4
* DEBUG: section 28 Access Control
5
* AUTHOR: Duane Wessels
7
* SQUID Web Proxy Cache http://www.squid-cache.org/
8
* ----------------------------------------------------------
10
* Squid is the result of efforts by numerous individuals from
11
* the Internet community; see the CONTRIBUTORS file for full
12
* details. Many organizations have provided support for Squid's
13
* development; see the SPONSORS file for full details. Squid is
14
* Copyrighted (C) 2001 by the Regents of the University of
15
* California; see the COPYRIGHT file for full details. Squid
16
* incorporates software developed and/or copyrighted by other
17
* sources; see the CREDITS file for full details.
19
* This program is free software; you can redistribute it and/or modify
20
* it under the terms of the GNU General Public License as published by
21
* the Free Software Foundation; either version 2 of the License, or
22
* (at your option) any later version.
24
* This program is distributed in the hope that it will be useful,
25
* but WITHOUT ANY WARRANTY; without even the implied warranty of
26
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
27
* GNU General Public License for more details.
29
* You should have received a copy of the GNU General Public License
30
* along with this program; if not, write to the Free Software
31
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111, USA.
34
* Copyright (c) 2003, Robert Collins <robertc@squid-cache.org>
39
#include "authenticate.h"
40
#include "ACLChecklist.h"
41
#include "ACLRegexData.h"
42
#include "ACLUserData.h"
43
#include "client_side.h"
50
ACLIdent::ACLIdent(ACLData<char const *> *newData, char const *newType) : data (newData), type_ (newType) {}
52
ACLIdent::ACLIdent (ACLIdent const &old) : data (old.data->clone()), type_ (old.type_)
56
ACLIdent::operator= (ACLIdent const &rhs)
58
data = rhs.data->clone();
64
ACLIdent::typeString() const
73
debugs(28, 3, "aclParseUserList: current is null. Creating");
74
data = new ACLUserData;
81
ACLIdent::match(ACLChecklist *checklist)
83
if (checklist->rfc931[0]) {
84
return data->match(checklist->rfc931);
85
} else if (checklist->conn() != NULL && checklist->conn()->rfc931[0]) {
86
return data->match(checklist->conn()->rfc931);
88
debugs(28, 3, "ACLIdent::match() - switching to ident lookup state");
89
checklist->changeState(IdentLookup::Instance());
95
ACLIdent::dump() const
101
ACLIdent::empty () const
103
return data->empty();
107
ACLIdent::clone() const
109
return new ACLIdent(*this);
112
ACL::Prototype ACLIdent::UserRegistryProtoype(&ACLIdent::UserRegistryEntry_, "ident");
113
ACLIdent ACLIdent::UserRegistryEntry_(new ACLUserData, "ident");
114
ACL::Prototype ACLIdent::RegexRegistryProtoype(&ACLIdent::RegexRegistryEntry_, "ident_regex" );
115
ACLIdent ACLIdent::RegexRegistryEntry_(new ACLRegexData, "ident_regex");
117
IdentLookup IdentLookup::instance_;
120
IdentLookup::Instance()
126
IdentLookup::checkForAsync(ACLChecklist *checklist)const
128
if (checklist->conn() != NULL) {
129
debugs(28, 3, "IdentLookup::checkForAsync: Doing ident lookup" );
130
checklist->asyncInProgress(true);
131
identStart(&checklist->conn()->me, &checklist->conn()->peer,
132
LookupDone, checklist);
134
debugs(28, 1, "IdentLookup::checkForAsync: Can't start ident lookup. No client connection" );
135
checklist->currentAnswer(ACCESS_DENIED);
136
checklist->markFinished();
141
IdentLookup::LookupDone(const char *ident, void *data)
143
ACLChecklist *checklist = (ACLChecklist *)data;
144
assert (checklist->asyncState() == IdentLookup::Instance());
147
xstrncpy(checklist->rfc931, ident, USER_IDENT_SZ);
149
xstrncpy(checklist->rfc931, dash_str, USER_IDENT_SZ);
153
* Cache the ident result in the connection, to avoid redoing ident lookup
154
* over and over on persistent connections
156
if (checklist->conn() != NULL && !checklist->conn()->rfc931[0])
157
xstrncpy(checklist->conn()->rfc931, checklist->rfc931, USER_IDENT_SZ);
159
checklist->asyncInProgress(false);
161
checklist->changeState (ACLChecklist::NullState::Instance());