httpbasic_8c_source.html

 /*
  * Copyright (C) 2015 Michael Brown <mbrown@fensystems.co.uk>.
  *
  * This program is free software; you can redistribute it and/or
  * modify it under the terms of the GNU General Public License as
  * published by the Free Software Foundation; either version 2 of the
  * License, or any later version.
  *
  * This program is distributed in the hope that it will be useful, but
  * WITHOUT ANY WARRANTY; without even the implied warranty of
  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
  * General Public License for more details.
  *
  * You should have received a copy of the GNU General Public License
  * along with this program; if not, write to the Free Software
  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
  * 02110-1301, USA.
  *
  * You can also choose to distribute this program under the terms of
  * the Unmodified Binary Distribution Licence (as given in the file
  * COPYING.UBDL), provided that you have satisfied its requirements.
  */

 FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL );
 FILE_SECBOOT ( PERMITTED );

 /**
  * @file
  *
  * Hyper Text Transfer Protocol (HTTP) Basic authentication
  *
  */

 #include <stdio.h>
 #include <errno.h>
 #include <ipxe/uri.h>
 #include <ipxe/base64.h>
 #include <ipxe/http.h>

 /* Disambiguate the various error causes */
 #define EACCES_USERNAME __einfo_error ( EINFO_EACCES_USERNAME )
 #define EINFO_EACCES_USERNAME                                           \
         __einfo_uniqify ( EINFO_EACCES, 0x01,                           \
                           "No username available for Basic authentication" )

 /**
  * Parse HTTP "WWW-Authenticate" header for Basic authentication
  *
  * @v http              HTTP transaction
  * @v line              Remaining header line
  * @ret rc              Return status code
  */
 static int http_parse_basic_auth ( struct http_transaction *http,
                                    char *line __unused ) {

         /* Allow HTTP request to be retried if the request had not
          * already tried authentication.
          */
         if ( ! http->request.auth.auth )
                 http->response.flags |= HTTP_RESPONSE_RETRY;

         return 0;
 }

 /**
  * Perform HTTP Basic authentication
  *
  * @v http              HTTP transaction
  * @ret rc              Return status code
  */
 static int http_basic_authenticate ( struct http_transaction *http ) {
         struct http_request_auth_basic *req = &http->request.auth.basic;

         /* Record username and password */
         if ( ! http->uri->user ) {
                 DBGC ( http, "HTTP %p has no username for Basic "
                        "authentication\n", http );
                 return -EACCES_USERNAME;
         }
         req->username = http->uri->user;
         req->password = ( http->uri->password ? http->uri->password : "" );

         return 0;
 }

 /**
  * Construct HTTP "Authorization" header for Basic authentication
  *
  * @v http              HTTP transaction
  * @v buf               Buffer
  * @v len               Length of buffer
  * @ret len             Length of header value, or negative error
  */
 static int http_format_basic_auth ( struct http_transaction *http,
                                     char *buf, size_t len ) {
         struct http_request_auth_basic *req = &http->request.auth.basic;
         size_t user_pw_len = ( strlen ( req->username ) + 1 /* ":" */ +
                                strlen ( req->password ) );
         char user_pw[ user_pw_len + 1 /* NUL */ ];

         /* Sanity checks */
         assert ( req->username != NULL );
         assert ( req->password != NULL );

         /* Construct "user:password" string */
         snprintf ( user_pw, sizeof ( user_pw ), "%s:%s",
                    req->username, req->password );

         /* Construct response */
         return base64_encode ( user_pw, user_pw_len, buf, len );
 }

 /** HTTP Basic authentication scheme */
 struct http_authentication http_basic_auth __http_authentication = {
         .name = "Basic",
         .parse = http_parse_basic_auth,
         .authenticate = http_basic_authenticate,
         .format = http_format_basic_auth,
 };

 /* Drag in HTTP authentication support */
 REQUIRING_SYMBOL ( http_basic_auth );
 REQUIRE_OBJECT ( httpauth );
http_response::flags
unsigned int flags
Flags.
Definition: http.h:351

FILE_SECBOOT
FILE_SECBOOT(PERMITTED)

errno.h
Error codes.

DBGC
#define DBGC(...)
Definition: compiler.h:505

http_transaction::uri
struct uri * uri
Request URI.
Definition: http.h:435

http_authentication
An HTTP authentication scheme.
Definition: http.h:519

FILE_LICENCE
FILE_LICENCE(GPL2_OR_LATER_OR_UBDL)

uri.h
Uniform Resource Identifiers.

REQUIRING_SYMBOL
REQUIRING_SYMBOL(http_basic_auth)

EACCES_USERNAME
#define EACCES_USERNAME
Definition: httpbasic.c:41

http_transaction::request
struct http_request request
Request.
Definition: http.h:437

http_transaction::response
struct http_response response
Response.
Definition: http.h:439

http_transaction
An HTTP transaction.
Definition: http.h:416

http.h
Hyper Text Transport Protocol.

http_request_auth_basic::username
const char * username
Username.
Definition: http.h:156

assert
assert((readw(&hdr->flags) &(GTF_reading|GTF_writing))==0)

__unused
#define __unused
Declare a variable or data structure as unused.
Definition: compiler.h:573

http_request::auth
struct http_request_auth auth
Authentication descriptor.
Definition: http.h:223

len
ring len
Length.
Definition: dwmac.h:231

http_basic_authenticate
static int http_basic_authenticate(struct http_transaction *http)
Perform HTTP Basic authentication.
Definition: httpbasic.c:71

__http_authentication
struct http_authentication http_basic_auth __http_authentication
HTTP Basic authentication scheme.
Definition: httpbasic.c:114

http_request_auth::auth
struct http_authentication * auth
Authentication scheme (if any)
Definition: http.h:190

http_format_basic_auth
static int http_format_basic_auth(struct http_transaction *http, char *buf, size_t len)
Construct HTTP "Authorization" header for Basic authentication.
Definition: httpbasic.c:94

strlen
size_t strlen(const char *src)
Get length of string.
Definition: string.c:244

base64.h
Base64 encoding.

stdio.h

http_request_auth_basic::password
const char * password
Password.
Definition: http.h:158

http_authentication::name
const char * name
Name (e.g.
Definition: http.h:521

uri::password
const char * password
Password.
Definition: uri.h:75

uri::user
const char * user
User name.
Definition: uri.h:73

snprintf
int snprintf(char *buf, size_t size, const char *fmt,...)
Write a formatted string to a buffer.
Definition: vsprintf.c:383

HTTP_RESPONSE_RETRY
Transaction may be retried on failure.
Definition: http.h:361

http_request_auth_basic
HTTP request Basic authentication descriptor.
Definition: http.h:154

REQUIRE_OBJECT
REQUIRE_OBJECT(httpauth)

NULL
#define NULL
NULL pointer (VOID *)
Definition: Base.h:322

http_parse_basic_auth
static int http_parse_basic_auth(struct http_transaction *http, char *line __unused)
Parse HTTP "WWW-Authenticate" header for Basic authentication.
Definition: httpbasic.c:53

base64_encode
size_t base64_encode(const void *raw, size_t raw_len, char *data, size_t len)
Base64-encode data.
Definition: base64.c:52

http_request_auth::basic
struct http_request_auth_basic basic
Basic authentication descriptor.
Definition: http.h:194