Home Explore Help
Register Sign In
lugt
/
click_hdfs
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: efaed54c90
Branches Tags
click_hdfs
/
contirb
/
libhdfspp
/
lib
/
common
/
sasl_authenticator.h

sasl_authenticator.h 2.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566 
  1. /**
    2. 

  2.  * Licensed to the Apache Software Foundation (ASF) under one
    3. 

  3.  * or more contributor license agreements.  See the NOTICE file
    4. 

  4.  * distributed with this work for additional information
    5. 

  5.  * regarding copyright ownership.  The ASF licenses this file
    6. 

  6.  * to you under the Apache License, Version 2.0 (the
    7. 

  7.  * "License"); you may not use this file except in compliance
    8. 

  8.  * with the License.  You may obtain a copy of the License at
    9. 

  9.  *
    10. 

  10.  *     http://www.apache.org/licenses/LICENSE-2.0
    11. 

  11.  *
    12. 

  12.  * Unless required by applicable law or agreed to in writing, software
    13. 

  13.  * distributed under the License is distributed on an "AS IS" BASIS,
    14. 

  14.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    15. 

  15.  * See the License for the specific language governing permissions and
    16. 

  16.  * limitations under the License.
    17. 

  17.  */
    18. 

  18. #ifndef COMMON_SASL_AUTHENTICATOR_H_
    19. 

  19. #define COMMON_SASL_AUTHENTICATOR_H_
    20. 

  20. 

  21. #include "libhdfs++/status.h"
    22. 

  22. 

  23. namespace hdfs {
    24. 

  24. 

  25. class DigestMD5AuthenticatorTest_TestResponse_Test;
    26. 

  26. 

  27. /**
    28. 

  28.  * A specialized implementation of RFC 2831 for the HDFS
    29. 

  29.  * DataTransferProtocol.
    30. 

  30.  *
    31. 

  31.  * The current lacks the following features:
    32. 

  32.  *   * Encoding the username, realm, and password in ISO-8859-1 when
    33. 

  33.  * it is required by the RFC. They are always encoded in UTF-8.
    34. 

  34.  *   * Checking whether the challenges from the server are
    35. 

  35.  * well-formed.
    36. 

  36.  *   * Specifying authzid, digest-uri and maximum buffer size.
    37. 

  37.  *   * Supporting QOP other than the auth level.
    38. 

  38.  **/
    39. 

  39. class DigestMD5Authenticator {
    40. 

  40.  public:
    41. 

  41.   Status EvaluateResponse(const std::string &payload, std::string *result);
    42. 

  42.   DigestMD5Authenticator(const std::string &username, const std::string &password,
    43. 

  43.                          bool mock_nonce = false);
    44. 

  44. 

  45.  private:
    46. 

  46.   Status GenerateFirstResponse(std::string *result);
    47. 

  47.   Status GenerateResponseValue(std::string *response_value);
    48. 

  48.   Status ParseFirstChallenge(const std::string &payload);
    49. 

  49. 

  50.   static size_t NextToken(const std::string &payload, size_t off, std::string *tok);
    51. 

  51.   void GenerateCNonce();
    52. 

  52.   std::string username_;
    53. 

  53.   std::string password_;
    54. 

  54.   std::string nonce_;
    55. 

  55.   std::string cnonce_;
    56. 

  56.   std::string realm_;
    57. 

  57.   std::string qop_;
    58. 

  58.   unsigned nonce_count_;
    59. 

  59. 

  60.   const bool TEST_mock_cnonce_;
    61. 

  61.   friend class DigestMD5AuthenticatorTest_TestResponse_Test;
    62. 

  62. };
    63. 

  63. 

  64. }
    65. 

  65. 

  66. #endif
    67.