xemacs-beta: lisp/w3/urlauth.el annotate

annotate lisp/w3/urlauth.el @ 80:1ce6082ce73f r20-0b90

Import from CVS: tag r20-0b90

author	cvs
date	Mon, 13 Aug 2007 09:06:37 +0200
parents	9ee227acff29
children	0293115a14e9

rev	line source
14 9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	1 ;;; urlauth.el --- Uniform Resource Locator authorization modules
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	2 ;; Author: wmperry
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	3 ;; Created: 1996/10/09 19:00:59
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	4 ;; Version: 1.2
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	5 ;; Keywords: comm, data, processes, hypermedia
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	6
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	7 ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	8 ;;; Copyright (c) 1993-1996 by William M. Perry (wmperry@cs.indiana.edu)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	9 ;;; Copyright (c) 1996 Free Software Foundation, Inc.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	10 ;;;
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	11 ;;; This file is not part of GNU Emacs, but the same permissions apply.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	12 ;;;
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	13 ;;; GNU Emacs is free software; you can redistribute it and/or modify
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	14 ;;; it under the terms of the GNU General Public License as published by
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	15 ;;; the Free Software Foundation; either version 2, or (at your option)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	16 ;;; any later version.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	17 ;;;
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	18 ;;; GNU Emacs is distributed in the hope that it will be useful,
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	19 ;;; but WITHOUT ANY WARRANTY; without even the implied warranty of
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	20 ;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	21 ;;; GNU General Public License for more details.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	22 ;;;
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	23 ;;; You should have received a copy of the GNU General Public License
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	24 ;;; along with GNU Emacs; see the file COPYING. If not, write to the
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	25 ;;; Free Software Foundation, Inc., 59 Temple Place - Suite 330,
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	26 ;;; Boston, MA 02111-1307, USA.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	27 ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	28
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	29 (require 'url-vars)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	30 (require 'url-parse)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	31 ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	32 ;;; Basic authorization code
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	33 ;;; ------------------------
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	34 ;;; This implements the BASIC authorization type. See the online
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	35 ;;; documentation at
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	36 ;;; http://www.w3.org/hypertext/WWW/AccessAuthorization/Basic.html
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	37 ;;; for the complete documentation on this type.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	38 ;;;
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	39 ;;; This is very insecure, but it works as a proof-of-concept
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	40 ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	41 (defvar url-basic-auth-storage nil
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	42 "Where usernames and passwords are stored. Its value is an assoc list of
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	43 assoc lists. The first assoc list is keyed by the server name. The cdr of
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	44 this is an assoc list based on the 'directory' specified by the url we are
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	45 looking up.")
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	46
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	47 (defun url-basic-auth (url &optional prompt overwrite realm args)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	48 "Get the username/password for the specified URL.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	49 If optional argument PROMPT is non-nil, ask for the username/password
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	50 to use for the url and its descendants. If optional third argument
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	51 OVERWRITE is non-nil, overwrite the old username/password pair if it
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	52 is found in the assoc list. If REALM is specified, use that as the realm
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	53 instead of the pathname inheritance method."
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	54 (let* ((href (if (stringp url)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	55 (url-generic-parse-url url)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	56 url))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	57 (server (or (url-host href) url-current-server))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	58 (port (or (url-port href) "80"))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	59 (path (url-filename href))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	60 user pass byserv retval data)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	61 (setq server (concat server ":" port)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	62 path (cond
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	63 (realm realm)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	64 ((string-match "/$" path) path)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	65 (t (url-basepath path)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	66 byserv (cdr-safe (assoc server url-basic-auth-storage)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	67 (cond
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	68 ((and prompt (not byserv))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	69 (setq user (read-string "Username: " (user-real-login-name))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	70 pass (funcall url-passwd-entry-func "Password: ")
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	71 url-basic-auth-storage
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	72 (cons (list server
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	73 (cons path
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	74 (setq retval
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	75 (base64-encode
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	76 (format "%s:%s" user pass)))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	77 url-basic-auth-storage)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	78 (byserv
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	79 (setq retval (cdr-safe (assoc path byserv)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	80 (if (and (not retval)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	81 (string-match "/" path))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	82 (while (and byserv (not retval))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	83 (setq data (car (car byserv)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	84 (if (or (not (string-match "/" data)) ; Its a realm - take it!
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	85 (and
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	86 (>= (length path) (length data))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	87 (string= data (substring path 0 (length data)))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	88 (setq retval (cdr (car byserv))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	89 (setq byserv (cdr byserv))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	90 (if (or (and (not retval) prompt) overwrite)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	91 (progn
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	92 (setq user (read-string "Username: " (user-real-login-name))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	93 pass (funcall url-passwd-entry-func "Password: ")
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	94 retval (base64-encode (format "%s:%s" user pass))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	95 byserv (assoc server url-basic-auth-storage))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	96 (setcdr byserv
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	97 (cons (cons path retval) (cdr byserv))))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	98 (t (setq retval nil)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	99 (if retval (setq retval (concat "Basic " retval)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	100 retval))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	101
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	102 ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	103 ;;; Digest authorization code
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	104 ;;; ------------------------
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	105 ;;; This implements the DIGEST authorization type. See the internet draft
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	106 ;;; ftp://ds.internic.net/internet-drafts/draft-ietf-http-digest-aa-01.txt
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	107 ;;; for the complete documentation on this type.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	108 ;;;
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	109 ;;; This is very secure
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	110 ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	111 (defvar url-digest-auth-storage nil
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	112 "Where usernames and passwords are stored. Its value is an assoc list of
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	113 assoc lists. The first assoc list is keyed by the server name. The cdr of
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	114 this is an assoc list based on the 'directory' specified by the url we are
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	115 looking up.")
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	116
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	117 (defun url-digest-auth-create-key (username password realm method uri)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	118 "Create a key for digest authentication method"
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	119 (let* ((info (if (stringp uri)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	120 (url-generic-parse-url uri)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	121 uri))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	122 (a1 (md5 (concat username ":" realm ":" password)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	123 (a2 (md5 (concat method ":" (url-filename info)))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	124 (list a1 a2)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	125
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	126 (defun url-digest-auth (url &optional prompt overwrite realm args)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	127 "Get the username/password for the specified URL.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	128 If optional argument PROMPT is non-nil, ask for the username/password
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	129 to use for the url and its descendants. If optional third argument
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	130 OVERWRITE is non-nil, overwrite the old username/password pair if it
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	131 is found in the assoc list. If REALM is specified, use that as the realm
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	132 instead of hostname:portnum."
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	133 (if args
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	134 (let* ((href (if (stringp url)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	135 (url-generic-parse-url url)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	136 url))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	137 (server (or (url-host href) url-current-server))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	138 (port (or (url-port href) "80"))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	139 (path (url-filename href))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	140 user pass byserv retval data)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	141 (setq path (cond
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	142 (realm realm)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	143 ((string-match "/$" path) path)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	144 (t (url-basepath path)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	145 server (concat server ":" port)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	146 byserv (cdr-safe (assoc server url-digest-auth-storage)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	147 (cond
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	148 ((and prompt (not byserv))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	149 (setq user (read-string "Username: " (user-real-login-name))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	150 pass (funcall url-passwd-entry-func "Password: ")
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	151 url-digest-auth-storage
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	152 (cons (list server
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	153 (cons path
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	154 (setq retval
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	155 (cons user
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	156 (url-digest-auth-create-key
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	157 user pass realm
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	158 (or url-request-method "GET")
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	159 url)))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	160 url-digest-auth-storage)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	161 (byserv
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	162 (setq retval (cdr-safe (assoc path byserv)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	163 (if (and (not retval) ; no exact match, check directories
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	164 (string-match "/" path)) ; not looking for a realm
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	165 (while (and byserv (not retval))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	166 (setq data (car (car byserv)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	167 (if (or (not (string-match "/" data))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	168 (and
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	169 (>= (length path) (length data))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	170 (string= data (substring path 0 (length data)))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	171 (setq retval (cdr (car byserv))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	172 (setq byserv (cdr byserv))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	173 (if (or (and (not retval) prompt) overwrite)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	174 (progn
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	175 (setq user (read-string "Username: " (user-real-login-name))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	176 pass (funcall url-passwd-entry-func "Password: ")
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	177 retval (setq retval
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	178 (cons user
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	179 (url-digest-auth-create-key
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	180 user pass realm
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	181 (or url-request-method "GET")
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	182 url)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	183 byserv (assoc server url-digest-auth-storage))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	184 (setcdr byserv
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	185 (cons (cons path retval) (cdr byserv))))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	186 (t (setq retval nil)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	187 (if retval
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	188 (let ((nonce (or (cdr-safe (assoc "nonce" args)) "nonegiven"))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	189 (opaque (or (cdr-safe (assoc "opaque" args)) "nonegiven")))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	190 (format
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	191 (concat "Digest username=\"%s\", realm=\"%s\","
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	192 "nonce=\"%s\", uri=\"%s\","
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	193 "response=\"%s\", opaque=\"%s\"")
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	194 (nth 0 retval) realm nonce (url-filename href)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	195 (md5 (concat (nth 1 retval) ":" nonce ":"
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	196 (nth 2 retval))) opaque))))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	197
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	198 (defvar url-registered-auth-schemes nil
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	199 "A list of the registered authorization schemes and various and sundry
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	200 information associated with them.")
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	201
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	202 (defun url-get-authentication (url realm type prompt &optional args)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	203 "Return an authorization string suitable for use in the WWW-Authenticate
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	204 header in an HTTP/1.0 request.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	205
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	206 URL is the url you are requesting authorization to. This can be either a
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	207 string representing the URL, or the parsed representation returned by
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	208 `url-generic-parse-url'
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	209 REALM is the realm at a specific site we are looking for. This should be a
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	210 string specifying the exact realm, or nil or the symbol 'any' to
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	211 specify that the filename portion of the URL should be used as the
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	212 realm
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	213 TYPE is the type of authentication to be returned. This is either a string
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	214 representing the type (basic, digest, etc), or nil or the symbol 'any'
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	215 to specify that any authentication is acceptable. If requesting 'any'
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	216 the strongest matching authentication will be returned. If this is
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	217 wrong, its no big deal, the error from the server will specify exactly
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	218 what type of auth to use
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	219 PROMPT is boolean - specifies whether to ask the user for a username/password
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	220 if one cannot be found in the cache"
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	221 (if (not realm)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	222 (setq realm (cdr-safe (assoc "realm" args))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	223 (if (stringp url)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	224 (setq url (url-generic-parse-url url)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	225 (if (or (null type) (eq type 'any))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	226 ;; Whooo doogies!
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	227 ;; Go through and get _all_ the authorization strings that could apply
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	228 ;; to this URL, store them along with the 'rating' we have in the list
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	229 ;; of schemes, then sort them so that the 'best' is at the front of the
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	230 ;; list, then get the car, then get the cdr.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	231 ;; Zooom zooom zoooooom
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	232 (cdr-safe
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	233 (car-safe
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	234 (sort
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	235 (mapcar
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	236 (function
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	237 (lambda (scheme)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	238 (if (fboundp (car (cdr scheme)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	239 (cons (cdr (cdr scheme))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	240 (funcall (car (cdr scheme)) url nil nil realm))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	241 (cons 0 nil))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	242 url-registered-auth-schemes)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	243 (function
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	244 (lambda (x y)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	245 (cond
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	246 ((null (cdr x)) nil)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	247 ((and (cdr x) (null (cdr y))) t)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	248 ((and (cdr x) (cdr y))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	249 (>= (car x) (car y)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	250 (t nil)))))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	251 (if (symbolp type) (setq type (symbol-name type)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	252 (let* ((scheme (car-safe
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	253 (cdr-safe (assoc (downcase type)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	254 url-registered-auth-schemes)))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	255 (if (and scheme (fboundp scheme))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	256 (funcall scheme url prompt
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	257 (and prompt
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	258 (funcall scheme url nil nil realm args))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	259 realm args)))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	260
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	261 (defun url-register-auth-scheme (type &optional function rating)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	262 "Register an HTTP authentication method.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	263
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	264 TYPE is a string or symbol specifying the name of the method. This
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	265 should be the same thing you expect to get returned in an Authenticate
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	266 header in HTTP/1.0 - it will be downcased.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	267 FUNCTION is the function to call to get the authorization information. This
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	268 defaults to `url-?-auth', where ? is TYPE
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	269 RATING a rating between 1 and 10 of the strength of the authentication.
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	270 This is used when asking for the best authentication for a specific
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	271 URL. The item with the highest rating is returned."
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	272 (let* ((type (cond
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	273 ((stringp type) (downcase type))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	274 ((symbolp type) (downcase (symbol-name type)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	275 (t (error "Bad call to `url-register-auth-scheme'"))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	276 (function (or function (intern (concat "url-" type "-auth"))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	277 (rating (cond
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	278 ((null rating) 2)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	279 ((stringp rating) (string-to-int rating))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	280 (t rating)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	281 (node (assoc type url-registered-auth-schemes)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	282 (if (not (fboundp function))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	283 (url-warn 'security
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	284 (format (eval-when-compile
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	285 "Tried to register `%s' as an auth scheme"
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	286 ", but it is not a function!") function)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	287
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	288 (if node
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	289 (progn
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	290 (setcdr node (cons function rating))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	291 (url-warn 'security
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	292 (format
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	293 "Replacing authorization method `%s' - this could be bad."
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	294 type)))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	295 (setq url-registered-auth-schemes
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	296 (cons (cons type (cons function rating))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	297 url-registered-auth-schemes)))))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	298
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	299 (defun url-auth-registered (scheme)
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	300 ;; Return non-nil iff SCHEME is registered as an auth type
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	301 (assoc scheme url-registered-auth-schemes))
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	302
9ee227acff29 Import from CVS: tag r19-15b90 cvs parents: diff changeset	303 (provide 'urlauth)

Mercurial > hg > xemacs-beta

annotate lisp/w3/urlauth.el @ 80:1ce6082ce73f r20-0b90