Null Authentication handler. More...
#include <sbuild-auth-null.h>
Inheritance diagram for sbuild::auth_null:
Collaboration diagram for sbuild::auth_null:
Public Member Functions | |
| virtual | ~auth_null () |
| The destructor. | |
| virtual environment | get_auth_environment () const |
| Get the PAM environment. More... | |
| virtual void | start () |
| Start the PAM system. More... | |
| virtual void | stop () |
| Stop the PAM system. More... | |
| virtual void | authenticate (status auth_status) |
| Perform PAM authentication. More... | |
| virtual bool | is_initialised () const |
| Check if PAM is initialised (i.e. More... | |
| Public Member Functions inherited from sbuild::auth | |
| virtual | ~auth () |
| The destructor. | |
| std::string const & | get_service () const |
| Get the PAM service name. More... | |
| uid_t | get_uid () const |
| Get the uid of the user. More... | |
| gid_t | get_gid () const |
| Get the gid of the user. More... | |
| std::string const & | get_user () const |
| Get the name of the user. More... | |
| void | set_user (uid_t uid) |
| Set the name of the user. More... | |
| void | set_user (std::string const &user) |
| Set the name of the user. More... | |
| string_list const & | get_command () const |
| Get the command to run in the session. More... | |
| void | set_command (string_list const &command) |
| Set the command to run in the session. More... | |
| std::string const & | get_home () const |
| Get the home directory. More... | |
| std::string const & | get_wd () const |
| Get the working directory. More... | |
| void | set_wd (std::string const &wd) |
| Set the working directory. More... | |
| std::string const & | get_shell () const |
| Get the name of the shell. More... | |
| environment const & | get_user_environment () const |
| Get the user environment to use in the session. More... | |
| void | set_user_environment (char **environment) |
| Set the user environment to use in the session. More... | |
| void | set_user_environment (environment const &environment) |
| Set the user environment to use in the session. More... | |
| environment | get_minimal_environment () const |
| Get the minimal environment. More... | |
| environment | get_complete_environment () const |
| Get the complete environment. More... | |
| uid_t | get_ruid () const |
| Get the "remote uid" of the user. More... | |
| gid_t | get_rgid () const |
| Get the "remote gid" of the user. More... | |
| std::string const & | get_ruser () const |
| Get the "remote" name of the user. More... | |
| void | set_ruser (uid_t ruid) |
| Set the "remote" name of the user. More... | |
| void | set_ruser (std::string const &ruser) |
| Set the "remote" name of the user. More... | |
| std::string const & | get_rgroup () const |
| Get the "remote" name of the group. More... | |
| virtual void | setupenv () |
| Import the user environment into PAM. More... | |
| virtual void | account () |
| Do PAM account management (authorisation). More... | |
| virtual void | cred_establish () |
| Use PAM to establish credentials. More... | |
| virtual void | cred_delete () |
| Use PAM to delete credentials. More... | |
| virtual void | open_session () |
| Open a PAM session. More... | |
| virtual void | close_session () |
| Close a PAM session. More... | |
Static Public Member Functions | |
| static auth::ptr | create (std::string const &service_name) |
| Create an auth_null object. More... | |
| Static Public Member Functions inherited from sbuild::auth | |
| static status | change_auth (status oldauth, status newauth) |
| Set new authentication status. More... | |
Protected Attributes | |
| bool | initialised |
| Is the serive initialised? | |
| environment | auth_environment |
| Minimal environment. | |
| Protected Attributes inherited from sbuild::auth | |
| const std::string | service |
| The PAM service name. | |
| uid_t | uid |
| The uid to run as. | |
| gid_t | gid |
| The gid to run as. | |
| std::string | user |
| The user name to run as. | |
| string_list | command |
| The command to run. | |
| std::string | home |
| The home directory. | |
| std::string | wd |
| The directory to run in. | |
| std::string | shell |
| The user shell to run. | |
| environment | user_environment |
| The user environment to set. | |
| uid_t | ruid |
| The uid requesting authentication. | |
| gid_t | rgid |
| The gid requesting authentication. | |
| std::string | ruser |
| The user name requesting authentication. | |
| std::string | rgroup |
| The group name requesting authentication. | |
Private Member Functions | |
| auth_null (std::string const &service_name) | |
| The constructor. More... | |
Additional Inherited Members | |
| Public Types inherited from sbuild::auth | |
| enum | status { STATUS_NONE, STATUS_USER, STATUS_FAIL } |
| Authentication status. More... | |
| enum | error_code { HOSTNAME, USER, GROUP, AUTHENTICATION, AUTHORISATION, PAM_DOUBLE_INIT, PAM, PAM_END } |
| Error codes. More... | |
| typedef custom_error< error_code > | error |
| Exception type. | |
| typedef std::shared_ptr< auth > | ptr |
| A shared_ptr to a auth object. | |
| Protected Member Functions inherited from sbuild::auth | |
| auth (std::string const &service_name) | |
| The constructor. More... | |
| void | set_user (passwd const &pwent) |
| Set the name of the user. More... | |
| void | set_ruser (passwd const &rpwent) |
| Set the "remote" name of the user. More... | |
Detailed Description
Null Authentication handler.
auth_null handles user authentication, authorisation and session management. Unlike auth_pam, it does nothing. All attempts to authenticate will fail.
Constructor & Destructor Documentation
|
private |
The constructor.
- Parameters
-
service_name the PAM service name. This should be a hard-coded constant string literal for safety and security. This is passed to pam_start() when initialising PAM, and is used to load the correct configuration file from /etc/pam.d.
Referenced by create().
Here is the caller graph for this function:
Member Function Documentation
|
virtual |
Perform PAM authentication.
If auth_status is set to AUTH_USER, the user will be prompted to authenticate themselves. If auth_status is AUTH_NONE, no authentication is required, and if AUTH_FAIL, authentication will fail.
An error will be thrown on failure.
- Parameters
-
auth_status initial authentication status.
- Todo:
- Use sysconf(_SC_HOST_NAME_MAX) when libc in a stable release supports it.
Reimplemented from sbuild::auth.
References sbuild::_(), sbuild::auth::AUTHENTICATION, sbuild::auth::AUTHORISATION, sbuild::DEBUG_INFO, initialised, sbuild::log_debug(), sbuild::auth::ruid, sbuild::auth::ruser, sbuild::auth::service, sbuild::auth::STATUS_FAIL, sbuild::auth::STATUS_NONE, sbuild::auth::STATUS_USER, and sbuild::auth::user.
|
static |
Create an auth_null object.
- Parameters
-
service_name the PAM service name. This should be a hard-coded constant string literal for safety and security. This is passed to pam_start() when initialising PAM, and is used to load the correct configuration file from /etc/pam.d.
- Returns
- a shared pointer to the created object.
References auth_null().
|
virtual |
Get the PAM environment.
This is the environment as set by PAM modules.
- Returns
- an environment list.
Implements sbuild::auth.
References sbuild::auth::get_minimal_environment().
|
virtual |
Check if PAM is initialised (i.e.
start has been called).
- Returns
- true if initialised, otherwise false.
Implements sbuild::auth.
References initialised.
|
virtual |
Start the PAM system.
No other PAM functions may be called before calling this function.
An error will be thrown on failure.
Reimplemented from sbuild::auth.
References sbuild::DEBUG_CRITICAL, initialised, sbuild::log_debug(), sbuild::auth::PAM_DOUBLE_INIT, and sbuild::auth::user.
|
virtual |
Stop the PAM system.
No other PAM functions may be used after calling this function.
An error will be thrown on failure.
Reimplemented from sbuild::auth.
References initialised.
Referenced by ~auth_null().
Here is the caller graph for this function:
The documentation for this class was generated from the following files:
- sbuild/sbuild-auth-null.h
- sbuild/sbuild-auth-null.cc
