aboutsummaryrefslogtreecommitdiff
path: root/nxcomp/Auth.h
diff options
context:
space:
mode:
authorMike Gabriel <mike.gabriel@das-netzwerkteam.de>2011-11-19 15:59:16 +0100
committerMike Gabriel <mike.gabriel@das-netzwerkteam.de>2011-11-19 15:59:16 +0100
commita48361b11a5abb5a345dac5ec83a8f56c4d50b74 (patch)
treea16fb870a072450bb45ee09ac4df9887bfa7f98e /nxcomp/Auth.h
parent9997e13bb583de4012914006c7507839a4e11227 (diff)
parent232dfc41d41390bfffa75ec2ed065c109fa03a0e (diff)
downloadnx-libs-a48361b11a5abb5a345dac5ec83a8f56c4d50b74.tar.gz
nx-libs-a48361b11a5abb5a345dac5ec83a8f56c4d50b74.tar.bz2
nx-libs-a48361b11a5abb5a345dac5ec83a8f56c4d50b74.zip
Merge branch 'nxcomp'
Diffstat (limited to 'nxcomp/Auth.h')
-rw-r--r--nxcomp/Auth.h119
1 files changed, 119 insertions, 0 deletions
diff --git a/nxcomp/Auth.h b/nxcomp/Auth.h
new file mode 100644
index 000000000..aac1d1e3f
--- /dev/null
+++ b/nxcomp/Auth.h
@@ -0,0 +1,119 @@
+/**************************************************************************/
+/* */
+/* Copyright (c) 2001, 2010 NoMachine, http://www.nomachine.com/. */
+/* */
+/* NXCOMP, NX protocol compression and NX extensions to this software */
+/* are copyright of NoMachine. Redistribution and use of the present */
+/* software is allowed according to terms specified in the file LICENSE */
+/* which comes in the source distribution. */
+/* */
+/* Check http://www.nomachine.com/licensing.html for applicability. */
+/* */
+/* NX and NoMachine are trademarks of Medialogic S.p.A. */
+/* */
+/* All rights reserved. */
+/* */
+/**************************************************************************/
+
+#ifndef Auth_H
+#define Auth_H
+
+#include "Timestamp.h"
+
+//
+// Handle the forwarding of authorization credentials
+// to the X server by replacing the fake cookie with
+// the real cookie as it is read from the auth file.
+// At the moment only the MIT-MAGIC-COOKIE-1 cookies
+// are recognized. The implementation is based on the
+// corresponding code found in the SSH client.
+//
+
+class Auth
+{
+ public:
+
+ //
+ // Must be created by passing the fake cookie that
+ // will be forwarded by the remote end and with the
+ // real X display that is going to be used for the
+ // session.
+ //
+
+ Auth(char *display, char *cookie);
+
+ ~Auth();
+
+ int isValid()
+ {
+ return (isTimestamp(last_) == 1 && fakeCookie_ != NULL &&
+ *fakeCookie_ != '\0' && realCookie_ != NULL &&
+ *realCookie_ != '\0' && fakeData_ != NULL &&
+ realData_ != NULL && dataSize_ != 0);
+ }
+
+ int isFake() const
+ {
+ return generatedCookie_;
+ }
+
+ //
+ // Method called in the channel class to find if the
+ // provided cookie matches the fake one. If the data
+ // matches, the fake cookie is replaced with the real
+ // one.
+ //
+
+ int checkCookie(unsigned char *buffer);
+
+ protected:
+
+ //
+ // Update the real cookie for the display. If called
+ // a further time, check if the auth file is changed
+ // and get the new cookie.
+ //
+
+ int updateCookie();
+
+ //
+ // Find out which authorization file is to be used
+ // and query the cookie for the current display.
+ //
+
+ int getCookie();
+
+ //
+ // Extract the binary data from the cookies so that
+ // data can be directly compared at the time it is
+ // taken from the X request.
+ //
+
+ int validateCookie();
+
+ //
+ // Generate a fake random cookie and copy it to the
+ // provided string.
+ //
+
+ void generateCookie(char *cookie);
+
+ private:
+
+ char *display_;
+ char *file_;
+
+ T_timestamp last_;
+
+ char *fakeCookie_;
+ char *realCookie_;
+
+ char *fakeData_;
+ char *realData_;
+
+ int dataSize_;
+
+ int generatedCookie_;
+};
+
+#endif /* Auth_H */