#include <map>
#include <string>
+#include <unistd.h> // uid_t, gid_t
+#include <sys/stat.h> // mode_t
+
+class USER;
+
namespace STG
{
typedef std::map<std::string, std::string> Pairs;
typedef std::pair<std::string, std::string> Pair;
enum Type { UNIX, TCP };
+ enum ReturnCode
+ {
+ REJECT, // Reject the request immediately.
+ FAIL, // Module failed.
+ OK, // Module is OK, continue.
+ HANDLED, // The request is handled, no further handling.
+ INVALID, // The request is invalud.
+ USERLOCK, // Reject the request, user is locked.
+ NOTFOUND, // User not found.
+ NOOP, // Module performed no action.
+ UPDATED // Module sends some updates.
+ };
+
+ class Authorize
+ {
+ public:
+ Authorize() : m_auth(false) {}
+ Authorize(const Pairs& cond) : m_auth(true), m_cond(cond) {}
+ bool check(const USER& user, const Pairs& radiusData) const;
+ bool exists() const { return m_auth; }
+ private:
+ bool m_auth;
+ Pairs m_cond;
+ };
+
+ struct Section
+ {
+ Section() {}
+ Section(const Pairs& ma, const Pairs& mo, const Pairs& re, ReturnCode code, const Authorize& auth)
+ : match(ma), modify(mo), reply(re), returnCode(code), authorize(auth) {}
+ Pairs match;
+ Pairs modify;
+ Pairs reply;
+ ReturnCode returnCode;
+ Authorize authorize;
+ };
+
+ Config() {}
Config(const MODULE_SETTINGS& settings);
- Pairs match;
- Pairs modify;
- Pairs reply;
+ Section autz;
+ Section auth;
+ Section postauth;
+ Section preacct;
+ Section acct;
bool verbose;
+ std::string address;
Type connectionType;
std::string bindAddress;
std::string portStr;
uint16_t port;
std::string key;
+
+ uid_t sockUID;
+ gid_t sockGID;
+ mode_t sockMode;
};
} // namespace STG