/* vim: set expandtab ts=4 sw=4: */ /* * You may redistribute this program and/or modify it under the terms of * the GNU General Public License as published by the Free Software Foundation, * either version 3 of the License, or (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "admin/AuthorizedPasswords.h" #include "benc/Int.h" #include "benc/List.h" #include "benc/String.h" struct Context { struct Admin* admin; struct CryptoAuth* ca; struct Allocator* allocator; }; static void sendResponse(String* msg, struct Admin* admin, String* txid, struct Allocator* alloc) { Dict* output = Dict_new(alloc); Dict_putString(output, String_CONST("error"), msg, alloc); Admin_sendMessage(output, txid, admin); } static void add(Dict* args, void* vcontext, String* txid, struct Allocator* alloc) { struct Context* context = (struct Context*) vcontext; String* passwd = Dict_getString(args, String_CONST("password")); int64_t* authType = Dict_getInt(args, String_CONST("authType")); String* user = Dict_getString(args, String_CONST("user")); String* ipv6 = Dict_getString(args, String_CONST("ipv6")); int64_t one = 1; if (!authType) { authType = &one; } else if (*authType < 1 || *authType > 255) { sendResponse(String_CONST("Specified auth type is not supported."), context->admin, txid, alloc); return; } int32_t ret = CryptoAuth_addUser_ipv6(passwd, *authType, user, ipv6, context->ca); switch (ret) { case 0: sendResponse(String_CONST("none"), context->admin, txid, alloc); break; case CryptoAuth_addUser_INVALID_AUTHTYPE: sendResponse(String_CONST("Specified auth type is not supported."), context->admin, txid, alloc); break; case CryptoAuth_addUser_OUT_OF_SPACE: sendResponse(String_CONST("Out of memory to store password."), context->admin, txid, alloc); break; case CryptoAuth_addUser_DUPLICATE: sendResponse(String_CONST("Password already added."), context->admin, txid, alloc); break; case CryptoAuth_addUser_INVALID_IP: sendResponse(String_CONST("Invalid IPv6 Address"), context->admin, txid, alloc); break; default: sendResponse(String_CONST("Unknown error."), context->admin, txid, alloc); } } static void remove(Dict* args, void* vcontext, String* txid, struct Allocator* requestAlloc) { struct Context* context = (struct Context*) vcontext; String* user = Dict_getString(args, String_CONST("user")); int32_t ret = CryptoAuth_removeUsers(context->ca, user); if (ret) { sendResponse(String_CONST("none"), context->admin, txid, requestAlloc); } else { sendResponse(String_CONST("Unknown error."), context->admin, txid, requestAlloc); } } static void list(Dict* args, void* vcontext, String* txid, struct Allocator* requestAlloc) { struct Context* context = (struct Context*) vcontext; struct Allocator* child = Allocator_child(context->allocator); List* users = CryptoAuth_getUsers(context->ca, child); uint32_t count = List_size(users); Dict response = Dict_CONST( String_CONST("total"), Int_OBJ(count), Dict_CONST( String_CONST("users"), List_OBJ(users), NULL )); Admin_sendMessage(&response, txid, context->admin); Allocator_free(child); } void AuthorizedPasswords_init(struct Admin* admin, struct CryptoAuth* ca, struct Allocator* allocator) { struct Context* context = Allocator_malloc(allocator, sizeof(struct Context)); context->admin = admin; context->allocator = allocator; context->ca = ca; Admin_registerFunction("AuthorizedPasswords_add", add, context, true, ((struct Admin_FunctionArg[]){ { .name = "password", .required = 1, .type = "String" }, { .name = "user", .required = 1, .type = "String" }, { .name = "ipv6", .required = 0, .type = "String" }, { .name = "authType", .required = 0, .type = "Int" } }), admin); Admin_registerFunction("AuthorizedPasswords_remove", remove, context, true, ((struct Admin_FunctionArg[]){ { .name = "user", .required = 1, .type = "String" } }), admin); Admin_registerFunction("AuthorizedPasswords_list", list, context, true, NULL, admin); }