Google Git
Sign in
android / platform / external / gsoap / 3282d8528a8cdefd7ee8056fe2f9a86182563443 / . / plugin / httpda.h
blob: 3c5d5cf159df2bd8c61c9ee9ec89e29213d93cb3 [file] [log] [blame]
/*
httpda.h
gSOAP HTTP Digest Authentication plugin.
Supports both Basic and Digest authentication.
Usage (client side, see httpdatest.h/.c for example):
soap_register_plugin(&soap, http_da);
if (soap_call_ns__method(&soap, ...) != SOAP_OK)
{ if (soap.error == 401) // HTTP authentication is required
{ if (!strcmp(soap.authrealm, authrealm)) // check authentication realm
{ struct http_da_info info; // to store userid and passwd
http_da_save(&soap, &info, authrealm, userid, passwd);
if (soap_call_ns__method(&soap, ...) == SOAP_OK)
{ ...
soap_end(&soap);
... // userid and passwd were deallocated
http_da_restore(&soap, &info); // get userid and passwd after soap_end()
if (!soap_call_ns__method(&soap, ...) == SOAP_OK)
...
http_da_release(&soap, &info); // remove userid and passwd
Usage (server side, see httpdatest.h/.c for example):
soap_register_plugin(&soap, http_da);
...
soap_serve(&soap);
...
int ns__method(struct soap *soap, ...)
{ if (soap->userid && soap->passwd) // Basic authentication
{ if (!strcmp(soap->userid, userid) && !strcmp(soap->passwd, passwd))
{ ...
return SOAP_OK;
}
}
else if (soap->authrealm && soap->userid) // Digest authentication
{ passwd = ... // database lookup on userid and authrealm to find passwd
if (!strcmp(soap->authrealm, authrealm) && !strcmp(soap->userid, userid))
{ if (!http_da_verify_post(soap, passwd))
{ ...
return SOAP_OK;
}
}
}
soap->authrealm = authrealm;
return 401; // Not authorized, challenge digest authentication
}
Compile with -DWITH_OPENSSL
Link with OpenSSL (for md5evp.c), httpda.c, md5evp.c, and threads.c
gSOAP XML Web services tools
Copyright (C) 2000-2005, Robert van Engelen, Genivia Inc., All Rights Reserved.
This part of the software is released under one of the following licenses:
GPL, the gSOAP public license, or Genivia's license for commercial use.
--------------------------------------------------------------------------------
gSOAP public license.
The contents of this file are subject to the gSOAP Public License Version 1.3
(the "License"); you may not use this file except in compliance with the
License. You may obtain a copy of the License at
http://www.cs.fsu.edu/~engelen/soaplicense.html
Software distributed under the License is distributed on an "AS IS" basis,
WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
for the specific language governing rights and limitations under the License.
The Initial Developer of the Original Code is Robert A. van Engelen.
Copyright (C) 2000-2005, Robert van Engelen, Genivia, Inc., All Rights Reserved.
--------------------------------------------------------------------------------
GPL license.
This program is free software; you can redistribute it and/or modify it under
the terms of the GNU General Public License as published by the Free Software
Foundation; either version 2 of the License, or (at your option) any later
version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY
WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with
this program; if not, write to the Free Software Foundation, Inc., 59 Temple
Place, Suite 330, Boston, MA 02111-1307 USA
Author contact information:
engelen@genivia.com / engelen@acm.org
--------------------------------------------------------------------------------
A commercial use license is available from Genivia, Inc., contact@genivia.com
--------------------------------------------------------------------------------
*/
#ifndef HTTPDA_H
#define HTTPDA_H
#include "stdsoap2.h"
#include "md5evp.h" /* requires MD5 */
#include "threads.h" /* mutex for multi-threaded server implementations */
#define HTTP_DA_ID "HTTP-DA-1.0" /* plugin identification */
#define HTTP_DA_SESSION_TIMEOUT (600) /* sessions time out after ten minutes */
extern const char http_da_id[];
struct http_da_data
{
int (*fposthdr)(struct soap*, const char*, const char*);
int (*fparsehdr)(struct soap*, const char*, const char*);
int (*fprepareinit)(struct soap*);
int (*fpreparesend)(struct soap*, const char*, size_t);
int (*fpreparerecv)(struct soap*, const char*, size_t);
int (*fdisconnect)(struct soap*);
void *context; /* ptr to MD5 context for MD5 handler */
char digest[16]; /* MD5 entity body digest */
char *nonce; /* client/server-side copy of server's nonce value */
char *opaque; /* client/server-side copy of server's opaque value */
char *qop; /* client/server-side copy of server's qop value(s) */
char *alg; /* client-side: server's algorithm value */
unsigned long nc; /* client-side: generated nonce count */
char *ncount; /* server-side: client's nonce count */
char *cnonce; /* server-side: client's nonce */
char *response; /* server-side: client's response digest key */
};
struct http_da_session
{
struct http_da_session *next;
time_t modified;
char *realm;
char *nonce;
char *opaque;
unsigned long nc;
};
int http_da(struct soap *soap, struct soap_plugin *p, void *arg);
int http_da_verify_post(struct soap *soap, char *passwd);
int http_da_verify_get(struct soap *soap, char *passwd);
struct http_da_info
{
char *authrealm;
char *userid;
char *passwd;
char *nonce;
char *opaque;
char *qop;
char *alg;
};
void http_da_save(struct soap *soap, struct http_da_info *info, const char *realm, const char *userid, const char *passwd);
void http_da_restore(struct soap *soap, struct http_da_info *info);
void http_da_release(struct soap *soap, struct http_da_info *info);
#endif