archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/inetcore/winhttp/v5.1/inc/splugin.hxx

419 lines
10 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1994 Microsoft Corporation
  5. Module Name:
  7. splugin.hxx
  9. Abstract:
  11. This file contains definitions for splugin.cxx
  14. Author:
  16. Arthur Bierer (arthurbi) 25-Dec-1995
  18. Revision History:
  20. Rajeev Dujari (rajeevd) 01-Oct-1996 overhaul
  22. --*/
  24. #ifndef SPLUGIN_HXX
  25. #define SPLUGIN_HXX
  27. // macros for code prettiness
  28. #define ALLOCATE_BUFFER 0x1
  29. #define GET_SCHEME 0x2
  31. #define IS_PROXY TRUE
  32. #define IS_SERVER FALSE
  34. // states set on request handle
  35. #define AUTHSTATE_NONE 0
  36. #define AUTHSTATE_NEGOTIATE 1
  37. #define AUTHSTATE_CHALLENGE 2
  38. #define AUTHSTATE_NEEDTUNNEL 3
  39. #define AUTHSTATE_LAST AUTHSTATE_NEEDTUNNEL
  40. // warning !!! do not add any more AUTHSTATEs without increasing size of bitfield
  43. struct AUTH_CREDS;
  44. class HTTP_REQUEST_HANDLE_OBJECT;
  45. struct WINHTTP_REQUEST_CREDENTIALS;
  47. //-----------------------------------------------------------------------------
  48. //
  49. // AUTHCTX
  50. //
  51. class NOVTABLE AUTHCTX
  52. {
  54. public:
  56. // States
  57. enum SPMState
  58. {
  59. STATE_NOTLOADED = 0,
  60. STATE_LOADED,
  61. STATE_ERROR
  62. };
  64. class SPMData
  65. {
  66. public:
  67. LPSTR szScheme;
  68. DWORD cbScheme;
  69. DWORD dwFlags;
  70. DWORD eScheme;
  71. SPMState eState;
  72. SPMData *pNext;
  74. SPMData(LPSTR szScheme, DWORD dwFlags);
  75. ~SPMData();
  76. };
  79. // Global linked list of SPM providers.
  80. static SPMData *g_pSPMList;
  82. // Global spm list state
  83. static SPMState g_eState;
  85. // SubScheme - specifically for the negotiate
  86. // package - can be either NTLM or Kerberos.
  87. DWORD _eSubScheme;
  88. DWORD _dwSubFlags;
  89. public:
  91. // Instance specific;
  92. HTTP_REQUEST_HANDLE_OBJECT *_pRequest;
  94. SPMData *_pSPMData;
  95. LPVOID _pvContext;
  96. CCritSec _CtxCriSec;
  97. AUTH_CREDS *_pCreds;
  98. BOOL _fIsProxy;
  99. BOOL _fDisableAutoLogon;
  101. void DisableAutoLogon(void) { _fDisableAutoLogon = TRUE; }
  103. // Constructor
  104. AUTHCTX(SPMData *pSPM, AUTH_CREDS* pCreds);
  106. // Destructor
  107. virtual ~AUTHCTX();
  109. // ------------------------ Static Functions -----------------------------
  111. static BOOL InitializeSPMList();
  112. static VOID UnloadAll();
  113. static AUTHCTX* CreateAuthCtx(HTTP_REQUEST_HANDLE_OBJECT *pReq, BOOL fIsProxy);
  115. static AUTHCTX* CreateAuthCtx(HTTP_REQUEST_HANDLE_OBJECT *pReq, BOOL fIsProxy,
  116. LPSTR szScheme);
  118. static AUTHCTX* CreateAuthCtx(HTTP_REQUEST_HANDLE_OBJECT *pReq, BOOL fIsProxy,
  119. AUTH_CREDS* pCreds);
  121. static SPMData* SPMLookup(LPSTR szScheme);
  123. static AUTHCTX::SPMState GetSPMListState();
  125. static AUTH_CREDS* SearchCredsList (AUTH_CREDS* Creds, LPSTR lpszHost,
  126. LPSTR lpszUri, LPSTR lpszRealm, SPMData *pSPM);
  128. static AUTH_CREDS* CreateCreds
  129. (
  130. HTTP_REQUEST_HANDLE_OBJECT *pRequest,
  131. BOOL fIsProxy,
  132. SPMData *pSPM,
  133. LPSTR lpszRealm,
  134. WINHTTP_REQUEST_CREDENTIALS* pRequestCredentials = NULL
  135. );
  137. static DWORD GetAuthHeaderData
  138. (
  139. HTTP_REQUEST_HANDLE_OBJECT *pRequest,
  140. BOOL fIsProxy,
  141. LPSTR szItem,
  142. LPSTR *pszData,
  143. LPDWORD pcbData,
  144. DWORD dwIndex,
  145. DWORD dwFlags
  146. );
  150. // ------------------------ Base class functions ---------------------------
  152. DWORD FindHdrIdxFromScheme(LPDWORD pdwIndex);
  154. LPSTR GetScheme();
  155. DWORD GetFlags();
  156. SPMState GetState();
  157. DWORD GetSchemeType();
  158. DWORD GetRawSchemeType();
  161. // ------------------------------ Overrides--------------------------------
  163. // Called before request to generate any pre-authentication headers.
  164. virtual DWORD PreAuthUser(IN LPSTR pBuf, IN OUT LPDWORD pcbBuf) = 0;
  166. // Retrieves response header data
  167. virtual DWORD UpdateFromHeaders(HTTP_REQUEST_HANDLE_OBJECT *pRequest, BOOL fIsProxy) = 0;
  169. // Called after UpdateFromHeaders to update authentication context.
  170. virtual DWORD PostAuthUser() = 0;
  172. };
  175. //-----------------------------------------------------------------------------
  176. //
  177. // BASIC_CTX
  178. //
  180. class BASIC_CTX : public AUTHCTX
  181. {
  183. public:
  184. BASIC_CTX(HTTP_REQUEST_HANDLE_OBJECT *pRequest, BOOL fIsProxy, SPMData* pSPM, AUTH_CREDS* pCreds);
  185. ~BASIC_CTX();
  188. // virtual overrides
  189. DWORD PreAuthUser(IN LPSTR pBuf, IN OUT LPDWORD pcbBuf);
  191. DWORD UpdateFromHeaders(HTTP_REQUEST_HANDLE_OBJECT *pRequest, BOOL fIsProxy);
  193. DWORD PostAuthUser();
  196. };
  199. //-----------------------------------------------------------------------------
  200. //
  201. // PASSPORT_CTX
  202. //
  204. class INTERNET_HANDLE_OBJECT;
  206. class PASSPORT_CTX : public AUTHCTX
  207. {
  208. public:
  209. PASSPORT_CTX(HTTP_REQUEST_HANDLE_OBJECT *pRequest,
  210. BOOL fIsProxy,
  211. SPMData* pSPM,
  212. AUTH_CREDS* pCreds);
  214. ~PASSPORT_CTX();
  216. BOOL Init(void);
  219. // virtual overrides
  220. virtual DWORD PreAuthUser(IN LPSTR pBuf,
  221. IN OUT LPDWORD pcbBuf);
  223. virtual DWORD UpdateFromHeaders(HTTP_REQUEST_HANDLE_OBJECT *pRequest,
  224. BOOL fIsProxy);
  226. virtual DWORD PostAuthUser();
  228. BOOL PromptForCreds(HBITMAP** ppBitmap, PWSTR* ppwszAuthTarget);
  230. LPSTR m_lpszRetUrl;
  232. protected:
  234. BOOL InitLogonContext(void);
  235. BOOL CallbackRegistered(void);
  237. DWORD HandleSuccessfulLogon(
  238. LPWSTR* ppwszFromPP,
  239. LPDWORD pdwFromPP,
  240. BOOL fPreAuth
  241. );
  243. DWORD SetCreds(BOOL* pfCredSet);
  245. BOOL Transfer401ContentFromPP(void);
  246. DWORD ModifyRequestBasedOnRU(void);
  248. enum
  249. {
  250. MAX_AUTH_TARGET_LEN = 256,
  251. MAX_AUTH_REALM_LEN = 128
  252. };
  254. PP_LOGON_CONTEXT m_hLogon;
  255. LPINTERNET_THREAD_INFO m_pNewThreadInfo;
  256. LPWSTR m_pwszPartnerInfo;
  257. WCHAR m_wRealm[MAX_AUTH_REALM_LEN];
  258. PSTR m_pszFromPP;
  259. WCHAR m_wTarget[MAX_AUTH_TARGET_LEN];
  261. INTERNET_HANDLE_OBJECT* m_pInternet;
  262. BOOL m_fPreauthFailed;
  263. BOOL m_fAnonymous;
  265. // BOOL m_AuthComplete;
  266. BOOL _fChallengeSeen;
  268. public:
  269. // BOOL fAuthInProgress(void) { return !m_AuthComplete; }
  271. LPSTR m_pszCbUrl;
  272. LPSTR m_pszCbTxt;
  273. };
  276. //-----------------------------------------------------------------------------
  277. //
  278. // PLUG_CTX
  279. //
  280. class PLUG_CTX : public AUTHCTX
  281. {
  283. public:
  285. // Class specific data.
  286. LPSTR _szAlloc;
  287. LPSTR _szData;
  288. DWORD _cbData;
  289. BOOL _fNTLMProxyAuth;
  290. LPSTR _pszFQDN;
  292. BOOL _fChallengeSeen;
  294. // Class specific funcs.
  295. DWORD Load();
  296. DWORD ClearAuthUser(LPVOID *ppvContext, LPSTR szServer);
  299. DWORD wQueryHeadersAlloc
  300. (
  301. IN HINTERNET hRequestMapped,
  302. IN DWORD dwQuery,
  303. OUT LPDWORD lpdwQueryIndex,
  304. OUT LPSTR *lppszOutStr,
  305. OUT LPDWORD lpdwSize
  306. );
  308. DWORD CrackAuthenticationHeader
  309. (
  310. IN HINTERNET hRequestMapped,
  311. IN BOOL fIsProxy,
  312. IN DWORD dwAuthenticationIndex,
  313. IN OUT LPSTR *lppszAuthHeader,
  314. IN OUT LPSTR *lppszExtra,
  315. IN OUT DWORD *lpdwExtra,
  316. OUT LPSTR *lppszAuthScheme
  317. );
  319. VOID ResolveProtocol();
  320. LPSTR GetFQDN(LPSTR lpszHostName);
  322. PLUG_CTX(HTTP_REQUEST_HANDLE_OBJECT *pRequest, BOOL fIsProxy, SPMData* pSPM, AUTH_CREDS* pCreds);
  323. ~PLUG_CTX();
  325. // virtual overrides
  326. DWORD PreAuthUser(IN LPSTR pBuf, IN OUT LPDWORD pcbBuf);
  328. DWORD UpdateFromHeaders(HTTP_REQUEST_HANDLE_OBJECT *pRequest, BOOL fIsProxy);
  330. DWORD PostAuthUser();
  332. };
  334. //-----------------------------------------------------------------------------
  335. //
  336. // DIGEST_CTX
  337. //
  338. class DIGEST_CTX : public AUTHCTX
  339. {
  341. protected:
  342. VOID InitSecurityBuffers(LPSTR szBuffOut, DWORD cbBuffOut,
  343. LPDWORD dwSecFlags, DWORD dwISCMode);
  344. LPSTR GetRequestUri();
  346. LPSTR _pszVerb;
  347. public:
  349. static CCritSec s_CritSection; // lock before modifying DIGEST_CTX static variables
  350. static HINSTANCE g_hSecLib;
  351. static PSecurityFunctionTable g_pFuncTbl;
  352. static unsigned int g_iUniquePerDigestCtxInt;
  354. static BOOL GlobalInitialize();
  355. static void GlobalRelease();
  357. // Class specific data.
  358. SecBuffer _SecBuffIn[10];
  359. SecBufferDesc _SecBuffInDesc;
  360. SecBuffer _SecBuffOut[1];
  361. SecBufferDesc _SecBuffOutDesc;
  362. CtxtHandle _hCtxt;
  363. CHAR _szUserCtx[64];
  364. CredHandle _hCred; // if _hCred == NULL, constructor failed.
  366. LPSTR _szAlloc;
  367. LPSTR _szData;
  368. LPSTR _szRequestUri;
  369. DWORD _cbContext;
  370. DWORD _cbData;
  372. DIGEST_CTX(HTTP_REQUEST_HANDLE_OBJECT *pRequest, BOOL fIsProxy, SPMData* pSPM, AUTH_CREDS* pCreds);
  374. ~DIGEST_CTX();
  376. // virtual overrides
  377. DWORD PreAuthUser(IN LPSTR pBuf, IN OUT LPDWORD pcbBuf);
  379. DWORD UpdateFromHeaders(HTTP_REQUEST_HANDLE_OBJECT *pRequest, BOOL fIsProxy);
  381. DWORD PostAuthUser();
  382. };
  385. struct AUTH_CREDS
  386. {
  387. AUTHCTX::SPMData *pSPM; // Scheme
  388. LPSTR lpszHost; // name of server or proxy
  389. LPSTR lpszRealm; // realm, optional, may be null
  390. LPSTR lpszUser; // username, may be null
  391. XSTRING xszPass; // password; use XSTRING to encrypt
  393. DWORD SetUser (LPSTR lpszUser);
  394. DWORD SetPass (LPSTR lpszUser);
  395. LPSTR GetUser (void) { return lpszUser;}
  396. LPSTR GetPass (void) { return xszPass.GetUnencryptedString();}
  397. };
  400. #ifndef ARRAY_ELEMENTS
  401. #define ARRAY_ELEMENTS(rg) (sizeof(rg) / sizeof((rg)[0]))
  402. #endif
  404. // password cache locking
  405. BOOL AuthOpen (void);
  406. void AuthClose (void);
  407. BOOL AuthLock (void);
  408. void AuthUnlock (void);
  410. // worker thread calls
  411. DWORD AuthOnRequest (HINTERNET hRequest);
  412. DWORD AuthOnResponse (HINTERNET hRequest);
  414. // cleanup
  415. void AuthUnload (void); // unload everything
  419. #endif // SPLUGIN_HXX