archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/inetsrv/iis/inc/iismap.hxx

756 lines
23 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1996 Microsoft Corporation
  5. Module Name:
  7. iismap.hxx
  9. Abstract:
  11. Headers for classes to handle mapping
  13. --*/
  16. /*
  18. Usage:
  20. 3 mapper classes are defined, all of them derived from CIisAcctMapper :
  21. - CIisCertMapper : SSL certificate mapping
  22. - CIisItaMapper : Internet account ( basic authentication ) mapping
  23. - CIisMd5Mapper : Digest authentication account mapping
  24. An instance of one these classes must be created by the client.
  25. This instance must be initialized ( call to Init() ) and terminated
  26. ( call to Terminate() ) before and after use.
  27. Load() / Save() load and save the current mapping. Changes made to the
  28. mappings are not commited until Save() is called.
  29. The file integrity will be checked at load time, error ERROR_BAD_FORMAT will
  30. be returned if format is corrupted, ERROR_INVALID_ACCESS if the file was
  31. modified by an application without using this library. In the later case
  32. the content is valid, and can be validated by calling Save().
  34. Each class defines a field list ( MappingGetFieldList() ), a field being
  35. defined by its type ( IISMDB_TYPE_* ), displayable name
  36. and maximum width ( characters )
  38. Each class also defines a hierarchy of fields used in the mapping process.
  39. The hierarchy is defined by an array of descriptor ( index in field list array
  40. and mandatory flag. The mandatory flag indicates whether this field must be
  41. present when a new mapping is created, it is an indication intended for the UI )
  42. The hierarchy is accessed by GetHierarchy() and is modified in place.
  43. A call to UpdateHierarchy() is necessary after any modification to the
  44. hierarchy.
  45. An option bit ( GetOptions() & IISMDB_OPTION_EDIT_HIERARCHY ) indicates
  46. whether the hierarcht is editable for a given class or not.
  48. Mapping entries are accessed through GetNbMapping(), GetMapping( 0-based index ).
  49. To add a mapping, call CreateNewMapping() then Add() or delete the created
  50. mapping.
  51. To update a mapping, access it using GetMapping() then call Update().
  52. To delete a mapping, call Delete().
  54. Each mapping is derived from CIisMapping.
  55. Fields are get/set using MappingGetField() / MappingSetField().
  57. Each class storage is controlled by a registry key as defined by
  58. IIS_*_MAPPER_REG. Two values must be created :
  59. - FileLocation:REG_SZ, which is the full path of the file used to store
  60. the mappings
  61. - FileValidator:REG_BINARY, which will be used by this library
  62. to store/check a MD5 digest of the file content to check file integrity
  65. Features specific to SSL certificate mappings ( CIisCertMapper ):
  67. - a list of BLOBs is to be created/edited by the UI through
  68. SetIssuerList()/GetIssuerList().
  69. Each BLOB describes a certificate issuer. Exact format to be defined
  70. by the Crypto team, but can assumed to be ASN.1 description of issuer.
  71. This list will be used by the SSL package to request the client to send
  72. a list of certificates issued by one of the issuer in this list.
  74. */
  76. extern "C" {
  77. #include <md5.h>
  78. #include <immd5.h>
  79. }
  80. #include <xbf.hxx>
  82. typedef LPVOID VALID_CTX;
  84. #if !defined(dllexp)
  85. #define dllexp __declspec( dllexport )
  86. #endif
  88. //
  89. // Field types, can be used to associate semantic to each field
  90. // (e.g. not displaying password in clear text but as '*' )
  91. //
  93. #define IISMDB_TYPE_STRING 0 // generic string
  94. #define IISMDB_TYPE_PWD 1 // clear text password
  95. #define IISMDB_TYPE_NTACCT 2 // NT account ([Domain\]UserName)
  96. #define IISMDB_TYPE_ISSUER_O 3 // Certificate Issuer Organization
  97. #define IISMDB_TYPE_ISSUER_OU 4 // Certificate Issuer Organization Unit
  98. #define IISMDB_TYPE_ISSUER_C 5 // Certificate Issuer Country
  99. #define IISMDB_TYPE_SUBJECT_O 6 // Certificate Subject Organization
  100. #define IISMDB_TYPE_SUBJECT_OU 7 // Certificate Subject Organization Unit
  101. #define IISMDB_TYPE_SUBJECT_C 8 // Certificate Subject Country
  102. #define IISMDB_TYPE_SUBJECT_CN 9 // Certificate Subject Name
  103. #define IISMDB_TYPE_ITACCT 10 // Internet account
  104. #define IISMDB_TYPE_ITPWD 11 // Internet password, stored as MD5 digest
  105. #define IISMDB_TYPE_ITREALM 12 // Internet realm
  106. #define IISMDB_TYPE_ITMD5PWD 13 // Internet password, stored as MD5 digest
  107. // of Account ":" Realm ":" Clear-text password
  108. #define IISMDB_TYPE_NTPWD 14 // NT password
  110. #define IISMDB_TYPE_OPTION_MASK 0xff000000
  111. #define IISMDB_TYPE_BINARY 0x80000000
  113. //
  114. // Field indexes for SSL certificates mapping
  115. //
  117. #define IISMDB_INDEX_ISSUER_O 0
  118. #define IISMDB_INDEX_ISSUER_OU 1
  119. #define IISMDB_INDEX_ISSUER_C 2
  120. #define IISMDB_INDEX_SUBJECT_O 3
  121. #define IISMDB_INDEX_SUBJECT_OU 4
  122. #define IISMDB_INDEX_SUBJECT_C 5
  123. #define IISMDB_INDEX_SUBJECT_CN 6
  124. #define IISMDB_INDEX_NT_ACCT 7
  125. #define IISMDB_INDEX_NB 8 // must be last
  127. //
  128. // Field indexes for Internet accounts ( basic authentication ) mapping
  129. //
  131. #define IISIMDB_INDEX_IT_ACCT 0
  132. #define IISIMDB_INDEX_IT_PWD 1
  133. #define IISIMDB_INDEX_NT_ACCT 2
  134. #define IISIMDB_INDEX_NT_PWD 3
  135. #define IISIMDB_INDEX_NB 4 // must be last
  137. //
  138. // Field indexes for Digest authentication mapping
  139. //
  141. #define IISMMDB_INDEX_IT_REALM 0
  142. #define IISMMDB_INDEX_IT_ACCT 1
  143. #define IISMMDB_INDEX_IT_MD5PWD 2
  144. #define IISMMDB_INDEX_NT_ACCT 3
  145. #define IISMMDB_INDEX_IT_CLRPWD 4
  146. #define IISMMDB_INDEX_NT_PWD 5
  147. #define IISMMDB_INDEX_NB 6 // must be last
  149. //
  150. // Client cert to NT acct 1:1 mapping
  151. //
  152. #define CERT11_FULL_CERT
  154. #if defined(CERT11_FULL_CERT)
  155. #define IISMDB_INDEX_CERT11_CERT 0
  156. #define IISMDB_INDEX_CERT11_NT_ACCT 1
  157. #define IISMDB_INDEX_CERT11_NAME 2
  158. #define IISMDB_INDEX_CERT11_ENABLED 3
  159. #define IISMDB_INDEX_CERT11_NT_PWD 4
  160. #define IISMDB_INDEX_CERT11_NB 5
  161. #else
  162. #define IISMDB_INDEX_CERT11_SUBJECT 0
  163. #define IISMDB_INDEX_CERT11_ISSUER 1
  164. #define IISMDB_INDEX_CERT11_NT_ACCT 2
  165. #define IISMDB_INDEX_CERT11_NB 3
  166. #endif
  168. // options
  170. // set if hierarchy to be edited by user
  171. #define IISMDB_OPTION_EDIT_HIERARCHY 0x00000001
  172. #define IISMDB_OPTION_ISSUER_LIST 0x00000002
  174. #define IISMDB_CERT_OPTIONS (IISMDB_OPTION_EDIT_HIERARCHY|IISMDB_OPTION_ISSUER_LIST)
  175. #define IISMDB_CERT11_OPTIONS (IISMDB_OPTION_ISSUER_LIST)
  176. #define IISMDB_ITA_OPTIONS 0
  177. #define IISMDB_MD5_OPTIONS 0
  179. // version #
  181. #define IISMDB_VERSION_1 1
  182. #define IISMDB_CURRENT_VERSION IISMDB_VERSION_1
  184. #define IISMDB_FILE_MAGIC_VALUE (('B'<<24)|('D'<<16)|('M'<<8)|('I'))
  187. #define IIS_CERT_MAPPER_REG "SYSTEM\\CurrentControlSet\\Services\\W3SVC\\Parameters\\CertMapper"
  188. #define IIS_ITA_MAPPER_REG "SYSTEM\\CurrentControlSet\\Services\\W3SVC\\Parameters\\ItaMapper"
  189. #define IIS_MD5_MAPPER_REG "SYSTEM\\CurrentControlSet\\Services\\W3SVC\\Parameters\\Md5Mapper"
  190. #define IIS_CERT11_MAPPER_REG "SYSTEM\\CurrentControlSet\\Services\\W3SVC\\Parameters\\Cert11Mapper"
  191. #define W3_PARAMS "SYSTEM\\CurrentControlSet\\Services\\W3SVC\\Parameters"
  192. #define INSTALL_PATH "InstallPath"
  193. #define MAPPER_GUID "MapperGuid"
  195. // REG_BINARY : MD5 digest of file content
  196. #define FILE_VALIDATOR "FileValidator"
  198. // REG_SZ : file name
  199. #define FILE_LOCATION "FileLocation"
  201. #define IIS_CERT_FILENAME "iiscert.mp"
  202. #define IIS_IT_FILENAME "iisita.mp"
  203. #define IIS_MD5_FILENAME "iismd5.mp"
  204. #define IIS_CERT11_FILENAME "iiscr11.mp"
  206. //
  207. // Mapping array allocation extension granularity
  208. //
  210. #define IIS_MAP_BUFF_GRAN 128
  212. typedef struct _Cert_Map {
  213. DWORD cbIssuerLen;
  214. LPBYTE pIssuer;
  215. DWORD cbSubjectLen;
  216. LPBYTE pSubject;
  217. } Cert_Map ;
  219. //
  220. // Field descriptor
  221. //
  223. typedef struct _IISMDB_Fields {
  224. DWORD m_dwType;
  225. LPSTR m_pszDisplayName;
  226. DWORD m_dwResID;
  227. DWORD m_dwMaxLen;
  228. } IISMDB_Fields;
  230. //
  231. // Field Hierarchy descriptor
  232. //
  234. typedef struct _IISMDB_HEntry {
  235. DWORD m_dwIndex;
  236. BOOL m_fMandatory;;
  237. } IISMDB_HEntry;
  240. class CIisAcctMapper;
  242. class CIisMapping {
  243. public:
  244. CIisMapping();
  245. ~CIisMapping() { if ( m_pBuff != NULL ) LocalFree( m_pBuff ); }
  246. //
  247. dllexp virtual BOOL Serialize( FILE*, VALID_CTX, LPVOID );
  248. dllexp virtual BOOL Deserialize( FILE*, VALID_CTX, LPVOID );
  249. virtual BOOL StoreFieldRef( DWORD iIndex, LPSTR pf ) { return FALSE; }
  250. virtual BOOL StoreFieldRef( DWORD iIndex, LPSTR pf, DWORD dwL ) { return FALSE; }
  251. virtual BOOL IsCrypt( DWORD iIndex ) { return FALSE; }
  252. int Cmp( CIisMapping*, BOOL fCmpForMatch = FALSE );
  253. DWORD GetMask() { return m_dwMask; }
  254. dllexp BOOL UpdateMask( IISMDB_HEntry*, DWORD );
  255. dllexp BOOL Copy( CIisMapping* );
  256. BOOL StoreField(
  257. LPSTR* ppszFields,
  258. DWORD dwIndex,
  259. DWORD dwNbIndex,
  260. LPSTR pszNew
  261. );
  262. BOOL StoreField(
  263. LPSTR* ppszFields,
  264. LPDWORD ppdwFields,
  265. DWORD dwIndex,
  266. DWORD dwNbIndex,
  267. LPSTR pszNew,
  268. DWORD cNew,
  269. BOOL fIsUuEncoded
  270. );
  272. public:
  273. // stores a copy to storage pointed to by pF
  274. dllexp virtual BOOL MappingSetField( DWORD iIndex, LPSTR pF );
  275. dllexp virtual BOOL MappingSetField( DWORD iIndex, LPSTR pF, DWORD cF, BOOL );
  277. // return a pointer to internal storage
  278. dllexp virtual BOOL MappingGetField( DWORD iIndex, LPSTR* );
  279. dllexp virtual BOOL MappingGetField( DWORD iIndex, LPSTR*, LPDWORD, BOOL );
  281. dllexp virtual UINT GetNbField( LPSTR ** ) { return 0; }
  282. dllexp virtual UINT GetNbField( LPSTR **, LPDWORD* ) { return 0; }
  284. dllexp virtual BOOL Clone( CIisMapping** ) { return FALSE; }
  285. dllexp BOOL CloneEx( CIisMapping**, LPSTR*, LPSTR*, LPDWORD, LPDWORD, UINT );
  287. protected:
  288. LPBYTE m_pBuff;
  289. UINT m_cUsedBuff;
  290. UINT m_cAllocBuff;
  291. CIisAcctMapper *m_pMapper;
  292. DWORD m_dwMask;
  293. } ;
  296. class CCertMapping : public CIisMapping {
  297. public:
  298. dllexp CCertMapping();
  299. dllexp CCertMapping( CIisAcctMapper* );
  300. dllexp ~CCertMapping();
  301. //
  302. #if defined(DECODE_ASN1)
  303. BOOL Init( Cert_Map *pC, IISMDB_HEntry *pH, DWORD dwH );
  304. BOOL Init( const LPBYTE pC, DWORD cC, IISMDB_HEntry *pH, DWORD dwH );
  305. #endif
  306. BOOL StoreFieldRef( DWORD iIndex, LPSTR pF ) { m_pFields[iIndex] = pF; return TRUE; }
  307. //
  308. UINT GetNbField(LPSTR **pF) { *pF = m_pFields; return sizeof(m_pFields)/sizeof(LPSTR);}
  309. UINT GetNbField(LPSTR **pF, LPDWORD *pC) { *pC = NULL; *pF = m_pFields; return sizeof(m_pFields)/sizeof(LPSTR);}
  311. BOOL Clone( CIisMapping** ppM)
  312. {
  313. if ( *ppM = new CCertMapping( m_pMapper ) )
  314. {
  315. return CloneEx( ppM, ((CCertMapping*)*ppM)->m_pFields, m_pFields, NULL, NULL, IISMDB_INDEX_NB );
  316. }
  317. return FALSE;
  318. }
  320. private:
  321. LPSTR m_pFields[IISMDB_INDEX_NB];
  322. } ;
  325. class CCert11Mapping : public CIisMapping {
  326. public:
  327. dllexp CCert11Mapping();
  328. dllexp CCert11Mapping( CIisAcctMapper* );
  329. dllexp ~CCert11Mapping();
  330. //
  332. #if defined(CERT11_FULL_CERT)
  333. BOOL Init( LPBYTE pC, DWORD cC, IISMDB_HEntry *pH, DWORD dwH );
  334. #else
  335. BOOL Init( LPBYTE pI, DWORD cI, LPBYTE pS, DWORD cS, IISMDB_HEntry *pH, DWORD dwH );
  336. #endif
  337. BOOL StoreFieldRef( DWORD iIndex, LPSTR pF ) { m_pFields[iIndex] = pF; return TRUE; }
  338. BOOL StoreFieldRef( DWORD iIndex, LPSTR pF, DWORD dwF ) { m_pFields[iIndex] = pF; m_cFields[iIndex] = dwF; return TRUE; }
  339. BOOL IsCrypt( DWORD iIndex ) { return (iIndex == IISMDB_INDEX_CERT11_NT_PWD) ? TRUE : FALSE; }
  340. //
  341. UINT GetNbField(LPSTR **pF) { *pF = m_pFields; return sizeof(m_pFields)/sizeof(LPSTR);}
  342. UINT GetNbField(LPSTR **pF, LPDWORD *pcF) { *pF = m_pFields; *pcF = m_cFields; return sizeof(m_pFields)/sizeof(LPSTR);}
  343. BOOL MappingSetField( DWORD iIndex, LPSTR pF );
  345. BOOL Clone( CIisMapping** ppM)
  346. {
  347. if ( *ppM = new CCert11Mapping( m_pMapper ) )
  348. {
  349. return CloneEx( ppM, ((CCert11Mapping*)*ppM)->m_pFields, m_pFields, ((CCert11Mapping*)*ppM)->m_cFields, m_cFields, IISMDB_INDEX_CERT11_NB );
  350. }
  351. return FALSE;
  352. }
  354. private:
  355. LPSTR m_pFields[IISMDB_INDEX_CERT11_NB];
  356. DWORD m_cFields[IISMDB_INDEX_CERT11_NB];
  357. } ;
  360. class CItaMapping : public CIisMapping {
  361. public:
  362. dllexp CItaMapping();
  363. dllexp CItaMapping( CIisAcctMapper* );
  364. dllexp ~CItaMapping();
  365. //
  366. BOOL Init( LPSTR pszType, LPSTR pszName, LPSTR pszPwd, IISMDB_HEntry *pH, DWORD dwH );
  367. BOOL StoreFieldRef( DWORD iIndex, LPSTR pF ) { m_pFields[iIndex] = pF; return TRUE; }
  368. BOOL IsCrypt( DWORD iIndex ) { return (iIndex == IISIMDB_INDEX_NT_PWD) ? TRUE : FALSE; }
  369. //
  370. UINT GetNbField(LPSTR **pF) { *pF = m_pFields; return sizeof(m_pFields)/sizeof(LPSTR);}
  371. UINT GetNbField(LPSTR **pF, LPDWORD *pC) { *pC = NULL; *pF = m_pFields; return sizeof(m_pFields)/sizeof(LPSTR);}
  372. dllexp BOOL MappingSetField( DWORD iIndex, LPSTR );
  374. BOOL Clone( CIisMapping** ppM)
  375. {
  376. if ( *ppM = new CItaMapping( m_pMapper ) )
  377. {
  378. return CloneEx( ppM, ((CItaMapping*)*ppM)->m_pFields, m_pFields, NULL, NULL, IISIMDB_INDEX_NB );
  379. }
  380. return FALSE;
  381. }
  383. public:
  384. private:
  385. LPSTR m_pFields[IISIMDB_INDEX_NB];
  386. } ;
  389. class CMd5Mapping : public CIisMapping {
  390. public:
  391. dllexp CMd5Mapping();
  392. dllexp CMd5Mapping( CIisAcctMapper* );
  393. dllexp ~CMd5Mapping();
  394. //
  395. BOOL Init( LPSTR pszRealm, LPSTR pszName, IISMDB_HEntry *pH, DWORD dwH );
  396. BOOL StoreFieldRef( DWORD iIndex, LPSTR pF ) { m_pFields[iIndex] = pF; return TRUE; }
  397. BOOL IsCrypt( DWORD iIndex ) { return (iIndex == IISMMDB_INDEX_IT_CLRPWD || iIndex == IISMMDB_INDEX_NT_PWD) ? TRUE : FALSE; }
  398. //
  399. UINT GetNbField(LPSTR **pF) { *pF = m_pFields; return sizeof(m_pFields)/sizeof(LPSTR);}
  400. UINT GetNbField(LPSTR **pF, LPDWORD *pC) { *pC = NULL; *pF = m_pFields; return sizeof(m_pFields)/sizeof(LPSTR);}
  401. dllexp BOOL MappingSetField( DWORD iIndex, LPSTR );
  403. BOOL Clone( CIisMapping** ppM)
  404. {
  405. if ( *ppM = new CMd5Mapping( m_pMapper ) )
  406. {
  407. return CloneEx( ppM, ((CMd5Mapping*)*ppM)->m_pFields, m_pFields, NULL, NULL, IISMMDB_INDEX_NB );
  408. }
  409. return FALSE;
  410. }
  412. public:
  413. private:
  414. LPSTR m_pFields[IISMMDB_INDEX_NB];
  415. } ;
  418. //
  419. // BLOB describing an issuer ( ASN.1 format )
  420. //
  422. typedef struct _IssuerAccepted {
  423. DWORD cbIssuerLen;
  424. LPBYTE pbIssuer;
  425. } IssuerAccepted;
  428. //
  429. // Mapping class descriptor ( a class defines the subset of fields used
  430. // to check for a mapping match ).
  431. //
  433. typedef struct _MappingClass {
  434. DWORD dwClass;
  435. DWORD dwFirst;
  436. DWORD dwLast;
  437. } MappingClass;
  440. class CIisAcctMapper {
  441. public:
  442. dllexp CIisAcctMapper();
  443. dllexp ~CIisAcctMapper();
  444. //
  446. // BOOL* updated with TRUE if 1st call to Init() for this object,
  447. // fMonitorChange used to indicate if change monitoring thread should
  448. // be created. If yes, changes to the database will trigger auto-refresh
  449. // This should be set to FALSE by the mapping Editor ( UI )
  450. //dllexp BOOL Init( BOOL*, BOOL fMonitorChange = TRUE );
  452. // fForce control whether instance is terminated even if non balanced
  453. // calls to Init()/Terminate()
  454. //dllexp BOOL Terminate( BOOL fForce = FALSE );
  456. // clear all mapping entries
  457. dllexp BOOL Reset();
  459. //DWORD UpdateIndication( VOID );
  460. virtual LPSTR GetRegKeyName() { return NULL; }
  462. //
  464. virtual BOOL LoadPrivate( FILE*, VALID_CTX ) { return TRUE; }
  465. virtual BOOL SavePrivate( FILE*, VALID_CTX ) { return TRUE; }
  466. virtual BOOL ResetPrivate() { return TRUE; }
  467. virtual IISMDB_HEntry* GetDefaultHierarchy( LPDWORD pdwN )
  468. { *pdwN = 0; return NULL; }
  469. //
  470. //
  471. dllexp void Lock();
  472. dllexp void Unlock();
  473. //
  474. dllexp BOOL FindMatch( CIisMapping* pQuery, CIisMapping** pResult, LPDWORD pI = NULL );
  475. dllexp BOOL UpdateClasses( BOOL fComputeMask = TRUE );
  476. BOOL SortMappings();
  478. public:
  479. //
  480. // to be used by DB clients
  481. //
  483. dllexp BOOL MappingGetFieldList(IISMDB_Fields** pF, DWORD* pC )
  484. { *pF = m_pFields; *pC = m_cFields; return TRUE; }
  485. dllexp DWORD GetOptions() { return m_dwOptions; }
  486. dllexp DWORD GetNbMapping( BOOL fAlt = FALSE ) { return (fAlt && m_pAltMapping) ? m_cAltMapping : m_cMapping; }
  487. dllexp BOOL GetMapping( DWORD iIndex, CIisMapping**, BOOL fFromAlt = FALSE, BOOL fPutAlt = FALSE );
  488. dllexp BOOL FlushAlternate( BOOL fApply );
  489. dllexp BOOL GetMappingForUpdate( DWORD iIndex, CIisMapping** );
  490. dllexp virtual CIisMapping* CreateNewMapping() { return NULL; }
  491. dllexp virtual BOOL Add( CIisMapping*, BOOL fAlternate = FALSE ); // release ownership of CIisMapping
  492. dllexp virtual DWORD AddEx( CIisMapping* ); // release ownership of CIisMapping
  494. dllexp BOOL Update( DWORD iIndex, CIisMapping* pM );
  495. dllexp BOOL Update( DWORD iIndex );
  496. dllexp BOOL Delete( DWORD iIndex, BOOL fUseAlternate = FALSE );
  497. dllexp VOID DeleteMappingObject( CIisMapping* pM );
  499. // can return ERROR_INVALID_ACCESS if MD5 signature invalid.
  500. // file was loaded anyway, must Save() to validate.
  502. dllexp BOOL Load();
  503. dllexp BOOL Save();
  504. dllexp IISMDB_HEntry* GetHierarchy( DWORD *pC ) { *pC = m_cHierarchy; return m_pHierarchy; }
  505. dllexp BOOL UpdateHierarchy() { return UpdateClasses( TRUE ); }
  507. //
  508. // Create unique ID for this object. Necessary before Load()/Save()
  509. //
  511. dllexp BOOL Create( VOID );
  512. dllexp BOOL Delete( VOID );
  514. dllexp BOOL Serialize( CStoreXBF* );
  515. dllexp BOOL Unserialize( CStoreXBF* );
  516. dllexp BOOL Unserialize( LPBYTE*, LPDWORD );
  517. dllexp BOOL Serialize( VOID );
  518. dllexp BOOL Unserialize( VOID );
  519. //
  520. dllexp virtual BOOL SetIssuerList( IssuerAccepted*, DWORD ) { return FALSE; }
  521. dllexp virtual BOOL GetIssuerList( IssuerAccepted**, DWORD* ) { return FALSE; }
  522. dllexp virtual BOOL DeleteIssuerList( IssuerAccepted*, DWORD ) { return FALSE; }
  523. dllexp virtual BOOL GetIssuerBuffer( LPBYTE, DWORD* ) { return FALSE; }
  524. dllexp virtual BOOL FreeIssuerBuffer( LPBYTE ) { return FALSE; }
  526. protected:
  527. CRITICAL_SECTION csLock;
  528. HANDLE m_hNotifyEvent;
  529. BOOL m_fRequestTerminate;
  531. LONG m_cInit;
  533. CIisMapping ** m_pMapping;
  534. DWORD m_cMapping;
  536. CIisMapping ** m_pAltMapping;
  537. DWORD m_cAltMapping;
  539. CHAR m_achFileName[MAX_PATH];
  541. IISMDB_HEntry * m_pHierarchy;
  542. DWORD m_cHierarchy;
  544. MappingClass* m_pClasses;
  546. IISMDB_Fields* m_pFields;
  547. DWORD m_cFields;
  548. DWORD m_dwOptions;
  550. MD5_CTX m_md5;
  552. LPBYTE m_pSesKey;
  553. DWORD m_dwSesKey;
  554. } ;
  557. //
  558. // SSL client certificates mapper
  559. //
  561. class CIisCertMapper : public CIisAcctMapper {
  562. public:
  563. dllexp CIisCertMapper();
  564. dllexp ~CIisCertMapper();
  565. LPSTR GetRegKeyName() { return IIS_CERT_MAPPER_REG; }
  566. IISMDB_HEntry* GetDefaultHierarchy( LPDWORD pdwN );
  567. dllexp CIisMapping* CreateNewMapping() { return (CIisMapping*)new CCertMapping(this); }
  568. #if defined(DECODE_ASN1)
  569. dllexp CIisMapping* CreateNewMapping( Cert_Map *pC );
  570. dllexp CIisMapping* CreateNewMapping( const LPBYTE pC, DWORD cC );
  571. #endif
  572. BOOL LoadPrivate( FILE*, VALID_CTX );
  573. BOOL SavePrivate( FILE*, VALID_CTX );
  574. BOOL ResetPrivate();
  576. //
  578. // copy the array of issuers to internal storage
  579. dllexp BOOL SetIssuerList( IssuerAccepted*, DWORD );
  581. // returns a copy of issuer list
  582. dllexp BOOL GetIssuerList( IssuerAccepted**, DWORD* );
  584. // used to delete the copy returned by GetIssuerList
  585. dllexp BOOL DeleteIssuerList( IssuerAccepted*, DWORD );
  587. dllexp virtual BOOL GetIssuerBuffer( LPBYTE, DWORD* );
  588. dllexp virtual BOOL FreeIssuerBuffer( LPBYTE );
  590. public:
  592. private:
  593. IssuerAccepted *m_pIssuers;
  594. DWORD m_cIssuers;
  596. } ;
  599. //
  600. // SSL client certificates 1:1 mapper
  601. //
  603. class CIisCert11Mapper : public CIisAcctMapper {
  604. public:
  605. dllexp CIisCert11Mapper();
  606. dllexp ~CIisCert11Mapper();
  607. LPSTR GetRegKeyName() { return IIS_CERT11_MAPPER_REG; }
  608. IISMDB_HEntry* GetDefaultHierarchy( LPDWORD pdwN );
  609. dllexp CIisMapping* CreateNewMapping() { return (CIisMapping*)new CCert11Mapping(this); }
  610. #if defined(CERT11_FULL_CERT)
  611. dllexp CIisMapping* CreateNewMapping( LPBYTE pC, DWORD dwC );
  612. #else
  613. dllexp CIisMapping* CreateNewMapping( LPBYTE pI, DWORD dwI, LPBYTE pS, DWORD dwB );
  614. #endif
  615. BOOL LoadPrivate( FILE*, VALID_CTX );
  616. BOOL SavePrivate( FILE*, VALID_CTX );
  617. BOOL ResetPrivate();
  618. BOOL Add( CIisMapping* );
  620. //
  622. // copy the array of issuers to internal storage
  623. dllexp BOOL SetIssuerList( IssuerAccepted*, DWORD );
  625. // returns a copy of issuer list
  626. dllexp BOOL GetIssuerList( IssuerAccepted**, DWORD* );
  628. // used to delete the copy returned by GetIssuerList
  629. dllexp BOOL DeleteIssuerList( IssuerAccepted*, DWORD );
  631. dllexp virtual BOOL GetIssuerBuffer( LPBYTE, DWORD* );
  632. dllexp virtual BOOL FreeIssuerBuffer( LPBYTE );
  634. //
  635. // Issuer + subject.field used as NT acct
  636. //
  638. dllexp BOOL SetSubjectSource( LPSTR );
  639. dllexp LPSTR GetSubjectSource() { return m_pSubjectSource; }
  640. dllexp BOOL SetDefaultDomain( LPSTR );
  641. dllexp LPSTR GetDefaultDomain() { return m_pDefaultDomain; }
  643. public:
  645. private:
  646. IssuerAccepted *m_pIssuers;
  647. DWORD m_cIssuers;
  648. LPSTR m_pSubjectSource;
  649. LPSTR m_pDefaultDomain;
  650. } ;
  653. //
  654. // Internet account mapper ( Basic authentication )
  655. //
  657. class CIisItaMapper : public CIisAcctMapper {
  658. public:
  659. dllexp CIisItaMapper();
  660. dllexp ~CIisItaMapper();
  661. LPSTR GetRegKeyName() { return IIS_ITA_MAPPER_REG; }
  662. IISMDB_HEntry* GetDefaultHierarchy( LPDWORD pdwN );
  663. dllexp CIisMapping* CreateNewMapping() { return (CIisMapping*)new CItaMapping(this); }
  664. dllexp CIisMapping* CreateNewMapping( LPSTR pszType, LPSTR pszName, LPSTR pszPdw );
  665. //
  667. public:
  669. private:
  671. } ;
  674. //
  675. // Digest authentication account mapper
  676. //
  678. class CIisMd5Mapper : public CIisAcctMapper {
  679. public:
  680. dllexp CIisMd5Mapper();
  681. dllexp ~CIisMd5Mapper();
  682. LPSTR GetRegKeyName() { return IIS_MD5_MAPPER_REG; }
  683. IISMDB_HEntry* GetDefaultHierarchy( LPDWORD pdwN );
  684. dllexp CIisMapping* CreateNewMapping() { return (CIisMapping*)new CMd5Mapping(this); }
  685. dllexp CIisMapping* CreateNewMapping( LPSTR pszRealm, LPSTR pszName );
  686. //
  688. public:
  690. private:
  692. } ;
  695. dllexp
  696. BOOL
  697. ReportIisMapEvent(
  698. WORD wType,
  699. DWORD dwEventId,
  700. WORD cNbStr,
  701. LPCTSTR* pStr
  702. );
  704. dllexp
  705. BOOL IISuudecode(char * bufcoded,
  706. BYTE * bufout,
  707. DWORD * pcbDecoded,
  708. BOOL fBase64
  709. );
  710. dllexp
  711. BOOL IISuuencode( BYTE * bufin,
  712. DWORD nbytes,
  713. BYTE * outptr,
  714. BOOL fBase64 );
  717. dllexp
  718. DWORD WINAPI
  719. CreateMapping(
  720. LPWSTR pwszUuIssuer,
  721. LPWSTR pwszUuSubject,
  722. LPWSTR pwszNtAcct
  723. );
  725. dllexp
  726. DWORD WINAPI
  727. CheckMapping(
  728. LPWSTR pwszUuIssuer,
  729. LPWSTR pwszUuSubject,
  730. LPWSTR* pwszNtAcct
  731. );
  733. dllexp
  734. DWORD WINAPI
  735. SaveMapping(
  736. VOID
  737. );
  740. BOOL InitializeMapping( HANDLE );
  741. VOID TerminateMapping();
  742. BOOL
  743. LoadFieldNames(
  744. IISMDB_Fields* pFields,
  745. UINT cFields
  746. );
  747. VOID
  748. FreeFieldNames(
  749. IISMDB_Fields* pFields,
  750. UINT cFields
  751. );
  753. dllexp VOID
  754. FreeCIisAcctMapper(
  755. LPVOID pMapper
  756. );