/*
+ * $Id: uams_pam.c,v 1.7 2001-06-25 20:13:45 rufustfirefly Exp $
+ *
* Copyright (c) 1990,1993 Regents of The University of Michigan.
* Copyright (c) 1999 Adrian Sun (asun@u.washington.edu)
* All Rights Reserved. See COPYRIGHT.
*/
+
+#ifdef HAVE_CONFIG_H
+#include "config.h"
+#endif /* HAVE_CONFIG_H */
+
#ifdef USE_PAM
+
#include <stdio.h>
#include <stdlib.h>
+#ifdef HAVE_UNISTD_H
#include <unistd.h>
+#endif /* HAVE_UNISTD_H */
#include <string.h>
#include <syslog.h>
case PAM_TEXT_INFO:
#ifdef PAM_BINARY_PROMPT
case PAM_BINARY_PROMPT:
-#endif
+#endif /* PAM_BINARY_PROMPT */
/* ignore it... */
break;
case PAM_ERROR_MSG:
#ifdef PAM_AUTHTOKEN_REQD
else if (PAM_error == PAM_AUTHTOKEN_REQD)
err = AFPERR_PWDCHNG;
-#endif
+#endif /* PAM_AUTHTOKEN_REQD */
goto login_err;
}
#ifndef PAM_CRED_ESTABLISH
#define PAM_CRED_ESTABLISH PAM_ESTABLISH_CRED
-#endif
+#endif /* PAM_CRED_ESTABLISH */
PAM_error = pam_setcred(pamh, PAM_CRED_ESTABLISH);
if (PAM_error != PAM_SUCCESS)
goto login_err;
}
+/* Printer ClearTxtUAM login */
+int pam_printer(start, stop, username, out)
+ char *start, *stop, *username;
+ struct papfile *out;
+{
+ int PAM_error;
+ char *data, *p, *q;
+ char password[PASSWDLEN + 1] = "\0";
+ static const char *loginok = "0\r";
+
+ data = (char *)malloc(stop - start + 1);
+ strncpy(data, start, stop - start + 1);
+
+ /* We are looking for the following format in data:
+ * (username) (password)
+ *
+ * Let's hope username doesn't contain ") ("!
+ */
+
+ /* Parse input for username in () */
+ if ((p = strchr(data, '(' )) == NULL) {
+ syslog(LOG_INFO,"Bad Login ClearTxtUAM: username not found in string");
+ free(data);
+ return(-1);
+ }
+ p++;
+ if ((q = strstr(data, ") (" )) == NULL) {
+ syslog(LOG_INFO,"Bad Login ClearTxtUAM: username not found in string");
+ free(data);
+ return(-1);
+ }
+ strncpy(username, p, q - p);
+
+ /* Parse input for password in next () */
+ p = q + 3;
+ if ((q = strrchr(data, ')' )) == NULL) {
+ syslog(LOG_INFO,"Bad Login ClearTxtUAM: password not found in string");
+ free(data);
+ return(-1);
+ }
+ strncpy(password, p, q - p);
+
+ /* Done copying username and password, clean up */
+ free(data);
+
+ PAM_username = username;
+ PAM_password = password;
+
+ PAM_error = pam_start("netatalk", username, &PAM_conversation,
+ &pamh);
+ if (PAM_error != PAM_SUCCESS) {
+ syslog(LOG_INFO, "Bad Login ClearTxtUAM: %s: %s",
+ username, pam_strerror(pamh, PAM_error));
+ pam_end(pamh, PAM_error);
+ pamh = NULL;
+ return(-1);
+ }
+
+ pam_set_item(pamh, PAM_TTY, "papd");
+ pam_set_item(pamh, PAM_RHOST, hostname);
+ PAM_error = pam_authenticate(pamh,0);
+ if (PAM_error != PAM_SUCCESS) {
+ syslog(LOG_INFO, "Bad Login ClearTxtUAM: %s: %s",
+ username, pam_strerror(pamh, PAM_error));
+ pam_end(pamh, PAM_error);
+ pamh = NULL;
+ return(-1);
+ }
+
+ PAM_error = pam_acct_mgmt(pamh, 0);
+ if (PAM_error != PAM_SUCCESS) {
+ syslog(LOG_INFO, "Bad Login ClearTxtUAM: %s: %s",
+ username, pam_strerror(pamh, PAM_error));
+ pam_end(pamh, PAM_error);
+ pamh = NULL;
+ return(-1);
+ }
+
+ PAM_error = pam_open_session(pamh, 0);
+ if (PAM_error != PAM_SUCCESS) {
+ syslog(LOG_INFO, "Bad Login ClearTxtUAM: %s: %s",
+ username, pam_strerror(pamh, PAM_error));
+ pam_end(pamh, PAM_error);
+ pamh = NULL;
+ return(-1);
+ }
+
+ /* Login successful, but no need to hang onto it,
+ so logout immediately */
+ append(out, loginok, strlen(loginok));
+ syslog(LOG_INFO, "Login ClearTxtUAM: %s", username);
+ pam_close_session(pamh, 0);
+ pam_end(pamh, 0);
+ pamh = NULL;
+
+ return(0);
+}
+
+
static int uam_setup(const char *path)
{
if (uam_register(UAM_SERVER_LOGIN, path, "Cleartxt Passwrd",
pam_login, NULL, pam_logout) < 0)
- return -1;
+ return -1;
if (uam_register(UAM_SERVER_CHANGEPW, path, "Cleartxt Passwrd",
pam_changepw) < 0) {
- uam_unregister(UAM_SERVER_LOGIN, "Cleartxt Passwrd");
- return -1;
+ uam_unregister(UAM_SERVER_LOGIN, "Cleartxt Passwrd");
+ return -1;
}
- /*uam_register(UAM_SERVER_PRINTAUTH, path, "Cleartxt Passwrd",
- pam_printer);*/
+ if (uam_register(UAM_SERVER_PRINTAUTH, path, "ClearTxtUAM",
+ pam_printer) < 0) {
+ return -1;
+ }
return 0;
}
{
uam_unregister(UAM_SERVER_LOGIN, "Cleartxt Passwrd");
uam_unregister(UAM_SERVER_CHANGEPW, "Cleartxt Passwrd");
- /*uam_unregister(UAM_SERVER_PRINTAUTH, "Cleartxt Passwrd"); */
+ uam_unregister(UAM_SERVER_PRINTAUTH, "ClearTxtUAM");
}
UAM_MODULE_EXPORT struct uam_export uams_clrtxt = {
projects / netatalk.git / blobdiff