Inicio Explorar Axuda
Iniciar sesión
cturan
/
3proxy
1
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: e37a7f48d7
Ramas Etiquetas
3proxy
/
src
/
plugins
/
WindowsAuthentication
/
WindowsAuthentication.c

WindowsAuthentication.c 2.1 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394 
  1. /*
    2. 

  2.    3APA3A simpliest proxy server
    3. 

  3.    (c) 2007-2008 by ZARAZA <3APA3A@security.nnov.ru>
    4. 

  4. 

  5.    please read License Agreement
    6. 

  6. 

  7. */
    8. 

  8. 

  9. #include "../../structures.h"
    10. 

  10. #include <string.h>
    11. 

  11. #include <ctype.h>
    12. 

  12. #include <locale.h>
    13. 

  13. 

  14. #ifdef  __cplusplus
    15. 

  15. extern "C" {
    16. 

  16. #endif
    17. 

  17. 

  18.  __declspec(dllexport) int WindowsAuthentication(struct pluginlink * pluginlink, 
    19. 

  19. 					 int argc, char** argv);
    20. 

  20. 

  21. 

  22. static struct auth alwaysauth;
    23. 

  23. 

  24. static char sidbuf[4096];
    25. 

  25. static PSID psid = (PSID)sidbuf;
    26. 

  26. 

  27. #ifdef  __cplusplus
    28. 

  28. extern "C" {
    29. 

  29. #endif
    30. 

  30. 

  31.  static int windowsfunc(struct clientparam *param){
    32. 

  32. 	char *dom;
    33. 

  33. 	HANDLE h;
    34. 

  34. 	DWORD dw, sidlen, i;
    35. 

  35. 	char tokenbuf[4096];
    36. 

  36. 	PTOKEN_GROUPS ptg = (PTOKEN_GROUPS)tokenbuf;
    37. 

  37. 

  38. 

  39. 	if(!param->username || !param->password || param->pwtype != 0) return 4;
    40. 

  40. 	dom = strchr((char *)param->username, '\\');
    41. 

  41. 	if(dom)*dom++=0;
    42. 

  42. 	if(!LogonUser(	dom?dom:(char *)param->username,
    43. 

  43. 					dom?(char *)param->username:NULL,
    44. 

  44. 					param->password,
    45. 

  45. 					LOGON32_LOGON_NETWORK,
    46. 

  46. 					LOGON32_PROVIDER_DEFAULT,
    47. 

  47. 					&h))return 5;
    48. 

  48. 

  49. 	if(dom)*(dom-1)='\\';
    50. 

  50. 	if(!GetTokenInformation(h, TokenGroups, ptg, sizeof(tokenbuf), &dw)) return 6;
    51. 

  51. 	CloseHandle(h);
    52. 

  52. 	sidlen = GetLengthSid(psid);
    53. 

  53. 	for(i=0; i < ptg->GroupCount; i++){
    54. 

  54. 		if(GetLengthSid(ptg->Groups[i].Sid)==sidlen){
    55. 

  55. 			if(!memcmp((void *)ptg->Groups[i].Sid, (void *)psid, sidlen)) {
    56. 

  56. 				setlocale(LC_CTYPE, ".ACP");
    57. 

  57. 				_strlwr(param->username);
    58. 

  58. 				return 0;
    59. 

  59. 			}
    60. 

  60. 		}
    61. 

  61. 	}
    62. 

  62. 	return 7;
    63. 

  63.  }
    64. 

  64. 

  65. #ifdef  __cplusplus
    66. 

  66. }
    67. 

  67. #endif
    68. 

  68. 

  69. 

  70. int WindowsAuthentication(struct pluginlink * pluginlink, int argc, char** argv){
    71. 

  71. 	char tmpbuf[4096];
    72. 

  72. 	DWORD dlen, sidlen;
    73. 

  73. 	SID_NAME_USE snu;
    74. 

  74. 	static int loaded = 0;
    75. 

  75. 

  76. 

  77. 	if(argc != 2) return 11;
    78. 

  78. 	dlen = sizeof(tmpbuf)/sizeof(TCHAR);
    79. 

  79. 	sidlen = sizeof(sidbuf);
    80. 

  80. 	if(!LookupAccountName(NULL, argv[1], psid, &sidlen,
    81. 

  81. 		(LPTSTR) tmpbuf, &dlen, &snu)) return 100000 + (int)GetLastError();
    82. 

  82. 	if(snu != SidTypeGroup && snu != SidTypeAlias && snu != SidTypeWellKnownGroup) return 12;
    83. 

  83. 	if(!loaded){
    84. 

  84. 		alwaysauth.authenticate = windowsfunc;
    85. 

  85. 		alwaysauth.authorize = pluginlink->checkACL;
    86. 

  86. 		alwaysauth.desc = "windows";
    87. 

  87. 		alwaysauth.next = pluginlink->authfuncs->next;
    88. 

  88. 		pluginlink->authfuncs->next = &alwaysauth;
    89. 

  89. 		loaded = 1;
    90. 

  90. 	}
    91. 

  91. 	return 0;
    92. 

  92. }
    93. 

  93. 

  94.