archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
4.9 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/passport/passportmanager/manager.h

342 lines
14 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /**********************************************************************/
  2. /** Microsoft Passport **/
  3. /** Copyright(c) Microsoft Corporation, 1999 - 2001 **/
  4. /**********************************************************************/
  6. /*
  7. manager.h
  8. Define CManager class for passport manager interface
  11. FILE HISTORY:
  13. */
  14. // Manager.h : Declaration of the CManager
  16. #ifndef __MANAGER_H_
  17. #define __MANAGER_H_
  19. #include "resource.h" // main symbols
  20. #include "Passport.h"
  21. #include "Ticket.h"
  22. #include "Profile.h"
  23. #include "passportservice.h"
  24. #include <httpext.h>
  25. #include <httpfilt.h>
  27. using namespace ATL;
  29. inline bool IsEmptyString(LPCWSTR str)
  30. {
  31. if (!str) return true;
  32. if (*str == 0) return true;
  33. return false;
  34. };
  36. /////////////////////////////////////////////////////////////////////////////
  37. // CManager
  38. class ATL_NO_VTABLE CManager :
  39. public CComObjectRootEx<CComMultiThreadModel>,
  40. public CComCoClass<CManager, &CLSID_Manager>,
  41. public ISupportErrorInfo,
  42. public IPassportService,
  43. public IDispatchImpl<IPassportManager3, &IID_IPassportManager3, &LIBID_PASSPORTLib>,
  44. public IDomainMap
  45. {
  46. public:
  47. CManager();
  48. ~CManager();
  50. public:
  52. DECLARE_REGISTRY_RESOURCEID(IDR_MANAGER)
  53. DECLARE_GET_CONTROLLING_UNKNOWN()
  54. DECLARE_PROTECT_FINAL_CONSTRUCT()
  56. BEGIN_COM_MAP(CManager)
  57. COM_INTERFACE_ENTRY(IPassportManager)
  58. COM_INTERFACE_ENTRY(IPassportManager2)
  59. COM_INTERFACE_ENTRY(IPassportManager3)
  60. COM_INTERFACE_ENTRY(IDispatch)
  61. COM_INTERFACE_ENTRY(ISupportErrorInfo)
  62. COM_INTERFACE_ENTRY(IPassportService)
  63. COM_INTERFACE_ENTRY(IDomainMap)
  64. COM_INTERFACE_ENTRY_AGGREGATE(IID_IMarshal, m_pUnkMarshaler.p)
  65. END_COM_MAP()
  67. HRESULT FinalConstruct()
  68. {
  69. if(m_pUnkMarshaler.p != NULL)
  70. return S_OK;
  72. return CoCreateFreeThreadedMarshaler(
  73. GetControllingUnknown(), &m_pUnkMarshaler.p);
  74. }
  76. void FinalRelease()
  77. {
  78. m_pUnkMarshaler.Release();
  79. }
  81. CComPtr<IUnknown> m_pUnkMarshaler;
  83. // ISupportsErrorInfo
  84. STDMETHOD(InterfaceSupportsErrorInfo)(REFIID riid);
  86. // IPassportManager
  87. public:
  88. STDMETHOD(HaveConsent)(/*[in]*/ VARIANT_BOOL bNeedFullConsent, /*[in]*/ VARIANT_BOOL bNeedBirthdate, /*[out,retval]*/ VARIANT_BOOL* pbHaveConsent);
  89. STDMETHOD(GetServerInfo)(/*[out,retval]*/ BSTR *pbstrOut);
  90. STDMETHOD(Commit)(BSTR *newProf);
  91. STDMETHOD(get_HasSavedPassword)(/*[out, retval]*/ VARIANT_BOOL *pVal);
  92. STDMETHOD(get_ProfileByIndex)(/*[in]*/ int index, /*[out, retval]*/ VARIANT *pVal);
  93. STDMETHOD(put_ProfileByIndex)(/*[in]*/ int index, /*[in]*/ VARIANT newVal);
  94. STDMETHOD(get_Profile)(/*[in]*/ BSTR attributeName, /*[out, retval]*/ VARIANT *pVal);
  95. STDMETHOD(put_Profile)(/*[in]*/ BSTR attributeName, /*[in]*/ VARIANT newVal);
  96. STDMETHOD(DomainFromMemberName)(/*[in,optional]*/ VARIANT memberName, /*[out,retval]*/ BSTR *pDomainName);
  97. STDMETHOD(GetDomainAttribute)(/*[in]*/ BSTR attributeName, /*[in,optional]*/ VARIANT lcid, /*[in,optional]*/ VARIANT domain, /*[out,retval]*/ BSTR *pAttrVal);
  98. STDMETHOD(get_TimeSinceSignIn)(/*[out, retval]*/ int *pVal);
  99. STDMETHOD(get_TicketAge)(/*[out, retval]*/ int *pVal);
  100. STDMETHOD(get_SignInTime)(/*[out, retval]*/ long *pVal);
  101. STDMETHOD(get_TicketTime)(/*[out, retval]*/ long *pVal);
  102. STDMETHOD(HasFlag)(/*[in]*/ VARIANT flagMask, /*[out, retval]*/ VARIANT_BOOL *pVal);
  103. STDMETHOD(get_FromNetworkServer)(/*[out, retval]*/ VARIANT_BOOL *pVal);
  104. STDMETHOD(get_HasTicket)(/*[out, retval]*/ VARIANT_BOOL *pVal);
  105. STDMETHOD(HasProfile)(/*[in]*/ VARIANT profileName, /*[out, retval]*/ VARIANT_BOOL *pVal);
  106. STDMETHOD(LogoTag)(/*[in]*/ VARIANT returnUrl, /*[in]*/ VARIANT TimeWindow, /*[in]*/ VARIANT ForceLogin, VARIANT coBrandTemplate, VARIANT lang_id, VARIANT bSecure, VARIANT NameSpace, /*[in, optional*/ VARIANT KPP, /*[in, optional]*/ VARIANT SecureLevel, /*[out, retval]*/ BSTR *pVal);
  107. STDMETHOD(LogoTag2)(/*[in]*/ VARIANT returnUrl, /*[in]*/ VARIANT TimeWindow, /*[in]*/ VARIANT ForceLogin, VARIANT coBrandTemplate, VARIANT lang_id, VARIANT bSecure, VARIANT NameSpace, /*[in, optional*/ VARIANT KPP, /*[in, optional]*/ VARIANT SecureLevel, /*[out, retval]*/ BSTR *pVal);
  108. STDMETHOD(IsAuthenticated)(/*[in]*/ VARIANT TimeWindow, /*[in]*/ VARIANT ForceLogin, /*[in,optional]*/ VARIANT SecureLevel, /*[out, retval]*/ VARIANT_BOOL *pVal);
  109. STDMETHOD(AuthURL)(/*[in]*/ VARIANT returnUrl, /*[in]*/ VARIANT TimeWindow, /*[in]*/ VARIANT ForceLogin, VARIANT coBrandTemplate, VARIANT lang_id, VARIANT NameSpace, /*[in, optional]*/ VARIANT KPP, /*[in, optional]*/ VARIANT SecureLevel, /*[out,retval]*/ BSTR *pAuthUrl);
  110. STDMETHOD(AuthURL2)(/*[in]*/ VARIANT returnUrl, /*[in]*/ VARIANT TimeWindow, /*[in]*/ VARIANT ForceLogin, VARIANT coBrandTemplate, VARIANT lang_id, VARIANT NameSpace, /*[in, optional]*/ VARIANT KPP, /*[in, optional]*/ VARIANT SecureLevel, /*[out,retval]*/ BSTR *pAuthUrl);
  111. // New API. call it to generate user logon. ASP caller will get a redirect.
  112. // isapi callers should not do any more work after this
  113. STDMETHOD(LoginUser)(/*[in]*/ VARIANT returnUrl,
  114. /*[in]*/ VARIANT TimeWindow,
  115. /*[in]*/ VARIANT ForceLogin,
  116. /*[in]*/ VARIANT coBrandTemplate,
  117. /*[in]*/ VARIANT lang_id,
  118. /*[in]*/ VARIANT NameSpace,
  119. /*[in, optional]*/ VARIANT KPP,
  120. /*[in, optional]*/ VARIANT SecureLevel,
  121. /*[in, optional]*/ VARIANT ExtraParams);
  122. //Active Server Pages Methods
  123. STDMETHOD(OnStartPage)(IUnknown* IUnk);
  124. STDMETHOD(OnStartPageManual)(BSTR qsT, BSTR qsP, BSTR mspauth, BSTR mspprof, BSTR mspconsent, VARIANT vmspsec, VARIANT *pCookies);
  125. STDMETHOD(OnStartPageECB)(/*[in]*/ LPBYTE pECB, /*[in,out]*/ DWORD *pBufSize, /*[out]*/ LPSTR pCookieHeader);
  126. STDMETHOD(OnStartPageFilter)(/*[in]*/ LPBYTE pPFC, /*[in,out]*/ DWORD *pBufSize, /*[out]*/ LPSTR pCookieHeader);
  127. STDMETHOD(OnStartPageASP)(/*[in]*/ IDispatch* pdispRequest, /*[in]*/ IDispatch* pdispResponse);
  128. STDMETHOD(OnEndPage)();
  129. STDMETHOD(_Ticket)(IPassportTicket** piTicket);
  130. STDMETHOD(_Profile)(IPassportProfile** piProfile);
  131. STDMETHOD(get_Domains)(VARIANT* pArrayVal);
  132. STDMETHOD(get_Error)(long* pErrorVal);
  134. // IPassportManager3
  135. STDMETHOD(get_Ticket)(/*[in]*/ BSTR attributeName, /*[out, retval]*/ VARIANT *pVal);
  138. STDMETHOD(GetCurrentConfig)(/*[in]*/ BSTR name, /*[out, retval]*/ VARIANT *pVal)
  139. {
  140. if (!m_pRegistryConfig)
  141. {
  142. AtlReportError(CLSID_Manager, PP_E_NOT_INITIALIZEDSTR,
  143. IID_IPassportManager, PP_E_NOT_INITIALIZED);
  144. return PP_E_NOT_INITIALIZED;
  145. }
  146. else
  147. return m_pRegistryConfig->GetCurrentConfig(name, pVal);
  148. };
  150. STDMETHOD(LogoutURL)(
  151. /* [optional][in] */ VARIANT returnUrl,
  152. /* [optional][in] */ VARIANT coBrandArgs,
  153. /* [optional][in] */ VARIANT lang_id,
  154. /* [optional][in] */ VARIANT NameSpace,
  155. /* [optional][in] */ VARIANT bSecure,
  156. /* [retval][out] */ BSTR *pVal);
  158. STDMETHOD(GetLoginChallenge)(/*[in]*/ VARIANT returnUrl,
  159. /*[in]*/ VARIANT TimeWindow,
  160. /*[in]*/ VARIANT ForceLogin,
  161. /*[in]*/ VARIANT coBrandTemplate,
  162. /*[in]*/ VARIANT lang_id,
  163. /*[in]*/ VARIANT NameSpace,
  164. /*[in, optional]*/ VARIANT KPP,
  165. /*[in, optional]*/ VARIANT SecureLevel,
  166. /*[in, optional]*/ VARIANT ExtraParams,
  167. // /*[out, optional]*/ VARIANT *pAuthHeader,
  168. /*[out, retval]*/ BSTR* pAuthHeader
  169. );
  171. STDMETHOD(get_HexPUID)(/*[out, retval]*/ BSTR *pVal);
  172. STDMETHOD(get_PUID)(/*[out, retval]*/ BSTR *pVal);
  174. STDMETHOD(OnStartPageHTTPRawEx)(
  175. /* [in] */ LPCSTR method,
  176. /* [in] */ LPCSTR path,
  177. /* [in] */ LPCSTR QS,
  178. /* [in] */ LPCSTR HTTPVer,
  179. /* [string][in] */ LPCSTR headers,
  180. /* [in] */ DWORD flags,
  181. /* [out][in] */ DWORD *bufSize,
  182. /* [size_is][out]*/ LPSTR pCookieHeader);
  184. STDMETHOD(OnStartPageHTTPRaw)(
  185. /* [string][in] */ LPCSTR request_line,
  186. /* [string][in] */ LPCSTR headers,
  187. /* [in] */ DWORD flags,
  188. /* [out][in] */ DWORD *pBufSize,
  189. /* [size_is][out] */ LPSTR pCookieHeader);
  192. STDMETHOD(ContinueStartPageHTTPRaw)(
  193. /* [in] */ DWORD bodyLen,
  194. /* [size_is][in] */ byte *body,
  195. /* [out][in] */ DWORD *pBufSize,
  196. /* [size_is][out] */ LPSTR pRespHeaders,
  197. /* [out][in] */ DWORD *pRespBodyLen,
  198. /* [size_is][out] */ byte *pRespBody);
  200. STDMETHOD(get_Option)(
  201. /* [in] */ BSTR name,
  202. /* [retval][out] */ VARIANT *pVal);
  204. STDMETHOD(put_Option)(
  205. /* [in] */ BSTR name,
  206. /* [in] */ VARIANT newVal);
  209. // IDomainMap
  210. public:
  211. // GetDomainAttribute and get_Domains declared above.
  212. STDMETHOD(DomainExists)(BSTR bstrDomainName, VARIANT_BOOL* pbExists);
  214. // IPassportService
  215. public:
  216. STDMETHOD(Initialize)(BSTR, IServiceProvider*);
  217. STDMETHOD(Shutdown)();
  218. STDMETHOD(ReloadState)(IServiceProvider*);
  219. STDMETHOD(CommitState)(IServiceProvider*);
  220. STDMETHOD(DumpState)( BSTR* );
  222. protected:
  223. void wipeState();
  225. // return S_OK -- altered, should use two returned output params for MSPAuth and MSPSecAuth as cookies
  226. HRESULT IfAlterAuthCookie(BSTR* pMSPAuth, BSTR* pMSPSecAuth);
  228. // return S_OK -- should use the generated MSPConsent cookie
  229. HRESULT IfConsentCookie(BSTR* pMSPConsent);
  231. private:
  232. STDMETHOD(GetLoginChallengeInternal)(/*[in]*/ VARIANT returnUrl,
  233. /*[in]*/ VARIANT TimeWindow,
  234. /*[in]*/ VARIANT ForceLogin,
  235. /*[in]*/ VARIANT coBrandTemplate,
  236. /*[in]*/ VARIANT lang_id,
  237. /*[in]*/ VARIANT NameSpace,
  238. /*[in, optional]*/ VARIANT KPP,
  239. /*[in, optional]*/ VARIANT SecureLevel,
  240. /*[in, optional]*/ VARIANT ExtraParams,
  241. /*[out, optional]*/ VARIANT *pAuthHeader,
  242. /*[out, retval]*/ BSTR* pAuthVal
  243. );
  245. STDMETHOD(CommonAuthURL)(VARIANT returnUrl,
  246. VARIANT TimeWindow,
  247. VARIANT ForceLogin,
  248. VARIANT coBrandTemplate,
  249. VARIANT lang_id,
  250. VARIANT NameSpace,
  251. VARIANT KPP,
  252. VARIANT SecureLevel,
  253. BOOL fRedirToSelf,
  254. VARIANT functionArea,
  255. BSTR *pAuthUrl);
  256. BOOL handleQueryStringData(BSTR a, BSTR p);
  257. BOOL handleCookieData(BSTR a, BSTR p, BSTR c, BSTR s);
  258. BOOL checkForPassportChallenge(IRequestDictionaryPtr piServerVariables);
  259. BOOL HeaderFromQS(PWSTR pszQS, _bstr_t& bstrHeader);
  260. STDMETHODIMP FormatAuthHeaderFromParams(PCWSTR pszLoginUrl, // unused for now
  261. PCWSTR pszRetUrl,
  262. ULONG ulTimeWindow,
  263. BOOL fForceLogin,
  264. time_t ct,
  265. PCWSTR pszCBT, // unused for now
  266. PCWSTR pszNamespace,
  267. int nKpp,
  268. PWSTR pszlcid,
  269. ULONG ulSecLevel,
  270. _bstr_t& strHeader // return result
  271. );
  272. STDMETHOD(CommonLogoTag)(VARIANT returnUrl,
  273. VARIANT TimeWindow,
  274. VARIANT ForceLogin,
  275. VARIANT coBrandTemplate,
  276. VARIANT lang_id,
  277. VARIANT bSecure,
  278. VARIANT NameSpace,
  279. VARIANT KPP,
  280. VARIANT SecureLevel,
  281. BOOL fRedirToSelf,
  282. BSTR *pVal);
  283. // helper for coming up with login paramers based on
  284. // what the site passed in and registry configs
  285. // someone should put all these in a class, so the number of
  286. // params stays manageable
  287. STDMETHOD(GetLoginParams)(// this is what the caller passed in
  288. VARIANT vRU,
  289. VARIANT vTimeWindow,
  290. VARIANT vForceLogin,
  291. VARIANT vCoBrand,
  292. VARIANT vLCID,
  293. VARIANT vNameSpace,
  294. VARIANT vKPP,
  295. VARIANT vSecureLevel,
  296. // these are the processed values
  297. _bstr_t& url,
  298. _bstr_t& returnUrl,
  299. UINT& TimeWindow,
  300. VARIANT_BOOL& ForceLogin,
  301. time_t& ct,
  302. _bstr_t& strCBT,
  303. _bstr_t& strNameSpace,
  304. int& nKpp,
  305. ULONG& ulSecureLevel,
  306. PWSTR pszlcid);
  308. VARIANT_BOOL m_profileValid;
  309. VARIANT_BOOL m_ticketValid;
  311. CComObject<CTicket> *m_piTicket;
  312. CComObject<CProfile> *m_piProfile;
  314. CRegistryConfig* m_pRegistryConfig;
  316. IRequestPtr m_piRequest; //Request Object
  317. IResponsePtr m_piResponse; //Response Object
  318. bool m_bOnStartPageCalled; //OnStartPage successful?
  320. bool m_fromQueryString;
  321. // for ISAPI ....
  322. EXTENSION_CONTROL_BLOCK *m_pECB;
  323. PHTTP_FILTER_CONTEXT m_pFC;
  324. // is it 1.4 capable client?
  325. BOOL m_bIsTweenerCapable;
  327. long m_lNetworkError;
  329. // secure sign in
  330. bool m_bSecureTransported;
  332. CComVariant m_iModeOption;
  333. BOOL IfCreateTPF()
  334. {
  335. if (V_VT(&m_iModeOption) == VT_BOOL && V_BOOL(&m_iModeOption) == VARIANT_TRUE)
  336. return FALSE;
  337. return TRUE;
  339. }
  340. };
  342. #endif //__MANAGER_H_