[thirdparty/squid.git] / src / auth / digest / Config.h

/*
 * Copyright (C) 1996-2023 The Squid Software Foundation and contributors
 *
 * Squid software is distributed under GPLv2+ license and includes
 * contributions from numerous individuals and organizations.
 * Please see the COPYING and CONTRIBUTORS files for details.
 */

#ifndef SQUID_SRC_AUTH_DIGEST_CONFIG_H
#define SQUID_SRC_AUTH_DIGEST_CONFIG_H

#if HAVE_AUTH_MODULE_DIGEST

#include "auth/Gadgets.h"
#include "auth/SchemeConfig.h"
#include "auth/UserRequest.h"
#include "helper/forward.h"
#include "rfc2617.h"

namespace Auth
{
namespace Digest
{
class User;
}
}

/* Generic */
typedef struct _digest_nonce_data digest_nonce_data;
typedef struct _digest_nonce_h digest_nonce_h;

/* data to be encoded into the nonce's hex representation */
struct _digest_nonce_data {
    time_t creationtime;
    uint32_t randomdata;
};

/* the nonce structure we'll pass around */

struct _digest_nonce_h : public hash_link {
    digest_nonce_data noncedata;
    /* number of uses we've seen of this nonce */
    unsigned long nc;
    /* reference count */
    uint64_t references;
    /* the auth_user this nonce has been tied to */
    Auth::Digest::User *user;
    /* has this nonce been invalidated ? */

    struct {
        bool valid;
        bool incache;
    } flags;
};

void authDigestNonceUnlink(digest_nonce_h * nonce);
int authDigestNonceIsValid(digest_nonce_h * nonce, char nc[9]);
int authDigestNonceIsStale(digest_nonce_h * nonce);
const char *authenticateDigestNonceNonceHex(const digest_nonce_h * nonce);
int authDigestNonceLastRequest(digest_nonce_h * nonce);
void authenticateDigestNonceShutdown(void);
void authDigestNoncePurge(digest_nonce_h * nonce);
void authDigestUserLinkNonce(Auth::Digest::User * user, digest_nonce_h * nonce);
digest_nonce_h *authenticateDigestNonceNew(void);

namespace Auth
{
namespace Digest
{

/** Digest Authentication configuration data */
class Config : public Auth::SchemeConfig
{
public:
    Config();
    bool active() const override;
    bool configured() const override;
    Auth::UserRequest::Pointer decode(char const *proxy_auth, const HttpRequest *request, const char *requestRealm) override;
    void done() override;
    void rotateHelpers() override;
    bool dump(StoreEntry *, const char *, Auth::SchemeConfig *) const override;
    void fixHeader(Auth::UserRequest::Pointer, HttpReply *, Http::HdrType, HttpRequest *) override;
    void init(Auth::SchemeConfig *) override;
    void parse(Auth::SchemeConfig *, int, char *) override;
    void registerWithCacheManager(void) override;
    const char * type() const override;

public:
    time_t nonceGCInterval;
    time_t noncemaxduration;
    unsigned int noncemaxuses;
    int NonceStrictness;
    int CheckNonceCount;
    int PostWorkaround;
};

} // namespace Digest
} // namespace Auth

/* strings */
#define QOP_AUTH "auth"

extern Helper::ClientPointer digestauthenticators;

#endif /* HAVE_AUTH_MODULE_DIGEST */
#endif /* SQUID_SRC_AUTH_DIGEST_CONFIG_H */
Commit	Line	Data
bbc27441	1	/*
b8ae064d	2	* Copyright (C) 1996-2023 The Squid Software Foundation and contributors
bbc27441 AJ	3	*
	4	* Squid software is distributed under GPLv2+ license and includes
	5	* contributions from numerous individuals and organizations.
	6	* Please see the COPYING and CONTRIBUTORS files for details.
	7	*/
	8
ff9d9458 FC	9	#ifndef SQUID_SRC_AUTH_DIGEST_CONFIG_H
ff9d9458 FC	10	#define SQUID_SRC_AUTH_DIGEST_CONFIG_H
928f3421	11
a0026a6c AJ	12	#if HAVE_AUTH_MODULE_DIGEST
a0026a6c AJ	13
3ad63615	14	#include "auth/Gadgets.h"
ae578099	15	#include "auth/SchemeConfig.h"
2d2b0bb7	16	#include "auth/UserRequest.h"
24438ec5	17	#include "helper/forward.h"
928f3421	18	#include "rfc2617.h"
aa839030	19
aa110616 AJ	20	namespace Auth
	21	{
	22	namespace Digest
	23	{
	24	class User;
	25	}
	26	}
62e76326	27
aa110616	28	/* Generic */
2d70df72	29	typedef struct _digest_nonce_data digest_nonce_data;
2d70df72	30	typedef struct _digest_nonce_h digest_nonce_h;
2d70df72	31
b20ce974	32	/* data to be encoded into the nonce's hex representation */
26ac0430	33	struct _digest_nonce_data {
2d70df72	34	time_t creationtime;
42df4209	35	uint32_t randomdata;
2d70df72	36	};
	37
	38	/* the nonce structure we'll pass around */
62e76326	39
26ac0430	40	struct _digest_nonce_h : public hash_link {
2d70df72	41	digest_nonce_data noncedata;
2d70df72	42	/* number of uses we've seen of this nonce */
e6ccf245	43	unsigned long nc;
2d70df72	44	/* reference count */
aba0474c	45	uint64_t references;
2d70df72	46	/* the auth_user this nonce has been tied to */
aa110616	47	Auth::Digest::User *user;
2d70df72	48	/* has this nonce been invalidated ? */
62e76326	49
26ac0430	50	struct {
3dd52a0b FC	51	bool valid;
3dd52a0b FC	52	bool incache;
3d0ac046	53	} flags;
2d70df72	54	};
2d70df72	55
8a648e8d FC	56	void authDigestNonceUnlink(digest_nonce_h * nonce);
8a648e8d FC	57	int authDigestNonceIsValid(digest_nonce_h * nonce, char nc[9]);
572d2e31	58	int authDigestNonceIsStale(digest_nonce_h * nonce);
b20ce974	59	const char authenticateDigestNonceNonceHex(const digest_nonce_h nonce);
8a648e8d FC	60	int authDigestNonceLastRequest(digest_nonce_h * nonce);
	61	void authenticateDigestNonceShutdown(void);
	62	void authDigestNoncePurge(digest_nonce_h * nonce);
572d2e31 HN	63	void authDigestUserLinkNonce(Auth::Digest::User * user, digest_nonce_h * nonce);
572d2e31 HN	64	digest_nonce_h *authenticateDigestNonceNew(void);
928f3421	65
bb8909c3 A	66	namespace Auth
	67	{
	68	namespace Digest
	69	{
62e76326	70
372fccd6	71	/** Digest Authentication configuration data */
dc79fed8	72	class Config : public Auth::SchemeConfig
62e76326	73	{
f5691f9c	74	public:
372fccd6	75	Config();
337b9aa4 AR	76	bool active() const override;
	77	bool configured() const override;
	78	Auth::UserRequest::Pointer decode(char const proxy_auth, const HttpRequest request, const char *requestRealm) override;
	79	void done() override;
	80	void rotateHelpers() override;
	81	bool dump(StoreEntry , const char , Auth::SchemeConfig *) const override;
	82	void fixHeader(Auth::UserRequest::Pointer, HttpReply , Http::HdrType, HttpRequest ) override;
	83	void init(Auth::SchemeConfig *) override;
	84	void parse(Auth::SchemeConfig , int, char ) override;
	85	void registerWithCacheManager(void) override;
	86	const char * type() const override;
9f3d2b2e AJ	87
9f3d2b2e AJ	88	public:
2d70df72	89	time_t nonceGCInterval;
2d70df72	90	time_t noncemaxduration;
e6ccf245	91	unsigned int noncemaxuses;
d205783b	92	int NonceStrictness;
f5292c64	93	int CheckNonceCount;
f5292c64	94	int PostWorkaround;
2d70df72	95	};
2d70df72	96
372fccd6 AJ	97	} // namespace Digest
372fccd6 AJ	98	} // namespace Auth
2d70df72	99
	100	/* strings */
	101	#define QOP_AUTH "auth"
	102
3bd118d6	103	extern Helper::ClientPointer digestauthenticators;
928f3421	104
a0026a6c	105	#endif /* HAVE_AUTH_MODULE_DIGEST */
ff9d9458	106	#endif /* SQUID_SRC_AUTH_DIGEST_CONFIG_H */
f53969cc	107