blob: a4a31188e8991e05e7c2117716b170538b6968f9 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
|
package FS::AuthCookieHandler;
use base qw( Apache2::AuthCookie );
use strict;
use Digest::SHA qw( sha1_hex );
use FS::UID qw( adminsuidsetup );
my $secret = "XXX temporary"; #XXX move to a DB session with random number as key
my $module = 'legacy'; #XXX i am set in a conf somehow? or a config file
sub authen_cred {
my( $self, $r, $username, $password ) = @_;
if ( _is_valid_user($username, $password) ) {
warn "authenticated $username from ". $r->connection->remote_ip. "\n";
adminsuidsetup($username);
my $session_key =
$username . '::' . sha1_hex( $username, $secret );
return $session_key;
} else {
warn "failed authentication $username from ". $r->connection->remote_ip. "\n";
}
return undef; #?
}
sub _is_valid_user {
my( $username, $password ) = @_;
my $class = 'FS::Auth::'.$module;
#earlier?
eval "use $class;";
die $@ if $@;
$class->authenticate($username, $password);
}
sub authen_ses_key {
my( $self, $r, $session_key ) = @_;
my ($username, $mac) = split /::/, $session_key;
if ( sha1_hex( $username, $secret ) eq $mac ) {
adminsuidsetup($username);
return $username;
} else {
warn "bad session $session_key from ". $r->connection->remote_ip. "\n";
}
return undef;
}
1;
|