--- mqtt/src/accmqtt.c 2011/11/23 14:51:14 1.1.2.3 +++ mqtt/src/accmqtt.c 2012/04/25 07:37:16 1.2.2.2 @@ -1,6 +1,9 @@ #include "global.h" +extern const char sql_schema[]; + + /* * mqtt_rtlm_log() Log database connection message * @@ -28,7 +31,7 @@ mqtt_rtlm_log(const char *fmt, ...) * return: NULL error or SQL handle */ sqlite3 * -mqtt_rtlm_open(sl_config *cfg) +mqtt_rtlm_open(cfg_root_t *cfg) { sqlite3 *sql = NULL; const char *str = NULL; @@ -36,18 +39,30 @@ mqtt_rtlm_open(sl_config *cfg) if (!cfg) return NULL; - str = (const char*) cfg_GetAttribute(cfg, CFG("mqtt_acc"), CFG("name")); + sqlite3_config(SQLITE_CONFIG_SERIALIZED); + if (!sqlite3_threadsafe()) + return NULL; + + str = (const char*) cfg_getAttribute(cfg, "mqtt_acc", "name"); if (!str) { mqtt_rtlm_log("Error:: Unknown database name ...\n"); return NULL; } - if (sqlite3_open_v2(str, &sql, SQLITE_OPEN_READONLY, NULL)) { + if (sqlite3_open_v2(str, &sql, SQLITE_OPEN_READWRITE | SQLITE_OPEN_CREATE, NULL)) { MQTT_RTLM_LOG(sql); sqlite3_close(sql); return NULL; } + sqlite3_mutex_enter(sqlite3_db_mutex(sql)); + if (sqlite3_exec(sql, sql_schema, NULL, NULL, NULL)) { + MQTT_RTLM_LOG(sql); + sqlite3_mutex_leave(sqlite3_db_mutex(sql)); + sqlite3_close(sql); + return NULL; + } + sqlite3_mutex_leave(sqlite3_db_mutex(sql)); return sql; } @@ -61,4 +76,51 @@ void mqtt_rtlm_close(sqlite3 *sql) { sqlite3_close(sql); +} + +/* + * mqtt_rtlm_login() Verify login account + * + * @cfg = loaded config + * @sql = SQL handle + * @user = username + * @pass = password + * return: -1 error, 0 ALLOW and 1 REJECT + */ +int +mqtt_rtlm_login(cfg_root_t *cfg, sqlite3 *sql, const char *user, const char *pass) +{ + /* insert into Users values (NULL, "", "", 1, strftime('%s','now')); */ + int ret = 0; + sqlite3_stmt *stmt; + char *str, szStmt[BUFSIZ] = { 0 }; + + if (!sql) + return -1; + + str = (char*) cfg_getAttribute(cfg, "mqtt_acc", "tbl_users"); + if (!str) { + mqtt_rtlm_log("Error:: not found users table name"); + return -1; + } + snprintf(szStmt, sizeof szStmt, "SELECT DISTINCT Username, Password, Access FROM %s " + "WHERE Username = '%s' AND Password = '%s' AND Access > 0;", str, user, pass); + + sqlite3_mutex_enter(sqlite3_db_mutex(sql)); + if (sqlite3_prepare_v2(sql, szStmt, strlen(szStmt), &stmt, NULL)) { + MQTT_RTLM_LOG(sql); + sqlite3_mutex_leave(sqlite3_db_mutex(sql)); + return -1; + } + while (sqlite3_step(stmt) == SQLITE_ROW) { + if (sqlite3_data_count(stmt) < 1) + ret = 0; + else + ret = 1; + break; + } + sqlite3_finalize(stmt); + sqlite3_mutex_leave(sqlite3_db_mutex(sql)); + + return ret; }