Change gssEAP to gss in navigator.gss(Eap).js and make corresponding changes.

[gssweb.git] / json_gssapi / src / commands / GSSAcquireCred.cpp

/*
 * Copyright (c) 2014, JANET(UK)
 * All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 *
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 *
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 *
 * 3. Neither the name of JANET(UK) nor the names of its contributors
 *    may be used to endorse or promote products derived from this software
 *    without specific prior written permission.
 *
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
 * COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
 * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
 * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 * OF THE POSSIBILITY OF SUCH DAMAGE.
 *
 */

#include "GSSAcquireCred.h"
#include "GSSException.h"
#include <cache/GSSNameCache.h>

#include <stdexcept>

GSSAcquireCred::GSSAcquireCred(gss_acq_cred_type fn) : function(fn)
{
  desired_name = GSS_C_NO_NAME;
  // Use OID for eap-aes128 by default
  desiredMechs.addOID( GSSOID((char *)"{ 1 3 6 1 5 5 15 1 1 17 }") );
}

GSSAcquireCred::GSSAcquireCred ( const GSSAcquireCred& other )
{

}

GSSAcquireCred::~GSSAcquireCred()
{

}

GSSAcquireCred::GSSAcquireCred ( 
    JSONObject *params, 
    gss_acq_cred_type fn
)
{
  /* Variables */
  /* Error checking */
  /* Setup */
  /* Main */
  loadParameters(params);
  function = fn;
  /* Cleanup */
  /* Return */
}


bool GSSAcquireCred::loadParameters(JSONObject *params)
{
  /* Variables */
  std::string sCredUsage;
  size_t nDesiredMechs;
  
  /* Error checking */
  /* Setup */
  // Should I zeroOut?
  
  /* Main processing */
  // Easy stuff(*params)
  this->time_req = (OM_uint32 )(*params)["time_req"].integer();

  /**************
   * cred_usage *
   **************/
  if ( ! params->get("cred_usage").isNull() )
  {
    if (params->get("cred_usage").isString())
    {
      sCredUsage = params->get("cred_usage").string();
      if (sCredUsage == "GSS_C_BOTH")
        this->cred_usage = GSS_C_BOTH;
      else if (sCredUsage == "GSS_C_INITIATE")
        this->cred_usage = GSS_C_INITIATE;
      else if (sCredUsage == "GSS_C_ACCEPT")
        this->cred_usage = GSS_C_ACCEPT;
      else
        throw std::invalid_argument( std::string("Invalid cred_usage type given: ") + sCredUsage );
    } else if (params->get("cred_usage").isInteger())
      this->cred_usage = (gss_cred_usage_t)( params->get("cred_usage").integer() );
    else
      throw std::invalid_argument( "Unrecognized argument type for cred_usage." );
      }
  
  /*****************
   * desired_mechs *
   *****************/
  if ( ! params->get("desired_mechs").isNull() )
  {
    if ( params->get("desired_mechs").isArray() )
    {
      for (nDesiredMechs = 0; 
          nDesiredMechs < params->get("desired_mechs").size();
          nDesiredMechs++)
      {
        std::string mechStr = params->get("desired_mechs")[nDesiredMechs].string();
        desiredMechs.addOID( GSSOID(mechStr).toGss() );
      }
    } else
      throw std::invalid_argument("Unrecognized desired_mechs array.");
  }

  /****************
   * desired_name *
   ****************/
  if ( ! params->get("desired_name").isNull() )
  {
    std::string key = params->get("desired_name").string();
    this->desired_name = GSSNameCache::instance()->retrieve(key);
  }

  
  /* Cleanup */
  /* Return */
  return true;
}



void GSSAcquireCred::execute()
{
  /* Variables */
  gss_cred_id_t output_cred_handle;
  gss_OID_set   actual_mechs;
  
  /* Error checking */
  /* Setup */
  /* Main */
  this->retVal = function(
    &this->minor_status,
    this->desired_name.toGss(),
    this->time_req,
    this->desiredMechs.toGss(),
    this->cred_usage,
    &output_cred_handle,
    &actual_mechs,
    &this->time_rec
  );
  
  if (GSS_ERROR(this->retVal) )
  {
    std::string err("Error acquiring credential for user '");
    err += desired_name.toString();
    err += "'.";
    throw GSSException(err, this->retVal, this->minor_status);
  }
  
  this->cred.setValue(output_cred_handle);
  this->actualMechs = actual_mechs;
  
  /* Cleanup */
  /* Return */
}

/* Desired JSON output:
 * 
 * {
 *     "major_status": 0,
 *     "minor_status": 0,
 *     "cred_handle": "###########",
 *     "actual_mechs": [
 *       "{ 1 2 3 4 }",
 *       "{ 5 6 7 8 }"
 *     ],
 *     "time_rec": 0
 * }
 */
JSONObject *GSSAcquireCred::toJSON()
{
  /* Variables */
  JSONObject *values = new JSONObject();
  JSONObject *temp;
  
  /* Error checking */
  
  /* Setup */
  
  /* Main */
  // Return Values
  // Easy stuff
  values->set("major_status", this->retVal);
  values->set("minor_status", this->minor_status);
  values->set("time_rec", (int)this->time_rec );
  
  // Objects that generate their own JSONObject
  temp = this->cred.toJSONValue();
  values->set("output_cred_handle", *temp );
  
  temp = this->actualMechs.toJSONValue();
  values->set("actual_mechs", *temp);
  
  /* Cleanup */
  
  /* Return */
  return(values);
}