1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
|
--[[ ACF Logon/Logoff authenticator that uses plaintext files
Copyright (c) 2007 Nathan Angelacos
GPL2 license
The password file is in the format:
userid:password:username:role1[,role2...]
]]--
module (..., package.seeall)
local sess = require ("session")
local pvt={}
pvt.parse_authfile = function(filename)
local row = {}
-- open our password file
local f = io.open (filename)
if f then
local m = (f:read("*all") or "" ).. "\n"
f:close()
for l in string.gmatch(m, "(%C*)\n") do
local userid, password, username, roles =
string.match(l, "([^:]*):([^:]*):([^:]*):(.*)")
local r = {}
roles=roles or ""
for x in string.gmatch(roles, "([^,]*),?") do
table.insert (r, x )
end
local a = {}
a.userid = userid
a.password = password
a.username = username
a.roles = r
table.insert (row, a)
end
return row
else
return nil
end
end
pvt.get_id = function(userid, authstruct)
if authstruct == nil then return false end
for x = 1,#authstruct do
if authstruct[x].userid == userid then
return authstruct[x]
end
end
end
--- public methods
-- This function returns true or false, and
-- if false: the reason for failure
authenticate = function ( self, userid, password )
password = password or ""
userid = userid or ""
local t = pvt.parse_authfile(self.conf.confdir .. "/passwd")
if t == false then
return false, "password file is missing"
else
local id = pvt.get_id (userid, t)
if id == false then
return false, "Userid not found"
end
if id.password ~= password then
return false, "Invalid password"
end
end
return true
end
-- This function returns the username and roles
-- or false on an error
get_userinfo = function ( self, userid )
local t = pvt.parse_authfile(self.conf.confdir .. "/passwd")
if t == false then
return nil
else
pvt.get_id (userid, t)
end
end
|
