src/auth/mech-login.c

	mech-login.c revision 97c339398f1aba6f315b55a9b6ee6b020e33bea4
1571N/A/*
1571N/A * LOGIN authentication mechanism.
1571N/A *
1571N/A * Copyright (c) 2004 Andrey Panin <pazke@donpac.ru>
1571N/A *
1571N/A * This program is free software; you can redistribute it and/or modify
1571N/A * it under the terms of the GNU Lesser General Public License as published
1571N/A * by the Free Software Foundation; either version 2 of the License, or
1571N/A * (at your option) any later version.
1571N/A */
1571N/A
1571N/A#include "common.h"
1571N/A#include "mech.h"
1571N/A#include "passdb.h"
1571N/A#include "safe-memset.h"
1571N/A
1571N/Astatic void verify_callback(enum passdb_result result,
1571N/A                struct auth_request *request)
1571N/A{
1571N/A    switch (result) {
1571N/A    case PASSDB_RESULT_OK:
1571N/A        auth_request_success(request, NULL, 0);
1571N/A        break;
1571N/A    case PASSDB_RESULT_INTERNAL_FAILURE:
1571N/A        auth_request_internal_failure(request);
1571N/A        break;
1571N/A    default:
1571N/A        auth_request_fail(request);
1571N/A        break;
1571N/A    }
1571N/A}
1571N/A
1571N/Astatic void
1571N/Amech_login_auth_continue(struct auth_request *request,
1571N/A             const unsigned char *data, size_t data_size,
1571N/A             mech_callback_t *callback)
1571N/A{
1571N/A    static const char prompt2[] = "Password:";
1571N/A    const char *username, *error;
1571N/A
1571N/A    request->callback = callback;
1571N/A
1571N/A    if (request->user == NULL) {
1571N/A        username = t_strndup(data, data_size);
1571N/A
1571N/A        if (!auth_request_set_username(request, username, &error)) {
1571N/A            if (verbose) {
1571N/A                i_info("login(%s): %s",
1571N/A                       get_log_prefix(request), error);
1571N/A            }
1571N/A            auth_request_fail(request);
1571N/A            return;
1571N/A        }
1571N/A
1571N/A        callback(request, AUTH_CLIENT_RESULT_CONTINUE,
1571N/A             prompt2, strlen(prompt2));
1571N/A    } else {
1571N/A        char *pass = p_strndup(unsafe_data_stack_pool, data, data_size);
1571N/A        request->auth->passdb->verify_plain(request, pass,
1571N/A                            verify_callback);
1571N/A        safe_memset(pass, 0, strlen(pass));
1571N/A    }
1571N/A}
1571N/A
static void
mech_login_auth_initial(struct auth_request *request,
            const unsigned char *data __attr_unused__,
            size_t data_size __attr_unused__,
            mech_callback_t *callback)
{
    static const char prompt1[] = "Username:";

    callback(request, AUTH_CLIENT_RESULT_CONTINUE,
         prompt1, strlen(prompt1));
}

static void mech_login_auth_free(struct auth_request *request)
{
    pool_unref(request->pool);
}

static struct auth_request *mech_login_auth_new(void)
{
    struct auth_request *request;
    pool_t pool;

    pool = pool_alloconly_create("login_auth_request", 256);
    request = p_new(pool, struct auth_request, 1);

    request->refcount = 1;
    request->pool = pool;
    return request;
}

const struct mech_module mech_login = {
    "LOGIN",

    MEMBER(flags) MECH_SEC_PLAINTEXT,

    MEMBER(passdb_need_plain) TRUE,
    MEMBER(passdb_need_credentials) FALSE,

    mech_login_auth_new,
    mech_login_auth_initial,
    mech_login_auth_continue,
        mech_login_auth_free
};