-rw-r--r-- | include/opkele/types.h | 2 | ||||
-rw-r--r-- | lib/openid_message.cc | 19 |
2 files changed, 20 insertions, 1 deletions
diff --git a/include/opkele/types.h b/include/opkele/types.h index d5ad258..842a722 100644 --- a/include/opkele/types.h +++ b/include/opkele/types.h | |||
@@ -1,80 +1,81 @@ | |||
1 | #ifndef __OPKELE_TYPES_H | 1 | #ifndef __OPKELE_TYPES_H |
2 | #define __OPKELE_TYPES_H | 2 | #define __OPKELE_TYPES_H |
3 | 3 | ||
4 | /** | 4 | /** |
5 | * @file | 5 | * @file |
6 | * @brief various types declarations | 6 | * @brief various types declarations |
7 | */ | 7 | */ |
8 | 8 | ||
9 | #include <ostream> | 9 | #include <ostream> |
10 | #include <vector> | 10 | #include <vector> |
11 | #include <string> | 11 | #include <string> |
12 | #include <map> | 12 | #include <map> |
13 | #include <set> | 13 | #include <set> |
14 | #include <list> | 14 | #include <list> |
15 | #include <opkele/iterator.h> | 15 | #include <opkele/iterator.h> |
16 | #include <opkele/tr1-mem.h> | 16 | #include <opkele/tr1-mem.h> |
17 | 17 | ||
18 | namespace opkele { | 18 | namespace opkele { |
19 | using std::vector; | 19 | using std::vector; |
20 | using std::string; | 20 | using std::string; |
21 | using std::map; | 21 | using std::map; |
22 | using std::ostream; | 22 | using std::ostream; |
23 | using std::multimap; | 23 | using std::multimap; |
24 | using std::set; | 24 | using std::set; |
25 | using std::list; | 25 | using std::list; |
26 | using std::iterator; | 26 | using std::iterator; |
27 | using std::forward_iterator_tag; | 27 | using std::forward_iterator_tag; |
28 | 28 | ||
29 | /** | 29 | /** |
30 | * the OpenID operation mode | 30 | * the OpenID operation mode |
31 | */ | 31 | */ |
32 | typedef enum _mode_t { | 32 | typedef enum _mode_t { |
33 | mode_unknown = 0, | ||
33 | mode_associate, | 34 | mode_associate, |
34 | mode_checkid_immediate, | 35 | mode_checkid_immediate, |
35 | mode_checkid_setup, | 36 | mode_checkid_setup, |
36 | mode_check_association | 37 | mode_check_association |
37 | } mode_t; | 38 | } mode_t; |
38 | 39 | ||
39 | /** | 40 | /** |
40 | * the association secret container | 41 | * the association secret container |
41 | */ | 42 | */ |
42 | class secret_t : public vector<unsigned char> { | 43 | class secret_t : public vector<unsigned char> { |
43 | public: | 44 | public: |
44 | 45 | ||
45 | /** | 46 | /** |
46 | * xor the secret and hmac together and encode, using base64 | 47 | * xor the secret and hmac together and encode, using base64 |
47 | * @param key_d pointer to the message digest | 48 | * @param key_d pointer to the message digest |
48 | * @param rv reference to the return value | 49 | * @param rv reference to the return value |
49 | */ | 50 | */ |
50 | void enxor_to_base64(const unsigned char *key_d,string& rv) const; | 51 | void enxor_to_base64(const unsigned char *key_d,string& rv) const; |
51 | /** | 52 | /** |
52 | * decode base64-encoded secret and xor it with the message digest | 53 | * decode base64-encoded secret and xor it with the message digest |
53 | * @param key_d pointer to the message digest | 54 | * @param key_d pointer to the message digest |
54 | * @param b64 base64-encoded secret value | 55 | * @param b64 base64-encoded secret value |
55 | */ | 56 | */ |
56 | void enxor_from_base64(const unsigned char *key_d,const string& b64); | 57 | void enxor_from_base64(const unsigned char *key_d,const string& b64); |
57 | /** | 58 | /** |
58 | * plainly encode to base64 representation | 59 | * plainly encode to base64 representation |
59 | * @param rv reference to the return value | 60 | * @param rv reference to the return value |
60 | */ | 61 | */ |
61 | void to_base64(string& rv) const; | 62 | void to_base64(string& rv) const; |
62 | /** | 63 | /** |
63 | * decode cleartext secret from base64 | 64 | * decode cleartext secret from base64 |
64 | * @param b64 base64-encoded representation of the secret value | 65 | * @param b64 base64-encoded representation of the secret value |
65 | */ | 66 | */ |
66 | void from_base64(const string& b64); | 67 | void from_base64(const string& b64); |
67 | }; | 68 | }; |
68 | 69 | ||
69 | /** | 70 | /** |
70 | * Interface to the association. | 71 | * Interface to the association. |
71 | */ | 72 | */ |
72 | class association_t { | 73 | class association_t { |
73 | public: | 74 | public: |
74 | 75 | ||
75 | virtual ~association_t() { } | 76 | virtual ~association_t() { } |
76 | 77 | ||
77 | /** | 78 | /** |
78 | * retrieve the server with which association was established. | 79 | * retrieve the server with which association was established. |
79 | * @return server name | 80 | * @return server name |
80 | */ | 81 | */ |
@@ -100,96 +101,97 @@ namespace opkele { | |||
100 | */ | 101 | */ |
101 | virtual int expires_in() const = 0; | 102 | virtual int expires_in() const = 0; |
102 | /** | 103 | /** |
103 | * check whether the association is stateless. | 104 | * check whether the association is stateless. |
104 | * @return true if stateless | 105 | * @return true if stateless |
105 | */ | 106 | */ |
106 | virtual bool stateless() const = 0; | 107 | virtual bool stateless() const = 0; |
107 | /** | 108 | /** |
108 | * check whether the association is expired. | 109 | * check whether the association is expired. |
109 | * @return true if expired | 110 | * @return true if expired |
110 | */ | 111 | */ |
111 | virtual bool is_expired() const = 0; | 112 | virtual bool is_expired() const = 0; |
112 | }; | 113 | }; |
113 | 114 | ||
114 | /** | 115 | /** |
115 | * the shared_ptr<> for association_t object type | 116 | * the shared_ptr<> for association_t object type |
116 | */ | 117 | */ |
117 | typedef tr1mem::shared_ptr<association_t> assoc_t; | 118 | typedef tr1mem::shared_ptr<association_t> assoc_t; |
118 | 119 | ||
119 | class basic_openid_message { | 120 | class basic_openid_message { |
120 | public: | 121 | public: |
121 | typedef list<string> fields_t; | 122 | typedef list<string> fields_t; |
122 | typedef util::forward_iterator_proxy< | 123 | typedef util::forward_iterator_proxy< |
123 | string,const string&,const string* | 124 | string,const string&,const string* |
124 | > fields_iterator; | 125 | > fields_iterator; |
125 | 126 | ||
126 | basic_openid_message() { } | 127 | basic_openid_message() { } |
127 | basic_openid_message(const basic_openid_message& x); | 128 | basic_openid_message(const basic_openid_message& x); |
128 | void copy_to(basic_openid_message& x) const; | 129 | void copy_to(basic_openid_message& x) const; |
129 | 130 | ||
130 | virtual bool has_field(const string& n) const = 0; | 131 | virtual bool has_field(const string& n) const = 0; |
131 | virtual const string& get_field(const string& n) const = 0; | 132 | virtual const string& get_field(const string& n) const = 0; |
132 | 133 | ||
133 | virtual bool has_ns(const string& uri) const; | 134 | virtual bool has_ns(const string& uri) const; |
134 | virtual string get_ns(const string& uri) const; | 135 | virtual string get_ns(const string& uri) const; |
135 | 136 | ||
136 | virtual fields_iterator fields_begin() const = 0; | 137 | virtual fields_iterator fields_begin() const = 0; |
137 | virtual fields_iterator fields_end() const = 0; | 138 | virtual fields_iterator fields_end() const = 0; |
138 | 139 | ||
139 | virtual string append_query(const string& url) const; | 140 | virtual string append_query(const string& url) const; |
140 | virtual string query_string() const; | 141 | virtual string query_string() const; |
141 | 142 | ||
142 | 143 | ||
143 | virtual void reset_fields(); | 144 | virtual void reset_fields(); |
144 | virtual void set_field(const string& n,const string& v); | 145 | virtual void set_field(const string& n,const string& v); |
145 | virtual void reset_field(const string& n); | 146 | virtual void reset_field(const string& n); |
146 | 147 | ||
147 | virtual void from_keyvalues(const string& kv); | 148 | virtual void from_keyvalues(const string& kv); |
149 | virtual void to_keyvalues(ostream& o) const; | ||
148 | 150 | ||
149 | void add_to_signed(const string& fields); | 151 | void add_to_signed(const string& fields); |
150 | string find_ns(const string& uri,const char *pfx) const; | 152 | string find_ns(const string& uri,const char *pfx) const; |
151 | string allocate_ns(const string& uri,const char *pfx); | 153 | string allocate_ns(const string& uri,const char *pfx); |
152 | }; | 154 | }; |
153 | 155 | ||
154 | class openid_message_t : public basic_openid_message, public map<string,string> { | 156 | class openid_message_t : public basic_openid_message, public map<string,string> { |
155 | public: | 157 | public: |
156 | openid_message_t() { } | 158 | openid_message_t() { } |
157 | openid_message_t(const basic_openid_message& x) | 159 | openid_message_t(const basic_openid_message& x) |
158 | : basic_openid_message(x) { } | 160 | : basic_openid_message(x) { } |
159 | 161 | ||
160 | void copy_to(basic_openid_message& x) const; | 162 | void copy_to(basic_openid_message& x) const; |
161 | 163 | ||
162 | bool has_field(const string& n) const; | 164 | bool has_field(const string& n) const; |
163 | const string& get_field(const string& n) const; | 165 | const string& get_field(const string& n) const; |
164 | virtual fields_iterator fields_begin() const; | 166 | virtual fields_iterator fields_begin() const; |
165 | virtual fields_iterator fields_end() const; | 167 | virtual fields_iterator fields_end() const; |
166 | 168 | ||
167 | void reset_fields(); | 169 | void reset_fields(); |
168 | void set_field(const string& n,const string& v); | 170 | void set_field(const string& n,const string& v); |
169 | void reset_field(const string& n); | 171 | void reset_field(const string& n); |
170 | }; | 172 | }; |
171 | 173 | ||
172 | /** | 174 | /** |
173 | * request/response parameters map | 175 | * request/response parameters map |
174 | */ | 176 | */ |
175 | class params_t : public openid_message_t { | 177 | class params_t : public openid_message_t { |
176 | public: | 178 | public: |
177 | 179 | ||
178 | /** | 180 | /** |
179 | * check whether the parameter is present. | 181 | * check whether the parameter is present. |
180 | * @param n the parameter name | 182 | * @param n the parameter name |
181 | * @return true if yes | 183 | * @return true if yes |
182 | */ | 184 | */ |
183 | bool has_param(const string& n) const { | 185 | bool has_param(const string& n) const { |
184 | return has_field(n); } | 186 | return has_field(n); } |
185 | /** | 187 | /** |
186 | * retrieve the parameter (const version) | 188 | * retrieve the parameter (const version) |
187 | * @param n the parameter name | 189 | * @param n the parameter name |
188 | * @return the parameter value | 190 | * @return the parameter value |
189 | * @throw failed_lookup if there is no such parameter | 191 | * @throw failed_lookup if there is no such parameter |
190 | */ | 192 | */ |
191 | const string& get_param(const string& n) const { | 193 | const string& get_param(const string& n) const { |
192 | return get_field(n); } | 194 | return get_field(n); } |
193 | 195 | ||
194 | /** | 196 | /** |
195 | * parse the OpenID key/value data. | 197 | * parse the OpenID key/value data. |
diff --git a/lib/openid_message.cc b/lib/openid_message.cc index 3b08748..905ea95 100644 --- a/lib/openid_message.cc +++ b/lib/openid_message.cc | |||
@@ -97,132 +97,149 @@ namespace opkele { | |||
97 | string rv; | 97 | string rv; |
98 | return __om_query_builder(rv,*this,url).rv; | 98 | return __om_query_builder(rv,*this,url).rv; |
99 | } | 99 | } |
100 | string basic_openid_message::query_string() const { | 100 | string basic_openid_message::query_string() const { |
101 | string rv; | 101 | string rv; |
102 | return __om_query_builder(rv,*this).rv; | 102 | return __om_query_builder(rv,*this).rv; |
103 | } | 103 | } |
104 | 104 | ||
105 | void basic_openid_message::reset_fields() { | 105 | void basic_openid_message::reset_fields() { |
106 | throw not_implemented(OPKELE_CP_ "reset_fields() not implemented"); | 106 | throw not_implemented(OPKELE_CP_ "reset_fields() not implemented"); |
107 | } | 107 | } |
108 | void basic_openid_message::set_field(const string& n,const string& v) { | 108 | void basic_openid_message::set_field(const string& n,const string& v) { |
109 | throw not_implemented(OPKELE_CP_ "set_field() not implemented"); | 109 | throw not_implemented(OPKELE_CP_ "set_field() not implemented"); |
110 | } | 110 | } |
111 | void basic_openid_message::reset_field(const string& n) { | 111 | void basic_openid_message::reset_field(const string& n) { |
112 | throw not_implemented(OPKELE_CP_ "reset_field() not implemented"); | 112 | throw not_implemented(OPKELE_CP_ "reset_field() not implemented"); |
113 | } | 113 | } |
114 | 114 | ||
115 | void basic_openid_message::from_keyvalues(const string& kv) { | 115 | void basic_openid_message::from_keyvalues(const string& kv) { |
116 | reset_fields(); | 116 | reset_fields(); |
117 | string::size_type p = 0; | 117 | string::size_type p = 0; |
118 | while(true) { | 118 | while(true) { |
119 | string::size_type co = kv.find(':',p); | 119 | string::size_type co = kv.find(':',p); |
120 | if(co==string::npos) | 120 | if(co==string::npos) |
121 | break; | 121 | break; |
122 | #ifndef POSTELS_LAW | 122 | #ifndef POSTELS_LAW |
123 | string::size_type nl = kv.find('\n',co+1); | 123 | string::size_type nl = kv.find('\n',co+1); |
124 | if(nl==string::npos) | 124 | if(nl==string::npos) |
125 | throw bad_input(OPKELE_CP_ "malformed input"); | 125 | throw bad_input(OPKELE_CP_ "malformed input"); |
126 | if(nl>co) | 126 | if(nl>co) |
127 | insert(value_type(kv.substr(p,co-p),kv.substr(co+1,nl-co-1))); | 127 | insert(value_type(kv.substr(p,co-p),kv.substr(co+1,nl-co-1))); |
128 | p = nl+1; | 128 | p = nl+1; |
129 | #else /* POSTELS_LAW */ | 129 | #else /* POSTELS_LAW */ |
130 | string::size_type lb = kv.find_first_of("\r\n",co+1); | 130 | string::size_type lb = kv.find_first_of("\r\n",co+1); |
131 | if(lb==string::npos) { | 131 | if(lb==string::npos) { |
132 | set_field(kv.substr(p,co-p),kv.substr(co+1)); | 132 | set_field(kv.substr(p,co-p),kv.substr(co+1)); |
133 | break; | 133 | break; |
134 | } | 134 | } |
135 | if(lb>co) | 135 | if(lb>co) |
136 | set_field(kv.substr(p,co-p),kv.substr(co+1,lb-co-1)); | 136 | set_field(kv.substr(p,co-p),kv.substr(co+1,lb-co-1)); |
137 | string::size_type nolb = kv.find_first_not_of("\r\n",lb); | 137 | string::size_type nolb = kv.find_first_not_of("\r\n",lb); |
138 | if(nolb==string::npos) | 138 | if(nolb==string::npos) |
139 | break; | 139 | break; |
140 | p = nolb; | 140 | p = nolb; |
141 | #endif /* POSTELS_LAW */ | 141 | #endif /* POSTELS_LAW */ |
142 | } | 142 | } |
143 | } | 143 | } |
144 | 144 | ||
145 | struct __om_kv_outputter : public unary_function<const string&,void> { | ||
146 | public: | ||
147 | const basic_openid_message& om; | ||
148 | ostream& os; | ||
149 | |||
150 | __om_kv_outputter(const basic_openid_message& om,ostream& os) | ||
151 | : om(om), os(os) { } | ||
152 | |||
153 | result_type operator()(argument_type f) { | ||
154 | os << f << ':' << om.get_field(f) << '\n'; | ||
155 | } | ||
156 | }; | ||
157 | |||
158 | void basic_openid_message::to_keyvalues(ostream& o) const { | ||
159 | for_each(fields_begin(),fields_end(),__om_kv_outputter(*this,o)); | ||
160 | } | ||
161 | |||
145 | void basic_openid_message::add_to_signed(const string& fields) { | 162 | void basic_openid_message::add_to_signed(const string& fields) { |
146 | string::size_type fnc = fields.find_first_not_of(","); | 163 | string::size_type fnc = fields.find_first_not_of(","); |
147 | if(fnc==string::npos) | 164 | if(fnc==string::npos) |
148 | throw bad_input(OPKELE_CP_ "Trying to add nothing in particular to the list of signed fields"); | 165 | throw bad_input(OPKELE_CP_ "Trying to add nothing in particular to the list of signed fields"); |
149 | string signeds; | 166 | string signeds; |
150 | try { | 167 | try { |
151 | signeds = get_field("signed"); | 168 | signeds = get_field("signed"); |
152 | string::size_type lnc = signeds.find_last_not_of(","); | 169 | string::size_type lnc = signeds.find_last_not_of(","); |
153 | if(lnc==string::npos) | 170 | if(lnc==string::npos) |
154 | signeds.assign(fields,fnc,fields.size()-fnc); | 171 | signeds.assign(fields,fnc,fields.size()-fnc); |
155 | else{ | 172 | else{ |
156 | string::size_type ss = signeds.size(); | 173 | string::size_type ss = signeds.size(); |
157 | if(lnc==(ss-1)) { | 174 | if(lnc==(ss-1)) { |
158 | signeds+= ','; | 175 | signeds+= ','; |
159 | signeds.append(fields,fnc,fields.size()-fnc); | 176 | signeds.append(fields,fnc,fields.size()-fnc); |
160 | }else{ | 177 | }else{ |
161 | if(lnc<(ss-2)) | 178 | if(lnc<(ss-2)) |
162 | signeds.replace(lnc+2,ss-lnc-2, | 179 | signeds.replace(lnc+2,ss-lnc-2, |
163 | fields,fnc,fields.size()-fnc); | 180 | fields,fnc,fields.size()-fnc); |
164 | else | 181 | else |
165 | signeds.append(fields,fnc,fields.size()-fnc); | 182 | signeds.append(fields,fnc,fields.size()-fnc); |
166 | } | 183 | } |
167 | } | 184 | } |
168 | }catch(failed_lookup&) { | 185 | }catch(failed_lookup&) { |
169 | signeds.assign(fields,fnc,fields.size()-fnc); | 186 | signeds.assign(fields,fnc,fields.size()-fnc); |
170 | } | 187 | } |
171 | set_field("signed",signeds); | 188 | set_field("signed",signeds); |
172 | } | 189 | } |
173 | 190 | ||
174 | string basic_openid_message::find_ns(const string& uri,const char *pfx) const { | 191 | string basic_openid_message::find_ns(const string& uri,const char *pfx) const { |
175 | if(has_field("ns")) | 192 | if(has_field("ns")) |
176 | return get_ns(uri); | 193 | return get_ns(uri); |
177 | return pfx; | 194 | return pfx; |
178 | } | 195 | } |
179 | string basic_openid_message::allocate_ns(const string& uri,const char *pfx) { | 196 | string basic_openid_message::allocate_ns(const string& uri,const char *pfx) { |
180 | if(!has_field("ns")) | 197 | if(!has_field("ns")) |
181 | return pfx; | 198 | return pfx; |
182 | if(has_ns(uri)) | 199 | if(has_ns(uri)) |
183 | throw bad_input(OPKELE_CP_ "OpenID message already contains namespace"); | 200 | throw bad_input(OPKELE_CP_ "OpenID message already contains namespace"); |
184 | string rv = pfx; | 201 | string rv = pfx; |
185 | if(has_field("ns."+rv)) { | 202 | if(has_field("ns."+rv)) { |
186 | string::reference c=rv[rv.length()]; | 203 | string::reference c=rv[rv.length()]; |
187 | for(c='a';c<='z' && has_field("ns."+rv);++c); | 204 | for(c='a';c<='z' && has_field("ns."+rv);++c); |
188 | if(c=='z') | 205 | if(c=='z') |
189 | throw exception(OPKELE_CP_ "Failed to allocate namespace"); | 206 | throw exception(OPKELE_CP_ "Failed to allocate namespace"); |
190 | } | 207 | } |
191 | set_field("ns."+rv,uri); | 208 | set_field("ns."+rv,uri); |
192 | return rv; | 209 | return rv; |
193 | } | 210 | } |
194 | 211 | ||
195 | void openid_message_t::copy_to(basic_openid_message& x) const { | 212 | void openid_message_t::copy_to(basic_openid_message& x) const { |
196 | x.reset_fields(); | 213 | x.reset_fields(); |
197 | for(const_iterator i=begin();i!=end();++i) | 214 | for(const_iterator i=begin();i!=end();++i) |
198 | x.set_field(i->first,i->second); | 215 | x.set_field(i->first,i->second); |
199 | } | 216 | } |
200 | 217 | ||
201 | bool openid_message_t::has_field(const string& n) const { | 218 | bool openid_message_t::has_field(const string& n) const { |
202 | return find(n)!=end(); | 219 | return find(n)!=end(); |
203 | } | 220 | } |
204 | const string& openid_message_t::get_field(const string& n) const { | 221 | const string& openid_message_t::get_field(const string& n) const { |
205 | const_iterator i=find(n); | 222 | const_iterator i=find(n); |
206 | if(i==end()) | 223 | if(i==end()) |
207 | throw failed_lookup(OPKELE_CP_ n+": no such field"); | 224 | throw failed_lookup(OPKELE_CP_ n+": no such field"); |
208 | return i->second; | 225 | return i->second; |
209 | } | 226 | } |
210 | 227 | ||
211 | openid_message_t::fields_iterator openid_message_t::fields_begin() const { | 228 | openid_message_t::fields_iterator openid_message_t::fields_begin() const { |
212 | return util::map_keys_iterator<const_iterator,string,const string&,const string*>(begin(),end()); | 229 | return util::map_keys_iterator<const_iterator,string,const string&,const string*>(begin(),end()); |
213 | } | 230 | } |
214 | openid_message_t::fields_iterator openid_message_t::fields_end() const { | 231 | openid_message_t::fields_iterator openid_message_t::fields_end() const { |
215 | return util::map_keys_iterator<const_iterator,string,const string&,const string*>(end(),end()); | 232 | return util::map_keys_iterator<const_iterator,string,const string&,const string*>(end(),end()); |
216 | } | 233 | } |
217 | 234 | ||
218 | void openid_message_t::reset_fields() { | 235 | void openid_message_t::reset_fields() { |
219 | clear(); | 236 | clear(); |
220 | } | 237 | } |
221 | void openid_message_t::set_field(const string& n,const string& v) { | 238 | void openid_message_t::set_field(const string& n,const string& v) { |
222 | insert(value_type(n,v)); | 239 | (*this)[n]=v; |
223 | } | 240 | } |
224 | void openid_message_t::reset_field(const string& n) { | 241 | void openid_message_t::reset_field(const string& n) { |
225 | erase(n); | 242 | erase(n); |
226 | } | 243 | } |
227 | 244 | ||
228 | } | 245 | } |