *request, const struct passwd_user *pu, const char **crypted_pass_r, const char **scheme_r) { const struct var_expand_table *table; const char *key, *value; string_t *str; char **p; *crypted_pass_r = pu->password; *scheme_r = password_get_scheme(crypted_pass_r); if (*scheme_r == NULL) *scheme_r = request->passdb->passdb->default_pass_scheme; /* save the password so cache can use it */ if (*crypted_pass_r != NULL) { auth_request_set_field(request, "password", *crypted_pass_r, *scheme_r); } if (pu->extra_fields != NULL) { t_push(); str = t_str_new(512); table = auth_request_get_var_expand_table(request, NULL); for (p = pu->extra_fields; *p != NULL; p++) { value = strchr(*p, '='); if (value != NULL) { key = t_strdup_until(*p, value); str_truncate(str, 0); var_expand(str, value + 1, table); value = str_c(str); } else { key = *p; value = ""; } auth_request_set_field(request, key, value, NULL); } t_pop(); } } static void passwd_file_verify_plain(struct auth_request *request, const char *password, verify_plain_callback_t *callback) { struct passdb_module *_module = request->passdb->passdb; struct passwd_file_passdb_module *module = (struct passwd_file_passdb_module *)_module; struct passwd_user *pu; const char *scheme, *crypted_pass; int ret; pu = db_passwd_file_lookup(module->pwf, request); if (pu == NULL) { callback(PASSDB_RESULT_USER_UNKNOWN, request); return; } passwd_file_save_results(request, pu, &crypted_pass, &scheme); ret = auth_request_password_verify(request, password, crypted_pass, scheme, "passwd-file"); callback(ret > 0 ? PASSDB_RESULT_OK : PASSDB_RESULT_PASSWORD_MISMATCH, request); } static void passwd_file_lookup_credentials(struct auth_request *request, lookup_credentials_callback_t *callback) { struct passdb_module *_module = request->passdb->passdb; struct passwd_file_passdb_module *module = (struct passwd_file_passdb_module *)_module; struct passwd_user *pu; const char *crypted_pass, *scheme; pu = db_passwd_file_lookup(module->pwf, request); if (pu == NULL) { callback(PASSDB_RESULT_USER_UNKNOWN, NULL, request); return; } passwd_file_save_results(request, pu, &crypted_pass, &scheme); passdb_handle_credentials(PASSDB_RESULT_OK, crypted_pass, scheme, callback, request); } static struct passdb_module * passwd_file_preinit(struct auth_passdb *auth_passdb, const char *args) { struct passwd_file_passdb_module *module; module = p_new(auth_passdb->auth->pool, struct passwd_file_passdb_module, 1); module->auth = auth_passdb->auth; module->pwf = db_passwd_file_init(args, FALSE, module->auth->verbose_debug); if (!module->pwf->vars) module->module.cache_key = PASSWD_FILE_CACHE_KEY; else { module->module.cache_key = auth_cache_parse_key(auth_passdb->auth->pool, t_strconcat(PASSWD_FILE_CACHE_KEY, module->pwf->path, NULL)); } module->module.default_pass_scheme = PASSWD_FILE_DEFAULT_SCHEME; return &module->module; } static void passwd_file_init(struct passdb_module *_module, const char *args __attr_unused__) { struct passwd_file_passdb_module *module = (struct passwd_file_passdb_module *)_module; db_passwd_file_parse(module->pwf); } static void passwd_file_deinit(struct passdb_module *_module) { struct passwd_file_passdb_module *module = (struct passwd_file_passdb_module *)_module; db_passwd_file_unref(&module->pwf); } struct passdb_module_interface passdb_passwd_file = { "passwd-file", passwd_file_preinit, passwd_file_init, passwd_file_deinit, passwd_file_verify_plain, passwd_file_lookup_credentials, NULL }; #endif