/* * Copyright (C) 2015 Michael Brown . * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU General Public License as * published by the Free Software Foundation; either version 2 of the * License, or any later version. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA * 02110-1301, USA. * * You can also choose to distribute this program under the terms of * the Unmodified Binary Distribution Licence (as given in the file * COPYING.UBDL), provided that you have satisfied its requirements. */ FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL ); /** * @file * * Hyper Text Transfer Protocol (HTTP) authentication * */ #include #include #include #include /** * Identify authentication scheme * * @v http HTTP transaction * @v name Scheme name * @ret auth Authentication scheme, or NULL */ static struct http_authentication * http_authentication ( const char *name ) { struct http_authentication *auth; /* Identify authentication scheme */ for_each_table_entry ( auth, HTTP_AUTHENTICATIONS ) { if ( strcasecmp ( name, auth->name ) == 0 ) return auth; } return NULL; } /** * Parse HTTP "WWW-Authenticate" header * * @v http HTTP transaction * @v line Remaining header line * @ret rc Return status code */ static int http_parse_www_authenticate ( struct http_transaction *http, char *line ) { struct http_authentication *auth; char *name; int rc; /* Get scheme name */ name = http_token ( &line, NULL ); if ( ! name ) { DBGC ( http, "HTTP %p malformed WWW-Authenticate \"%s\"\n", http, line ); return -EPROTO; } /* Identify scheme */ auth = http_authentication ( name ); if ( ! auth ) { DBGC ( http, "HTTP %p unrecognised authentication scheme " "\"%s\"\n", http, name ); /* Ignore; the server may offer other schemes */ return 0; } /* Use first supported scheme */ if ( http->response.auth.auth ) return 0; http->response.auth.auth = auth; /* Parse remaining header line */ if ( ( rc = auth->parse ( http, line ) ) != 0 ) { DBGC ( http, "HTTP %p could not parse %s WWW-Authenticate " "\"%s\": %s\n", http, name, line, strerror ( rc ) ); return rc; } return 0; } /** HTTP "WWW-Authenticate" header */ struct http_response_header http_response_www_authenticate __http_response_header = { .name = "WWW-Authenticate", .parse = http_parse_www_authenticate, }; /** * Construct HTTP "Authorization" header * * @v http HTTP transaction * @v buf Buffer * @v len Length of buffer * @ret len Length of header value, or negative error */ static int http_format_authorization ( struct http_transaction *http, char *buf, size_t len ) { struct http_authentication *auth = http->request.auth.auth; size_t used; int auth_len; int rc; /* Do nothing unless we have an authentication scheme */ if ( ! auth ) return 0; /* Construct header */ used = snprintf ( buf, len, "%s ", auth->name ); auth_len = auth->format ( http, ( buf + used ), ( ( used < len ) ? ( len - used ) : 0 ) ); if ( auth_len < 0 ) { rc = auth_len; return rc; } used += auth_len; return used; } /** HTTP "Authorization" header */ struct http_request_header http_request_authorization __http_request_header = { .name = "Authorization", .format = http_format_authorization, };