aniani/icecast-server
1
0
Fork 0
mirror of https://gitlab.xiph.org/xiph/icecast-server.git synced 2024-11-03 04:17:17 -05:00
Code
0903dd68ed
icecast-server/src/auth.c

586 lines
15 KiB
C
Raw Normal View History

Add Copyright notice to each source file, as requested by debian. svn path=/trunk/httpp/; revision=5792
2004-01-28 20:02:12 -05:00
/* Icecast
*
* This program is distributed under the GNU General Public License, version 2.
* A copy of this license is included with this source.
*
* Copyright 2000-2004, Jack Moffitt <jack@xiph.org,
* Michael Smith <msmith@xiph.org>,
* oddsock <oddsock@xiph.org>,
* Karl Heyes <karl@xiph.org>
* and others (see AUTHORS for details).
*/
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
/**
* Client authentication functions
*/
#ifdef HAVE_CONFIG_H
#include <config.h>
#endif
#include <stdlib.h>
#include <string.h>
#include <errno.h>
#include <stdio.h>
#include "auth.h"
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
#include "auth_htpasswd.h"
merge URL listener auth svn path=/icecast/trunk/icecast/; revision=9714
2005-08-07 19:29:12 -04:00
#include "auth_url.h"
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
#include "source.h"
#include "client.h"
#include "cfgfile.h"
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
#include "stats.h"
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
#include "httpp/httpp.h"
allow for webroot requests to be sent via an authenticator svn path=/icecast/trunk/icecast/; revision=9717
2005-08-08 14:39:34 -04:00
#include "fserve.h"
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
#include "logging.h"
#define CATMODULE "auth"
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
static volatile auth_client *clients_to_auth;
static volatile unsigned int auth_pending_count;
static volatile int auth_running;
static mutex_t auth_lock;
static thread_type *auth_thread;
static void auth_client_setup (mount_proxy *mountinfo, client_t *client)
added ability to disallow concurrent connections from the same username if using htpasswd listener authentication. svn path=/icecast/trunk/icecast/; revision=6711
2004-05-17 00:33:46 -04:00
{
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* This will look something like "Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ==" */
char *header = httpp_getvar(client->parser, "authorization");
char *userpass, *tmp;
char *username, *password;
do
{
if (header == NULL)
break;
if (strncmp(header, "Basic ", 6) == 0)
{
userpass = util_base64_decode (header+6);
if (userpass == NULL)
{
WARN1("Base64 decode of Authorization header \"%s\" failed",
header+6);
break;
}
tmp = strchr(userpass, ':');
if (tmp == NULL)
{
free (userpass);
break;
added ability to disallow concurrent connections from the same username if using htpasswd listener authentication. svn path=/icecast/trunk/icecast/; revision=6711
2004-05-17 00:33:46 -04:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
*tmp = 0;
username = userpass;
password = tmp+1;
client->username = strdup (username);
client->password = strdup (password);
free (userpass);
break;
added ability to disallow concurrent connections from the same username if using htpasswd listener authentication. svn path=/icecast/trunk/icecast/; revision=6711
2004-05-17 00:33:46 -04:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
INFO1 ("unhandled authorization header: %s", header);
added ability to disallow concurrent connections from the same username if using htpasswd listener authentication. svn path=/icecast/trunk/icecast/; revision=6711
2004-05-17 00:33:46 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
} while (0);
added ability to disallow concurrent connections from the same username if using htpasswd listener authentication. svn path=/icecast/trunk/icecast/; revision=6711
2004-05-17 00:33:46 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
client->auth = mountinfo->auth;
client->auth->refcount++;
added ability to disallow concurrent connections from the same username if using htpasswd listener authentication. svn path=/icecast/trunk/icecast/; revision=6711
2004-05-17 00:33:46 -04:00
}
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
static void queue_auth_client (auth_client *auth_user)
{
thread_mutex_lock (&auth_lock);
auth_user->next = (auth_client *)clients_to_auth;
clients_to_auth = auth_user;
auth_pending_count++;
thread_mutex_unlock (&auth_lock);
}
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* release the auth. It is referred to by multiple structures so this is
* refcounted and only actual freed after the last use
*/
void auth_release (auth_t *authenticator)
{
if (authenticator == NULL)
return;
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
authenticator->refcount--;
if (authenticator->refcount)
return;
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
if (authenticator->free)
authenticator->free (authenticator);
a few fixes needed after some testing on win32 svn path=/icecast/trunk/icecast/; revision=9730
2005-08-11 18:56:51 -04:00
xmlFree (authenticator->type);
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
free (authenticator);
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
void auth_client_free (auth_client *auth_user)
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
{
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
if (auth_user == NULL)
return;
if (auth_user->client)
{
client_t *client = auth_user->client;
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
if (client->respcode)
client_destroy (client);
else
client_send_401 (client);
auth_user->client = NULL;
}
free (auth_user->mount);
free (auth_user);
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* wrapper function for auth thread to authenticate new listener
* connection details
*/
static void auth_new_listener (auth_client *auth_user)
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
{
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
client_t *client = auth_user->client;
if (client->auth->authenticate)
{
if (client->auth->authenticate (auth_user) != AUTH_OK)
return;
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
if (auth_postprocess_client (auth_user) < 0)
INFO1 ("client %lu failed", client->con->id);
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* wrapper function are auth thread to authenticate new listener
* connections
*/
static void auth_remove_listener (auth_client *auth_user)
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
{
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
client_t *client = auth_user->client;
if (client->auth->release_client)
client->auth->release_client (auth_user);
auth_release (client->auth);
client->auth = NULL;
return;
}
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* The auth thread main loop. */
static void *auth_run_thread (void *arg)
{
INFO0 ("Authentication thread started");
while (1)
{
if (clients_to_auth)
{
auth_client *auth_user;
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
thread_mutex_lock (&auth_lock);
auth_user = (auth_client*)clients_to_auth;
clients_to_auth = auth_user->next;
auth_pending_count--;
thread_mutex_unlock (&auth_lock);
auth_user->next = NULL;
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
if (auth_user->process)
auth_user->process (auth_user);
else
ERROR0 ("client auth process not set");
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
auth_client_free (auth_user);
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
continue;
added ability to disallow concurrent connections from the same username if using htpasswd listener authentication. svn path=/icecast/trunk/icecast/; revision=6711
2004-05-17 00:33:46 -04:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* is there a request to shutdown */
if (auth_running == 0)
break;
thread_sleep (150000);
added ability to disallow concurrent connections from the same username if using htpasswd listener authentication. svn path=/icecast/trunk/icecast/; revision=6711
2004-05-17 00:33:46 -04:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
INFO0 ("Authenication thread shutting down");
return NULL;
}
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* Check whether this client is currently on this mount, the client may be
* on either the active or pending lists.
* return 1 if ok to add or 0 to prevent
*/
static int check_duplicate_logins (source_t *source, client_t *client)
{
auth_t *auth = client->auth;
/* allow multiple authenticated relays */
if (client->username == NULL)
return 1;
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
if (auth && auth->allow_duplicate_users == 0)
{
avl_node *node;
avl_tree_rlock (source->client_tree);
node = avl_get_first (source->client_tree);
while (node)
{
client_t *client = (client_t *)node->key;
if (client->username && strcmp (client->username, client->username) == 0)
{
avl_tree_unlock (source->client_tree);
return 0;
}
node = avl_get_next (node);
}
avl_tree_unlock (source->client_tree);
avl_tree_rlock (source->pending_tree);
node = avl_get_first (source->pending_tree);
while (node)
{
client_t *client = (client_t *)node->key;
if (client->username && strcmp (client->username, client->username) == 0)
{
avl_tree_unlock (source->pending_tree);
return 0;
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
node = avl_get_next (node);
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
avl_tree_unlock (source->pending_tree);
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
return 1;
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* if 0 is returned then the client should not be touched, however if -1
* is returned then the caller is responsible for handling the client
*/
static int add_client_to_source (source_t *source, client_t *client)
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
{
Allow for new listeners to fallback if there are max listeners on the current mountpoint svn path=/icecast/trunk/icecast/; revision=9833
2005-08-23 14:40:20 -04:00
int loop = 10;
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
do
{
DEBUG3 ("max on %s is %ld (cur %lu)", source->mount,
source->max_listeners, source->listeners);
if (source->max_listeners == -1)
break;
if (source->listeners < (unsigned long)source->max_listeners)
break;
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Allow for new listeners to fallback if there are max listeners on the current mountpoint svn path=/icecast/trunk/icecast/; revision=9833
2005-08-23 14:40:20 -04:00
if (loop && source->fallback_when_full && source->fallback_mount)
{
source_t *next = source_find_mount (source->fallback_mount);
INFO1 ("stream full trying %s", next->mount);
source = next;
loop--;
continue;
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* now we fail the client */
return -1;
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
} while (1);
/* lets add the client to the active list */
avl_tree_wlock (source->pending_tree);
avl_insert (source->pending_tree, client);
avl_tree_unlock (source->pending_tree);
stats_event_inc (NULL, "listener_connections");
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
client->write_to_client = format_generic_write_to_client;
client->check_buffer = format_check_http_buffer;
client->refbuf->len = PER_CLIENT_REFBUF_SIZE;
memset (client->refbuf->data, 0, PER_CLIENT_REFBUF_SIZE);
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
if (source->running == 0 && source->on_demand)
{
/* enable on-demand relay to start, wake up the slave thread */
DEBUG0("kicking off on-demand relay");
source->on_demand_req = 1;
slave_rescan ();
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
DEBUG1 ("Added client to %s", source->mount);
return 0;
}
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* Add listener to the pending lists of either the source or fserve thread.
* This can be run from the connection or auth thread context
*/
static int add_authenticated_client (const char *mount, mount_proxy *mountinfo, client_t *client)
{
int ret = 0;
source_t *source = NULL;
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
avl_tree_rlock (global.source_tree);
source = source_find_mount (mount);
Client authentication added. Melanie's multilevel fallbacks added (after major changes). svn path=/trunk/icecast/; revision=5760
2004-01-14 20:01:09 -05:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
if (source)
{
if (client->auth && check_duplicate_logins (source, client) == 0)
{
avl_tree_unlock (global.source_tree);
return -1;
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
}
fixes for client handling, these are all related to the handling of max clients. I've taken out the client_create out of the connection_complete_source and put it in slave, that way we can control the cleanup of the memory/socket better, the change also meant fallback to file tests were slghtly different. svn path=/icecast/trunk/icecast/; revision=9847
2005-08-24 20:07:17 -04:00
if (mountinfo)
{
/* set a per-mount disconnect time if auth hasn't set one already */
if (mountinfo->max_listener_duration && client->con->discon_time == 0)
client->con->discon_time = time(NULL) + mountinfo->max_listener_duration;
}
add per-mount listener time limit setting svn path=/icecast/trunk/icecast/; revision=9834
2005-08-23 15:00:15 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
ret = add_client_to_source (source, client);
avl_tree_unlock (global.source_tree);
if (ret == 0)
DEBUG0 ("client authenticated, passed to source");
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
}
allow for webroot requests to be sent via an authenticator svn path=/icecast/trunk/icecast/; revision=9717
2005-08-08 14:39:34 -04:00
else
{
avl_tree_unlock (global.source_tree);
fserve_client_create (client, mount);
}
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
return ret;
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
int auth_postprocess_client (auth_client *auth_user)
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
{
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
int ret;
ice_config_t *config = config_get_config();
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
mount_proxy *mountinfo = config_find_mount (config, auth_user->mount);
auth_user->client->authenticated = 1;
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
ret = add_authenticated_client (auth_user->mount, mountinfo, auth_user->client);
config_release_config();
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
if (ret < 0)
client_send_401 (auth_user->client);
auth_user->client = NULL;
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
return ret;
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* Add a listener. Check for any mount information that states any
* authentication to be used.
*/
void add_client (const char *mount, client_t *client)
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
{
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
mount_proxy *mountinfo;
ice_config_t *config = config_get_config();
mountinfo = config_find_mount (config, mount);
if (mountinfo && mountinfo->no_mount)
{
config_release_config ();
client_send_404 (client, "mountpoint unavailable");
return;
}
if (mountinfo && mountinfo->auth)
{
auth_client *auth_user;
if (auth_pending_count > 30)
{
config_release_config ();
WARN0 ("too many clients awaiting authentication");
client_send_404 (client, "busy, please try again later");
return;
}
auth_client_setup (mountinfo, client);
config_release_config ();
if (client->auth == NULL)
{
client_send_401 (client);
return;
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
auth_user = calloc (1, sizeof (auth_client));
if (auth_user == NULL)
{
client_send_401 (client);
return;
}
auth_user->mount = strdup (mount);
auth_user->process = auth_new_listener;
auth_user->client = client;
INFO0 ("adding client for authentication");
queue_auth_client (auth_user);
}
else
{
int ret = add_authenticated_client (mount, mountinfo, client);
config_release_config ();
if (ret < 0)
client_send_404 (client, "stream full");
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
}
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* determine whether we need to process this client further. This
* involves any auth exit, typically for external auth servers.
*/
int release_client (client_t *client)
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
{
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
if (client->auth)
using .filename causes problems with absolute paths for the temp file, also test to see if file exists already svn path=/icecast/trunk/icecast/; revision=9407
2005-06-08 22:21:03 -04:00
{
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
auth_client *auth_user = calloc (1, sizeof (auth_client));
if (auth_user == NULL)
return 0;
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
auth_user->mount = strdup (httpp_getvar (client->parser, HTTPP_VAR_URI));
auth_user->process = auth_remove_listener;
auth_user->client = client;
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
queue_auth_client (auth_user);
return 1;
}
return 0;
}
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
static void get_authenticator (auth_t *auth, config_options_t *options)
{
do
{
DEBUG1 ("type is %s", auth->type);
merge URL listener auth svn path=/icecast/trunk/icecast/; revision=9714
2005-08-07 19:29:12 -04:00
#ifdef HAVE_AUTH_URL
if (strcmp (auth->type, "url") == 0)
{
auth_get_url_auth (auth, options);
break;
}
#endif
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
if (strcmp (auth->type, "htpasswd") == 0)
{
auth_get_htpasswd_auth (auth, options);
break;
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
ERROR1("Unrecognised authenticator type: \"%s\"", auth->type);
return;
} while (0);
auth->refcount = 1;
while (options)
{
if (strcmp(options->name, "allow_duplicate_users") == 0)
auth->allow_duplicate_users = atoi (options->value);
options = options->next;
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
}
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
auth_t *auth_get_authenticator (xmlNodePtr node)
{
auth_t *auth = calloc (1, sizeof (auth_t));
config_options_t *options = NULL, **next_option = &options;
xmlNodePtr option;
if (auth == NULL)
return NULL;
option = node->xmlChildrenNode;
while (option)
{
xmlNodePtr current = option;
option = option->next;
if (strcmp (current->name, "option") == 0)
{
config_options_t *opt = calloc (1, sizeof (config_options_t));
opt->name = xmlGetProp (current, "name");
if (opt->name == NULL)
{
free(opt);
continue;
}
opt->value = xmlGetProp (current, "value");
if (opt->value == NULL)
{
xmlFree (opt->name);
free (opt);
continue;
}
*next_option = opt;
next_option = &opt->next;
}
else
if (strcmp (current->name, "text") != 0)
WARN1 ("unknown auth setting (%s)", current->name);
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
auth->type = xmlGetProp (node, "type");
get_authenticator (auth, options);
while (options)
{
config_options_t *opt = options;
options = opt->next;
xmlFree (opt->name);
xmlFree (opt->value);
free (opt);
some special handling with rename() needed for win32 svn path=/icecast/trunk/icecast/; revision=6616
2004-05-03 10:59:40 -04:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
return auth;
}
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* called when the stream starts, so that authentication engine can do any
* cleanup/initialisation.
*/
void auth_stream_start (mount_proxy *mountinfo, const char *mount)
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
{
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
if (mountinfo && mountinfo->auth && mountinfo->auth->stream_start)
{
auth_client *auth_user = calloc (1, sizeof (auth_client));
if (auth_user)
{
auth_user->mount = strdup (mount);
auth_user->process = mountinfo->auth->stream_start;
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
queue_auth_client (auth_user);
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
}
}
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* Called when the stream ends so that the authentication engine can do
* any authentication cleanup
*/
void auth_stream_end (mount_proxy *mountinfo, const char *mount)
{
if (mountinfo && mountinfo->auth && mountinfo->auth->stream_end)
{
auth_client *auth_user = calloc (1, sizeof (auth_client));
if (auth_user)
{
auth_user->mount = strdup (mount);
auth_user->process = mountinfo->auth->stream_end;
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
queue_auth_client (auth_user);
}
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
}
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
/* these are called at server start and termination */
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
void auth_initialise ()
{
clients_to_auth = NULL;
auth_pending_count = 0;
auth_running = 1;
thread_mutex_create (&auth_lock);
auth_thread = thread_create ("auth thread", auth_run_thread, NULL, THREAD_ATTACHED);
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
}
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
void auth_shutdown ()
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
{
Initial auth merge. Add an auth thread (multiple threads can be done later) which can be used to handle authentication mechanisms without taking locks for long periods. Non-authenticated mountpoints bypass the auth thread. The lookup/checking of the source_t is done after the authentication succeeds so the fallback mechanism does not affect which authenticator is used. This can be extended to allow us to authenticate in webroot as well. XML re-read changes will take effect immediately for new listeners but existing listeners will use the original auth_t (refcounted) when they exit. htpasswd access has been seperated out from auth.c, and implements an AVL tree for a faster username lookup. The htpasswd file timestamp is checked just in case there are changes made externally svn path=/icecast/trunk/icecast/; revision=9713
2005-08-07 19:01:04 -04:00
if (auth_thread)
{
auth_running = 0;
thread_join (auth_thread);
INFO0 ("Auth thread has terminated");
added web based interface to htpasswd client authentication svn path=/icecast/trunk/icecast/; revision=6610
2004-04-30 10:36:07 -04:00
}
}
added ability to disallow concurrent connections from the same username if using htpasswd listener authentication. svn path=/icecast/trunk/icecast/; revision=6711
2004-05-17 00:33:46 -04:00
Copy Permalink