archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/inetsrv/iis/iisrearc/iisplus/ulw3/iisdigestprovider.hxx

367 lines
6.5 KiB
Raw Normal View History

Add source files
4 years ago
  1. #ifndef _IIS_DIGESTPROVIDER_HXX_
  2. #define _IIS_DIGESTPROVIDER_HXX_
  5. //
  6. // Constants
  7. //
  9. //# of random bytes at beginning of nonce
  10. #define RANDOM_SIZE 8
  11. //size of timestamp in nonce
  12. #define TIMESTAMP_SIZE 12
  13. //MD5 hash size
  14. #define MD5_HASH_SIZE 16
  15. #define NONCE_SIZE ( 2*RANDOM_SIZE + TIMESTAMP_SIZE + 2*MD5_HASH_SIZE )
  16. #define NONCE_GRANULARITY 512
  17. #define MAX_URL_SIZE 512
  20. //
  21. // Class definitions
  22. //
  24. #define IIS_DIGEST_CONN_CONTEXT_SIGNATURE CREATE_SIGNATURE( 'DIGC' )
  25. #define IIS_DIGEST_CONN_CONTEXT_SIGNATURE_FREED CREATE_SIGNATURE( 'digX' )
  28. class IIS_DIGEST_CONN_CONTEXT: public CONNECTION_AUTH_CONTEXT
  29. {
  30. public:
  32. IIS_DIGEST_CONN_CONTEXT(
  33. VOID
  34. ):
  35. _fStale ( FALSE ),
  36. _tLastNonce ( 0 ),
  37. _straNonce ( __szNonce, sizeof(__szNonce))
  39. {
  40. SetSignature( IIS_DIGEST_CONN_CONTEXT_SIGNATURE );
  41. }
  43. virtual ~IIS_DIGEST_CONN_CONTEXT(
  44. VOID
  45. )
  46. {
  47. DBG_ASSERT( CheckSignature() );
  48. SetSignature( IIS_DIGEST_CONN_CONTEXT_SIGNATURE_FREED );
  49. }
  51. BOOL
  52. CheckSignature(
  53. VOID
  54. )
  55. { return( QuerySignature() == IIS_DIGEST_CONN_CONTEXT_SIGNATURE ); }
  58. VOID *
  59. operator new(
  60. size_t size
  61. )
  62. {
  63. DBG_ASSERT( size == sizeof( IIS_DIGEST_CONN_CONTEXT ) );
  64. DBG_ASSERT( sm_pachIISDIGESTConnContext != NULL );
  65. return sm_pachIISDIGESTConnContext->Alloc();
  66. }
  68. VOID
  69. operator delete(
  70. VOID * pDIGESTConnContext
  71. )
  72. {
  73. DBG_ASSERT( pDIGESTConnContext != NULL );
  74. DBG_ASSERT( sm_pachIISDIGESTConnContext != NULL );
  76. DBG_REQUIRE( sm_pachIISDIGESTConnContext->Free( pDIGESTConnContext ) );
  77. }
  79. BOOL
  80. Cleanup(
  81. VOID
  82. )
  83. {
  84. delete this;
  85. return TRUE;
  86. }
  88. static
  89. HRESULT
  90. Initialize(
  91. VOID
  92. );
  94. static
  95. VOID
  96. Terminate(
  97. VOID
  98. );
  100. VOID
  101. SetStale(
  102. IN BOOL fStale
  103. )
  104. {
  105. _fStale = fStale;
  106. }
  108. BOOL
  109. QueryStale(
  110. VOID
  111. )
  112. {
  113. return _fStale;
  114. }
  116. STRA&
  117. QueryNonce(
  118. VOID
  119. )
  120. {
  121. return _straNonce;
  122. }
  124. static
  125. HRESULT
  126. HashData(
  127. IN BUFFER& buffData,
  128. OUT BUFFER& buffHash
  129. );
  131. static
  132. BOOL
  133. IsExpiredNonce(
  134. IN STRA& strRequestNonce,
  135. IN STRA& strPresentNonce
  136. );
  138. static
  139. BOOL
  140. IsWellFormedNonce(
  141. IN STRA& strNonce
  142. );
  144. HRESULT
  145. GenerateNonce(
  146. VOID
  147. );
  149. static
  150. BOOL
  151. IIS_DIGEST_CONN_CONTEXT::ParseForName(
  152. IN PSTR pszStr,
  153. IN PSTR * pNameTable,
  154. IN UINT cNameTable,
  155. OUT PSTR * pValueTable
  156. );
  158. private:
  160. DWORD _dwSignature;
  161. // Is the nonce value stale
  162. BOOL _fStale;
  163. DWORD _tLastNonce;
  164. // buffer for _straNonce
  165. CHAR __szNonce[ NONCE_SIZE ];
  166. STRA _straNonce;
  167. static const PCHAR _pszSecret;
  168. static const DWORD _cchSecret;
  169. static HCRYPTPROV s_hCryptProv;
  170. static ALLOC_CACHE_HANDLER * sm_pachIISDIGESTConnContext;
  172. };
  175. class IIS_DIGEST_AUTH_PROVIDER : public AUTH_PROVIDER
  176. {
  177. public:
  179. IIS_DIGEST_AUTH_PROVIDER(
  180. VOID
  181. )
  182. {
  183. }
  185. virtual ~IIS_DIGEST_AUTH_PROVIDER(
  186. VOID
  187. )
  188. {
  189. }
  191. HRESULT
  192. Initialize(
  193. DWORD dwInternalId
  194. );
  196. VOID
  197. Terminate(
  198. VOID
  199. );
  201. HRESULT
  202. DoesApply(
  203. IN W3_MAIN_CONTEXT * pMainContext,
  204. OUT BOOL * pfApplies
  205. );
  207. HRESULT
  208. DoAuthenticate(
  209. IN W3_MAIN_CONTEXT * pMainContext
  210. );
  212. HRESULT
  213. OnAccessDenied(
  214. IN W3_MAIN_CONTEXT * pMainContext
  215. );
  217. HRESULT
  218. SetDigestHeader(
  219. IN W3_MAIN_CONTEXT * pMainContext,
  220. IN IIS_DIGEST_CONN_CONTEXT * pDigestConnContext
  221. );
  223. DWORD
  224. QueryAuthType(
  225. VOID
  226. )
  227. {
  228. return MD_AUTH_MD5;
  229. }
  231. static
  232. HRESULT
  233. GetDigestConnContext(
  234. IN W3_MAIN_CONTEXT * pMainContext,
  235. OUT IIS_DIGEST_CONN_CONTEXT ** ppDigestConnContext
  236. );
  238. static
  239. HRESULT
  240. GetLanGroupDomainName(
  241. OUT STRA& straDomain
  242. );
  244. static
  245. HRESULT
  246. BreakUserAndDomain(
  247. IN PCHAR pszFullName,
  248. IN STRA& pszConfiguredAuthDomain,
  249. OUT STRA& straDomainName,
  250. OUT STRA& straUserName
  251. );
  253. static
  254. STRA&
  255. QueryComputerDomain(
  256. VOID
  257. )
  258. {
  259. DBG_ASSERT( _pstraComputerDomain != NULL );
  260. return *_pstraComputerDomain;
  261. }
  263. private:
  264. static STRA * _pstraComputerDomain;
  266. };
  269. class IIS_DIGEST_USER_CONTEXT : public W3_USER_CONTEXT
  270. {
  271. public:
  272. IIS_DIGEST_USER_CONTEXT(
  273. AUTH_PROVIDER * pProvider
  274. ):
  275. W3_USER_CONTEXT( pProvider ),
  276. _hImpersonationToken( NULL ),
  277. _hPrimaryToken( NULL )
  279. {
  280. }
  282. virtual ~IIS_DIGEST_USER_CONTEXT(
  283. VOID
  284. )
  285. {
  286. if ( _hImpersonationToken != NULL )
  287. {
  288. CloseHandle( _hImpersonationToken );
  289. _hImpersonationToken = NULL;
  290. }
  292. if ( _hPrimaryToken != NULL )
  293. {
  294. CloseHandle( _hPrimaryToken );
  295. _hPrimaryToken = NULL;
  296. }
  297. }
  299. HRESULT
  300. Create(
  301. IN HANDLE hImpersonationToken,
  302. IN PSTR pszUserName
  303. );
  306. WCHAR *
  307. QueryUserName(
  308. VOID
  309. )
  310. {
  311. return _strUserName.QueryStr();
  312. }
  314. WCHAR *
  315. QueryRemoteUserName(
  316. VOID
  317. )
  318. {
  319. return _strUserName.QueryStr();
  320. }
  322. BOOL
  323. QueryDelegatable(
  324. VOID
  325. )
  326. {
  327. return FALSE;
  328. }
  330. WCHAR *
  331. QueryPassword(
  332. VOID
  333. )
  334. {
  335. return L"";
  336. }
  338. DWORD
  339. QueryAuthType(
  340. VOID
  341. )
  342. {
  343. return MD_AUTH_MD5;
  344. }
  346. HANDLE
  347. QueryImpersonationToken(
  348. VOID
  349. )
  350. {
  351. DBG_ASSERT( _hImpersonationToken != NULL );
  352. return _hImpersonationToken;
  353. }
  355. HANDLE
  356. QueryPrimaryToken(
  357. VOID
  358. );
  360. private:
  361. HANDLE _hImpersonationToken;
  362. HANDLE _hPrimaryToken;
  363. STRU _strUserName;
  364. };
  367. #endif