mirror of
https://github.com/ceph/ceph
synced 2025-02-24 19:47:44 +00:00
72 lines
2.2 KiB
C++
72 lines
2.2 KiB
C++
// -*- mode:C++; tab-width:8; c-basic-offset:2; indent-tabs-mode:t -*-
|
|
// vim: ts=8 sw=2 smarttab
|
|
/*
|
|
* Ceph - scalable distributed file system
|
|
*
|
|
* Copyright (C) 2004-2009 Sage Weil <sage@newdream.net>
|
|
*
|
|
* This is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
* License version 2.1, as published by the Free Software
|
|
* Foundation. See file COPYING.
|
|
*
|
|
*/
|
|
|
|
#include <algorithm>
|
|
#include "common/debug.h"
|
|
#include "include/str_list.h"
|
|
|
|
#include "AuthMethodList.h"
|
|
|
|
const static int dout_subsys = ceph_subsys_auth;
|
|
|
|
|
|
AuthMethodList::AuthMethodList(CephContext *cct, std::string str)
|
|
{
|
|
std::list<std::string> sup_list;
|
|
get_str_list(str, sup_list);
|
|
if (sup_list.empty()) {
|
|
lderr(cct) << "WARNING: empty auth protocol list" << dendl;
|
|
}
|
|
for (list<string>::iterator iter = sup_list.begin(); iter != sup_list.end(); ++iter) {
|
|
ldout(cct, 5) << "adding auth protocol: " << *iter << dendl;
|
|
if (iter->compare("cephx") == 0) {
|
|
auth_supported.push_back(CEPH_AUTH_CEPHX);
|
|
} else if (iter->compare("none") == 0) {
|
|
auth_supported.push_back(CEPH_AUTH_NONE);
|
|
} else if (iter->compare("gss") == 0) {
|
|
auth_supported.push_back(CEPH_AUTH_GSS);
|
|
} else {
|
|
auth_supported.push_back(CEPH_AUTH_UNKNOWN);
|
|
lderr(cct) << "WARNING: unknown auth protocol defined: " << *iter << dendl;
|
|
}
|
|
}
|
|
if (auth_supported.empty()) {
|
|
lderr(cct) << "WARNING: no auth protocol defined, use 'cephx' by default" << dendl;
|
|
auth_supported.push_back(CEPH_AUTH_CEPHX);
|
|
}
|
|
}
|
|
|
|
bool AuthMethodList::is_supported_auth(int auth_type)
|
|
{
|
|
return std::find(auth_supported.begin(), auth_supported.end(), auth_type) != auth_supported.end();
|
|
}
|
|
|
|
int AuthMethodList::pick(const std::set<__u32>& supported)
|
|
{
|
|
for (set<__u32>::const_reverse_iterator p = supported.rbegin(); p != supported.rend(); ++p)
|
|
if (is_supported_auth(*p))
|
|
return *p;
|
|
return CEPH_AUTH_UNKNOWN;
|
|
}
|
|
|
|
void AuthMethodList::remove_supported_auth(int auth_type)
|
|
{
|
|
for (list<__u32>::iterator p = auth_supported.begin(); p != auth_supported.end(); ) {
|
|
if (*p == (__u32)auth_type)
|
|
auth_supported.erase(p++);
|
|
else
|
|
++p;
|
|
}
|
|
}
|