#ifndef _HTTP_AUTH_H_
#define _HTTP_AUTH_H_
#include "server.h"
#include "plugin.h"
#if defined(HAVE_LDAP_H) && defined(HAVE_LBER_H) && defined(HAVE_LIBLDAP) && defined(HAVE_LIBLBER)
# define USE_LDAP
# include <ldap.h>
#endif
#include <mysql/mysql.h>
typedef enum {
AUTH_BACKEND_UNSET,
AUTH_BACKEND_PLAIN,
AUTH_BACKEND_LDAP,
AUTH_BACKEND_HTPASSWD,
AUTH_BACKEND_HTDIGEST,
AUTH_BACKEND_MYSQL
} auth_backend_t;
typedef struct {
/* auth */
array *auth_require;
buffer *auth_plain_groupfile;
buffer *auth_plain_userfile;
buffer *auth_htdigest_userfile;
buffer *auth_htpasswd_userfile;
buffer *auth_backend_conf;
buffer *auth_ldap_hostname;
buffer *auth_ldap_basedn;
buffer *auth_ldap_binddn;
buffer *auth_ldap_bindpw;
buffer *auth_ldap_filter;
buffer *auth_ldap_cafile;
unsigned short auth_ldap_starttls;
unsigned short auth_ldap_allow_empty_pw;
unsigned short auth_debug;
/* generated */
auth_backend_t auth_backend;
#ifdef USE_LDAP
LDAP *ldap;
buffer *ldap_filter_pre;
buffer *ldap_filter_post;
#endif
MYSQL *mysql_conn;
buffer *auth_mysql_host;
buffer *auth_mysql_user;
buffer *auth_mysql_pass;
buffer *auth_mysql_db;
buffer *auth_mysql_port;
buffer *auth_mysql_socket;
buffer *auth_mysql_users_table;
buffer *auth_mysql_col_user;
buffer *auth_mysql_col_pass;
buffer *auth_mysql_col_realm;
buffer *auth_mysql_domains_table;
buffer *auth_mysql_col_domain;
buffer *auth_mysql_domains_table_col_domain_id;
buffer *auth_mysql_users_table_col_domain_id;
} mod_auth_plugin_config;
typedef struct {
PLUGIN_DATA;
buffer *tmp_buf;
buffer *auth_user;
#ifdef USE_LDAP
buffer *ldap_filter;
#endif
mod_auth_plugin_config **config_storage;
mod_auth_plugin_config conf, *anon_conf; /* this is only used as long as no handler_ctx is setup */
} mod_auth_plugin_data;
int http_auth_basic_check(server *srv, connection *con, mod_auth_plugin_data *p, array *req, const char *realm_str);
int http_auth_digest_check(server *srv, connection *con, mod_auth_plugin_data *p, array *req, const char *realm_str);
int http_auth_digest_generate_nonce(server *srv, mod_auth_plugin_data *p, buffer *fn, char hh[33]);
int http_auth_match_rules(server *srv, array *req, const char *username, const char *group, const char *host);
#endif
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>