Home Explore Help
Sign In
epsylon
/
meta-id
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0
Tree: a33012f7ba
Branches Tags
meta-id
/
meta-id
/
httpd
/
auth.c

auth.c 2.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263 
  1. /*
    2. 

  2. HTTP auth implementation. Only does basic authentication for now.
    3. 

  3. */
    4. 

  4. 

  5. /*
    6. 

  6.  * ----------------------------------------------------------------------------
    7. 

  7.  * "THE BEER-WARE LICENSE" (Revision 42):
    8. 

  8.  * Jeroen Domburg <jeroen@spritesmods.com> wrote this file. As long as you retain
    9. 

  9.  * this notice you can do whatever you want with this stuff. If we meet some day,
    10. 

  10.  * and you think this stuff is worth it, you can buy me a beer in return.
    11. 

  11.  * ----------------------------------------------------------------------------
    12. 

  12.  */
    13. 

  13. 

  14. 

  15. #include <esp8266.h>
    16. 

  16. #include "auth.h"
    17. 

  17. #include "base64.h"
    18. 

  18. 

  19. int ICACHE_FLASH_ATTR authBasic(HttpdConnData *connData) {
    20. 

  20. 	const char *forbidden="401 Forbidden.";
    21. 

  21. 	int no=0;
    22. 

  22. 	int r;
    23. 

  23. 	char hdr[(AUTH_MAX_USER_LEN+AUTH_MAX_PASS_LEN+2)*10];
    24. 

  24. 	char userpass[AUTH_MAX_USER_LEN+AUTH_MAX_PASS_LEN+2];
    25. 

  25. 	char user[AUTH_MAX_USER_LEN];
    26. 

  26. 	char pass[AUTH_MAX_PASS_LEN];
    27. 

  27. 	if (connData->conn==NULL) {
    28. 

  28. 		//Connection aborted. Clean up.
    29. 

  29. 		return HTTPD_CGI_DONE;
    30. 

  30. 	}
    31. 

  31. 

  32. 	r=httpdGetHeader(connData, "Authorization", hdr, sizeof(hdr));
    33. 

  33. 	if (r && strncmp(hdr, "Basic", 5)==0) {
    34. 

  34. 		r=base64_decode(strlen(hdr)-6, hdr+6, sizeof(userpass), (unsigned char *)userpass);
    35. 

  35. 		if (r<0) r=0; //just clean out string on decode error
    36. 

  36. 		userpass[r]=0; //zero-terminate user:pass string
    37. 

  37. 		os_printf("Auth: %s\n", userpass);
    38. 

  38. 		while (((AuthGetUserPw)(connData->cgiArg))(connData, no,
    39. 

  39. 				user, AUTH_MAX_USER_LEN, pass, AUTH_MAX_PASS_LEN)) {
    40. 

  40. 			//Check user/pass against auth header
    41. 

  41. 			if (strlen(userpass)==strlen(user)+strlen(pass)+1 &&
    42. 

  42. 					os_strncmp(userpass, user, strlen(user))==0 &&
    43. 

  43. 					userpass[strlen(user)]==':' &&
    44. 

  44. 					os_strcmp(userpass+strlen(user)+1, pass)==0) {
    45. 

  45. 		os_printf("Auth: enticated. Yay!\n");
    46. 

  46. 				//Authenticated. Yay!
    47. 

  47. 				return HTTPD_CGI_AUTHENTICATED;
    48. 

  48. 			}
    49. 

  49. 			no++; //Not authenticated with this user/pass. Check next user/pass combo.
    50. 

  50. 		}
    51. 

  51. 	}
    52. 

  52. 

  53. 	//Not authenticated. Go bug user with login screen.
    54. 

  54. 	httpdStartResponse(connData, 401);
    55. 

  55. 	httpdHeader(connData, "Content-Type", "text/plain");
    56. 

  56. 	httpdHeader(connData, "WWW-Authenticate", "Basic realm=\""HTTP_AUTH_REALM"\"");
    57. 

  57. 	httpdEndHeaders(connData);
    58. 

  58. 	httpdSend(connData, forbidden, -1);
    59. 

  59. 	//Okay, all done.
    60. 

  60. 	return HTTPD_CGI_DONE;
    61. 

  61. }
    62. 

  62. 

  63.