openvpn3/userpass_8hpp_source.html

//    OpenVPN -- An application to securely tunnel IP networks

//               over a single port, with support for SSL/TLS-based

//               session authentication and key exchange,

//               packet encryption, packet authentication, and

//               packet compression.

//

//    Copyright (C) 2012- OpenVPN Inc.

//

//    SPDX-License-Identifier: MPL-2.0 OR AGPL-3.0-only WITH openvpn3-openssl-exception

//


#ifndef OPENVPN_COMMON_USERPASS_H

#define OPENVPN_COMMON_USERPASS_H


#include <string>

#include <vector>

#include <utility>


#include <openvpn/common/exception.hpp>

#include <openvpn/common/options.hpp>

#include <openvpn/common/splitlines.hpp>

#include <openvpn/common/string.hpp>

#include <openvpn/common/file.hpp>


namespace openvpn::UserPass {


OPENVPN_EXCEPTION(creds_error);


enum Flags

{

    OPT_REQUIRED = (1 << 0),

    OPT_OPTIONAL = (1 << 1),

    USERNAME_REQUIRED = (1 << 2),

    PASSWORD_REQUIRED = (1 << 3),

    TRY_FILE = (1 << 4),

};


inline bool parse(const OptionList &options,

                  const std::string &opt_name,

                  const unsigned int flags,

                  std::vector<std::string> *user_pass)

{

    const Option *auth_user_pass = options.get_ptr(opt_name);

    if (!auth_user_pass)

    {

        if (flags & OPT_REQUIRED)

            throw creds_error(opt_name + " : credentials option missing");

        return false;

    }

    if (auth_user_pass->size() == 1 && !(flags & OPT_REQUIRED))

        return true;

    if (auth_user_pass->size() != 2)

        throw creds_error(opt_name + " : credentials option incorrectly specified");


    std::string str = auth_user_pass->get(1, 1024 | Option::MULTILINE);

    if ((flags & TRY_FILE) && !string::is_multiline(str))

        str = read_text_utf8(str);

    SplitLines in(str, 1024);

    for (int i = 0; in(true) && i < 2; ++i)

    {

        if (user_pass)

            user_pass->push_back(in.line_move());

    }

    return true;

}


inline void parse(const OptionList &options,

                  const std::string &opt_name,

                  const unsigned int flags,

                  std::string &user,

                  std::string &pass)

{

    user.clear();

    pass.clear();

    std::vector<std::string> up;

    up.reserve(2);

    if (!parse(options, opt_name, flags, &up) && (flags & OPT_OPTIONAL))

        return;

    if (up.size() >= 1)

    {

        user = std::move(up[0]);

        if (up.size() >= 2)

            pass = std::move(up[1]);

    }

    if ((flags & USERNAME_REQUIRED) && string::is_empty(user))

        throw creds_error(opt_name + " : username empty");

    if ((flags & PASSWORD_REQUIRED) && string::is_empty(pass))

        throw creds_error(opt_name + " : password empty");

}


inline void parse_file(const std::string &path,

                       const unsigned int flags,

                       std::string &user,

                       std::string &pass)

{

    user.clear();

    pass.clear();

    const std::string str = read_text_utf8(path);

    SplitLines in(str, 1024);

    if (in(true))

    {

        user = in.line_move();

        if (in(true))

            pass = in.line_move();

    }

    if ((flags & USERNAME_REQUIRED) && string::is_empty(user))

        throw creds_error(path + " : username empty");

    if ((flags & PASSWORD_REQUIRED) && string::is_empty(pass))

        throw creds_error(path + " : password empty");

}


} // namespace openvpn::UserPass


#endif

openvpn::OptionList
Definition options.hpp:517

openvpn::OptionList::get_ptr
const Option * get_ptr(const std::string &name) const
Definition options.hpp:1186

openvpn::Option
Definition options.hpp:62

openvpn::Option::get
const std::string & get(const size_t index, const size_t max_len) const
Definition options.hpp:187

openvpn::Option::size
size_t size() const
Definition options.hpp:327

openvpn::Option::MULTILINE
@ MULTILINE
Definition options.hpp:67

openvpn::SplitLinesType
Definition splitlines.hpp:24

openvpn::SplitLinesType::line_move
std::string line_move()
Definition splitlines.hpp:122

exception.hpp

OPENVPN_EXCEPTION
#define OPENVPN_EXCEPTION(C)
Definition exception.hpp:100

file.hpp

openvpn::UserPass
Definition userpass.hpp:25

openvpn::UserPass::Flags
Flags
Definition userpass.hpp:30

openvpn::UserPass::OPT_REQUIRED
@ OPT_REQUIRED
option must be present
Definition userpass.hpp:31

openvpn::UserPass::PASSWORD_REQUIRED
@ PASSWORD_REQUIRED
password must be present
Definition userpass.hpp:34

openvpn::UserPass::USERNAME_REQUIRED
@ USERNAME_REQUIRED
username must be present
Definition userpass.hpp:33

openvpn::UserPass::OPT_OPTIONAL
@ OPT_OPTIONAL
if option is not present, USERNAME_REQUIRED and PASSWORD_REQUIRED are ignored
Definition userpass.hpp:32

openvpn::UserPass::TRY_FILE
@ TRY_FILE
option argument might be a filename, try to load creds from it
Definition userpass.hpp:35

openvpn::UserPass::parse
bool parse(const OptionList &options, const std::string &opt_name, const unsigned int flags, std::vector< std::string > *user_pass)
interpret user-pass option
Definition userpass.hpp:74

openvpn::UserPass::parse_file
void parse_file(const std::string &path, const unsigned int flags, std::string &user, std::string &pass)
read username/password from file
Definition userpass.hpp:186

openvpn::string::is_multiline
bool is_multiline(const std::string &str)
Definition string.hpp:255

openvpn::string::is_empty
bool is_empty(const std::string &str)
Definition string.hpp:448

openvpn::read_text_utf8
std::string read_text_utf8(const std::string &filename, const std::uint64_t max_size=0)
Definition file.hpp:136

options.hpp

splitlines.hpp

string.hpp

flags
reroute_gw flags
Definition test_capture.cpp:266

str
os<< "Session Name: "<< tbc-> session_name<< '\n';os<< "Layer: "<< tbc-> layer str()<< '\n'

user_pass
const std::vector< std::string > user_pass
Definition test_userpass.cpp:39