/* -*- Mode: C; tab-width: 8; indent-tabs-mode: t; c-basic-offset: 8 -*- */
/*
* Authors: Jeffrey Stedfast <fejj@ximian.com>
*
* Copyright 2001 Ximian, Inc. (www.ximian.com)
*
* This program is free software; you can redistribute it and/or
* modify it under the terms of version 2 of the GNU General Public
* License as published by the Free Software Foundation.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* General Public License for more details.
*
* You should have received a copy of the GNU General Public
* License along with this program; if not, write to the
* Free Software Foundation, Inc., 59 Temple Place - Suite 330,
* Boston, MA 02111-1307, USA.
*
*/
#ifdef HAVE_CONFIG_H
#include <config.h>
#endif
#include <string.h>
#include "camel-sasl.h"
#include "camel-mime-utils.h"
#include "camel-service.h"
#include "camel-sasl-cram-md5.h"
#include "camel-sasl-digest-md5.h"
#include "camel-sasl-gssapi.h"
#include "camel-sasl-kerberos4.h"
#include "camel-sasl-login.h"
#include "camel-sasl-plain.h"
#include "camel-sasl-popb4smtp.h"
#include "camel-sasl-ntlm.h"
#define w(x)
static CamelObjectClass *parent_class = NULL;
/* Returns the class for a CamelSasl */
#define CS_CLASS(so) CAMEL_SASL_CLASS (CAMEL_OBJECT_GET_CLASS (so))
static GByteArray *sasl_challenge (CamelSasl *sasl, GByteArray *token, CamelException *ex);
static void
camel_sasl_class_init (CamelSaslClass *camel_sasl_class)
{
parent_class = camel_type_get_global_classfuncs (CAMEL_OBJECT_TYPE);
/* virtual method definition */
camel_sasl_class->challenge = sasl_challenge;
}
static void
camel_sasl_finalize (CamelSasl *sasl)
{
g_free (sasl->service_name);
g_free(sasl->mech);
camel_object_unref (CAMEL_OBJECT (sasl->service));
}
CamelType
camel_sasl_get_type (void)
{
static CamelType type = CAMEL_INVALID_TYPE;
if (type == CAMEL_INVALID_TYPE) {
type = camel_type_register (CAMEL_OBJECT_TYPE,
"CamelSasl",
sizeof (CamelSasl),
sizeof (CamelSaslClass),
(CamelObjectClassInitFunc) camel_sasl_class_init,
NULL,
NULL,
(CamelObjectFinalizeFunc) camel_sasl_finalize);
}
return type;
}
static GByteArray *
sasl_challenge (CamelSasl *sasl, GByteArray *token, CamelException *ex)
{
w(g_warning ("sasl_challenge: Using default implementation!"));
return NULL;
}
/**
* camel_sasl_challenge:
* @sasl: a SASL object
* @token: a token, or %NULL
* @ex: exception
*
* If @token is %NULL, generate the initial SASL message to send to
* the server. (This will be %NULL if the client doesn't initiate the
* exchange.) Otherwise, @token is a challenge from the server, and
* the return value is the response.
*
* Return value: The SASL response or %NULL. If an error occurred, @ex
* will also be set.
**/
GByteArray *
camel_sasl_challenge (CamelSasl *sasl, GByteArray *token, CamelException *ex)
{
g_return_val_if_fail (CAMEL_IS_SASL (sasl), NULL);
return CS_CLASS (sasl)->challenge (sasl, token, ex);
}
/**
* camel_sasl_challenge_base64:
* @sasl: a SASL object
* @token: a base64-encoded token
* @ex: exception
*
* As with camel_sasl_challenge(), but the challenge @token and the
* response are both base64-encoded.
*
* Return value: As with camel_sasl_challenge(), but base64-encoded.
**/
char *
camel_sasl_challenge_base64 (CamelSasl *sasl, const char *token, CamelException *ex)
{
GByteArray *token_binary, *ret_binary;
char *ret;
int len;
g_return_val_if_fail (CAMEL_IS_SASL (sasl), NULL);
if (token) {
token_binary = g_byte_array_new ();
len = strlen (token);
g_byte_array_append (token_binary, token, len);
token_binary->len = base64_decode_simple (token_binary->data, len);
} else
token_binary = NULL;
ret_binary = camel_sasl_challenge (sasl, token_binary, ex);
if (token_binary)
g_byte_array_free (token_binary, TRUE);
if (!ret_binary)
return NULL;
ret = base64_encode_simple (ret_binary->data, ret_binary->len);
g_byte_array_free (ret_binary, TRUE);
return ret;
}
/**
* camel_sasl_authenticated:
* @sasl: a SASL object
*
* Return value: whether or not @sasl has successfully authenticated
* the user. This will be %TRUE after it returns the last needed response.
* The caller must still pass that information on to the server and verify
* that it has accepted it.
**/
gboolean
camel_sasl_authenticated (CamelSasl *sasl)
{
return sasl->authenticated;
}
/**
* camel_sasl_new:
* @service_name: the SASL service name
* @mechanism: the SASL mechanism
* @service: the CamelService that will be using this SASL
*
* Return value: a new CamelSasl for the given @service_name,
* @mechanism, and @service, or %NULL if the mechanism is not
* supported.
**/
CamelSasl *
camel_sasl_new (const char *service_name, const char *mechanism, CamelService *service)
{
CamelSasl *sasl;
g_return_val_if_fail (service_name != NULL, NULL);
g_return_val_if_fail (mechanism != NULL, NULL);
g_return_val_if_fail (CAMEL_IS_SERVICE (service), NULL);
/* We don't do ANONYMOUS here, because it's a little bit weird. */
if (!strcmp (mechanism, "CRAM-MD5"))
sasl = (CamelSasl *)camel_object_new (CAMEL_SASL_CRAM_MD5_TYPE);
else if (!strcmp (mechanism, "DIGEST-MD5"))
sasl = (CamelSasl *)camel_object_new (CAMEL_SASL_DIGEST_MD5_TYPE);
#ifdef HAVE_KRB5
else if (!strcmp (mechanism, "GSSAPI"))
sasl = (CamelSasl *)camel_object_new (CAMEL_SASL_GSSAPI_TYPE);
#endif
#ifdef HAVE_KRB4
else if (!strcmp (mechanism, "KERBEROS_V4"))
sasl = (CamelSasl *)camel_object_new (CAMEL_SASL_KERBEROS4_TYPE);
#endif
else if (!strcmp (mechanism, "PLAIN"))
sasl = (CamelSasl *)camel_object_new (CAMEL_SASL_PLAIN_TYPE);
else if (!strcmp (mechanism, "LOGIN"))
sasl = (CamelSasl *)camel_object_new (CAMEL_SASL_LOGIN_TYPE);
else if (!strcmp (mechanism, "POPB4SMTP"))
sasl = (CamelSasl *)camel_object_new (CAMEL_SASL_POPB4SMTP_TYPE);
else if (!strcmp (mechanism, "NTLM"))
sasl = (CamelSasl *)camel_object_new (CAMEL_SASL_NTLM_TYPE);
else
return NULL;
sasl->mech = g_strdup(mechanism);
sasl->service_name = g_strdup (service_name);
sasl->service = service;
camel_object_ref (CAMEL_OBJECT (service));
return sasl;
}
/**
* camel_sasl_authtype_list:
* @include_plain: whether or not to include the PLAIN mechanism
*
* Return value: a GList of SASL-supported authtypes. The caller must
* free the list, but not the contents.
**/
GList *
camel_sasl_authtype_list (gboolean include_plain)
{
GList *types = NULL;
types = g_list_prepend (types, &camel_sasl_cram_md5_authtype);
types = g_list_prepend (types, &camel_sasl_digest_md5_authtype);
#ifdef HAVE_KRB5
types = g_list_prepend (types, &camel_sasl_gssapi_authtype);
#endif
#ifdef HAVE_KRB4
types = g_list_prepend (types, &camel_sasl_kerberos4_authtype);
#endif
types = g_list_prepend (types, &camel_sasl_ntlm_authtype);
if (include_plain)
types = g_list_prepend (types, &camel_sasl_plain_authtype);
return types;
}
/**
* camel_sasl_authtype:
* @mechanism: the SASL mechanism to get an authtype for
*
* Return value: a CamelServiceAuthType for the given mechanism, if
* it is supported.
**/
CamelServiceAuthType *
camel_sasl_authtype (const char *mechanism)
{
if (!strcmp (mechanism, "CRAM-MD5"))
return &camel_sasl_cram_md5_authtype;
else if (!strcmp (mechanism, "DIGEST-MD5"))
return &camel_sasl_digest_md5_authtype;
#ifdef HAVE_KRB5
else if (!strcmp (mechanism, "GSSAPI"))
return &camel_sasl_gssapi_authtype;
#endif
#ifdef HAVE_KRB4
else if (!strcmp (mechanism, "KERBEROS_V4"))
return &camel_sasl_kerberos4_authtype;
#endif
else if (!strcmp (mechanism, "PLAIN"))
return &camel_sasl_plain_authtype;
else if (!strcmp (mechanism, "LOGIN"))
return &camel_sasl_login_authtype;
else if (!strcmp(mechanism, "POPB4SMTP"))
return &camel_sasl_popb4smtp_authtype;
else if (!strcmp (mechanism, "NTLM"))
return &camel_sasl_ntlm_authtype;
else
return NULL;
}
