X-Git-Url: https://gerrit.opnfv.org/gerrit/gitweb?a=blobdiff_plain;f=src%2Fceph%2Fsrc%2Fauth%2FAuthAuthorizeHandler.h;fp=src%2Fceph%2Fsrc%2Fauth%2FAuthAuthorizeHandler.h;h=2e81f14abde6462c14968419d8353760cbb588af;hb=812ff6ca9fcd3e629e49d4328905f33eee8ca3f5;hp=0000000000000000000000000000000000000000;hpb=15280273faafb77777eab341909a3f495cf248d9;p=stor4nfv.git diff --git a/src/ceph/src/auth/AuthAuthorizeHandler.h b/src/ceph/src/auth/AuthAuthorizeHandler.h new file mode 100644 index 0000000..2e81f14 --- /dev/null +++ b/src/ceph/src/auth/AuthAuthorizeHandler.h @@ -0,0 +1,55 @@ +// -*- mode:C++; tab-width:8; c-basic-offset:2; indent-tabs-mode:t -*- +// vim: ts=8 sw=2 smarttab +/* + * Ceph - scalable distributed file system + * + * Copyright (C) 2004-2009 Sage Weil + * + * This is free software; you can redistribute it and/or + * modify it under the terms of the GNU Lesser General Public + * License version 2.1, as published by the Free Software + * Foundation. See file COPYING. + * + */ + +#ifndef CEPH_AUTHAUTHORIZEHANDLER_H +#define CEPH_AUTHAUTHORIZEHANDLER_H + +#include "Auth.h" +#include "AuthMethodList.h" +#include "include/types.h" +#include "common/Mutex.h" +// Different classes of session crypto handling + +#define SESSION_CRYPTO_NONE 0 +#define SESSION_SYMMETRIC_AUTHENTICATE 1 +#define SESSION_SYMMETRIC_ENCRYPT 2 + +class CephContext; +class KeyRing; +class RotatingKeyRing; + +struct AuthAuthorizeHandler { + virtual ~AuthAuthorizeHandler() {} + virtual bool verify_authorizer(CephContext *cct, KeyStore *keys, + bufferlist& authorizer_data, bufferlist& authorizer_reply, + EntityName& entity_name, uint64_t& global_id, + AuthCapsInfo& caps_info, CryptoKey& session_key, uint64_t *auid = NULL) = 0; + virtual int authorizer_session_crypto() = 0; +}; + +class AuthAuthorizeHandlerRegistry { + Mutex m_lock; + map m_authorizers; + AuthMethodList supported; + +public: + AuthAuthorizeHandlerRegistry(CephContext *cct_, std::string methods) + : m_lock("AuthAuthorizeHandlerRegistry::m_lock"), supported(cct_, methods) + {} + ~AuthAuthorizeHandlerRegistry(); + + AuthAuthorizeHandler *get_handler(int protocol); +}; + +#endif