203 lines
4.4 KiB
C
203 lines
4.4 KiB
C
/*
|
|
* This file is distributed as part of the SkySQL Gateway. It is free
|
|
* software: you can redistribute it and/or modify it under the terms of the
|
|
* GNU General Public License as published by the Free Software Foundation,
|
|
* version 2.
|
|
*
|
|
* This program is distributed in the hope that it will be useful, but WITHOUT
|
|
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
|
|
* FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
|
|
* details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License along with
|
|
* this program; if not, write to the Free Software Foundation, Inc., 51
|
|
* Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
|
*
|
|
* Copyright SkySQL Ab 2013
|
|
*/
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
#include <string.h>
|
|
#define _XOPEN_SOURCE
|
|
#include <unistd.h>
|
|
#include <crypt.h>
|
|
#include <users.h>
|
|
#include <adminusers.h>
|
|
#include <skygw_utils.h>
|
|
#include <log_manager.h>
|
|
|
|
/**
|
|
* @file adminusers.c - Administration user account management
|
|
*
|
|
* @verbatim
|
|
* Revision History
|
|
*
|
|
* Date Who Description
|
|
* 18/07/13 Mark Riddoch Initial implementation
|
|
* 23/07/13 Mark Riddoch Addition of error mechanism to add user
|
|
*
|
|
* @endverbatim
|
|
*/
|
|
|
|
static USERS *loadUsers();
|
|
static void initialise();
|
|
|
|
static USERS *users = NULL;
|
|
static int admin_init = 0;
|
|
|
|
static char *ADMIN_ERR_NOMEM = "Out of memory";
|
|
static char *ADMIN_ERR_FILEOPEN = "Unable to create password file";
|
|
static char *ADMIN_ERR_DUPLICATE = "Duplicate username specified";
|
|
static char *ADMIN_ERR_FILEAPPEND = "Unable to append to password file";
|
|
|
|
/**
|
|
* Admin Users initialisation
|
|
*/
|
|
static void
|
|
initialise()
|
|
{
|
|
if (admin_init)
|
|
return;
|
|
admin_init = 1;
|
|
users = loadUsers();
|
|
}
|
|
|
|
/**
|
|
* Verify a username and password
|
|
*
|
|
* @param username Username to verify
|
|
* @param password Password to verify
|
|
* @return Non-zero if the username/password combination is valid
|
|
*/
|
|
int
|
|
admin_verify(char *username, char *password)
|
|
{
|
|
char *pw;
|
|
|
|
initialise();
|
|
if (users == NULL)
|
|
{
|
|
if (strcmp(username, "admin") == 0 && strcmp(password, "skysql") == 0)
|
|
return 1;
|
|
}
|
|
else
|
|
{
|
|
if ((pw = users_fetch(users, username)) == NULL)
|
|
return 0;
|
|
if (strcmp(pw, crypt(password, ADMIN_SALT)) == 0)
|
|
return 1;
|
|
}
|
|
return 0;
|
|
}
|
|
|
|
|
|
/**
|
|
* Load the admin users
|
|
*
|
|
* @return Table of users
|
|
*/
|
|
static USERS *
|
|
loadUsers()
|
|
{
|
|
USERS *rval;
|
|
FILE *fp;
|
|
char fname[1024], *home;
|
|
char uname[80], passwd[80];
|
|
|
|
initialise();
|
|
if ((home = getenv("MAXSCALE_HOME")) != NULL)
|
|
sprintf(fname, "%s/etc/passwd", home);
|
|
else
|
|
sprintf(fname, "/usr/local/skysql/MaxScale/etc/passwd");
|
|
if ((fp = fopen(fname, "r")) == NULL)
|
|
return NULL;
|
|
if ((rval = users_alloc()) == NULL)
|
|
return NULL;
|
|
while (fscanf(fp, "%[^:]:%s\n", uname, passwd) == 2)
|
|
{
|
|
users_add(rval, uname, passwd);
|
|
}
|
|
fclose(fp);
|
|
|
|
return rval;
|
|
}
|
|
|
|
/**
|
|
* Add user
|
|
*
|
|
* @param uname Name of the new user
|
|
* @param passwd Password for the new user
|
|
* @return NULL on success or an error string on failure
|
|
*/
|
|
char *
|
|
admin_add_user(char *uname, char *passwd)
|
|
{
|
|
FILE *fp;
|
|
char fname[1024], *home, *cpasswd;
|
|
|
|
initialise();
|
|
if ((home = getenv("MAXSCALE_HOME")) != NULL)
|
|
sprintf(fname, "%s/etc/passwd", home);
|
|
else
|
|
sprintf(fname, "/usr/local/skysql/MaxScale/etc/passwd");
|
|
if (users == NULL)
|
|
{
|
|
skygw_log_write(NULL, LOGFILE_MESSAGE, "Create initial password file.\n");
|
|
if ((users = users_alloc()) == NULL)
|
|
return ADMIN_ERR_NOMEM;
|
|
if ((fp = fopen(fname, "w")) == NULL)
|
|
{
|
|
skygw_log_write(NULL, LOGFILE_ERROR,
|
|
"Unable to create password file %s.\n",
|
|
fname);
|
|
return ADMIN_ERR_FILEOPEN;
|
|
}
|
|
fclose(fp);
|
|
}
|
|
if (users_fetch(users, uname) != NULL)
|
|
{
|
|
return ADMIN_ERR_DUPLICATE;
|
|
}
|
|
cpasswd = crypt(passwd, ADMIN_SALT);
|
|
users_add(users, uname, cpasswd);
|
|
if ((fp = fopen(fname, "a")) == NULL)
|
|
{
|
|
skygw_log_write(NULL, LOGFILE_ERROR,
|
|
"Unable to append to password file %s.\n",
|
|
fname);
|
|
return ADMIN_ERR_FILEAPPEND;
|
|
}
|
|
fprintf(fp, "%s:%s\n", uname, cpasswd);
|
|
fclose(fp);
|
|
return NULL;
|
|
}
|
|
|
|
/**
|
|
* Check for existance of the user
|
|
*
|
|
* @param user The user name to test
|
|
* @return Non-zero if the user exists
|
|
*/
|
|
int
|
|
admin_test_user(char *user)
|
|
{
|
|
initialise();
|
|
if (users == NULL)
|
|
return 0;
|
|
return users_fetch(users, user) != NULL;
|
|
}
|
|
|
|
/**
|
|
* Print the statistics and user names of the administration users
|
|
*
|
|
* @param dcb A DCB to send the output to
|
|
*/
|
|
void
|
|
dcb_PrintAdminUsers(DCB *dcb)
|
|
{
|
|
if (users)
|
|
dcb_usersPrint(dcb, users);
|
|
else
|
|
dcb_printf(dcb, "No administrtion users have been defined.\n");
|
|
}
|