summaryrefslogtreecommitdiffstats
path: root/src/auth/AuthMethodList.cc
diff options
context:
space:
mode:
Diffstat (limited to 'src/auth/AuthMethodList.cc')
-rw-r--r--src/auth/AuthMethodList.cc71
1 files changed, 71 insertions, 0 deletions
diff --git a/src/auth/AuthMethodList.cc b/src/auth/AuthMethodList.cc
new file mode 100644
index 000000000..6efcea4e9
--- /dev/null
+++ b/src/auth/AuthMethodList.cc
@@ -0,0 +1,71 @@
+// -*- mode:C++; tab-width:8; c-basic-offset:2; indent-tabs-mode:t -*-
+// vim: ts=8 sw=2 smarttab
+/*
+ * Ceph - scalable distributed file system
+ *
+ * Copyright (C) 2004-2009 Sage Weil <sage@newdream.net>
+ *
+ * This is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License version 2.1, as published by the Free Software
+ * Foundation. See file COPYING.
+ *
+ */
+
+#include <algorithm>
+#include "common/debug.h"
+#include "include/str_list.h"
+
+#include "AuthMethodList.h"
+
+const static int dout_subsys = ceph_subsys_auth;
+
+
+AuthMethodList::AuthMethodList(CephContext *cct, std::string str)
+{
+ std::list<std::string> sup_list;
+ get_str_list(str, sup_list);
+ if (sup_list.empty()) {
+ lderr(cct) << "WARNING: empty auth protocol list" << dendl;
+ }
+ for (auto iter = sup_list.begin(); iter != sup_list.end(); ++iter) {
+ ldout(cct, 5) << "adding auth protocol: " << *iter << dendl;
+ if (iter->compare("cephx") == 0) {
+ auth_supported.push_back(CEPH_AUTH_CEPHX);
+ } else if (iter->compare("none") == 0) {
+ auth_supported.push_back(CEPH_AUTH_NONE);
+ } else if (iter->compare("gss") == 0) {
+ auth_supported.push_back(CEPH_AUTH_GSS);
+ } else {
+ auth_supported.push_back(CEPH_AUTH_UNKNOWN);
+ lderr(cct) << "WARNING: unknown auth protocol defined: " << *iter << dendl;
+ }
+ }
+ if (auth_supported.empty()) {
+ lderr(cct) << "WARNING: no auth protocol defined, use 'cephx' by default" << dendl;
+ auth_supported.push_back(CEPH_AUTH_CEPHX);
+ }
+}
+
+bool AuthMethodList::is_supported_auth(int auth_type)
+{
+ return std::find(auth_supported.begin(), auth_supported.end(), auth_type) != auth_supported.end();
+}
+
+int AuthMethodList::pick(const std::set<__u32>& supported)
+{
+ for (auto p = supported.rbegin(); p != supported.rend(); ++p)
+ if (is_supported_auth(*p))
+ return *p;
+ return CEPH_AUTH_UNKNOWN;
+}
+
+void AuthMethodList::remove_supported_auth(int auth_type)
+{
+ for (auto p = auth_supported.begin(); p != auth_supported.end(); ) {
+ if (*p == (__u32)auth_type)
+ auth_supported.erase(p++);
+ else
+ ++p;
+ }
+}