blob: 62718162c7f315a9d7c623d870a3f755bddf0958 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
|
// Copyright (c) 2010 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "remoting/host/access_verifier.h"
#include "base/logging.h"
#include "base/string_util.h"
#include "remoting/host/host_config.h"
#include "remoting/proto/auth.pb.h"
namespace remoting {
AccessVerifier::AccessVerifier()
: initialized_(false) {
}
bool AccessVerifier::Init(HostConfig* config) {
std::string host_jid;
if (!config->GetString(kXmppLoginConfigPath, &host_jid) ||
host_jid.empty()) {
LOG(ERROR) << "XMPP credentials are not defined in the config.";
return false;
}
host_jid_prefix_ = host_jid + '/';
initialized_ = true;
return true;
}
bool AccessVerifier::VerifyPermissions(
const std::string& client_jid,
const std::string& encoded_access_token) {
CHECK(initialized_);
// Check that the client has the same bare jid as the host, i.e.
// client's full jid starts with host's bare jid.
if (!StartsWithASCII(client_jid, host_jid_prefix_, true)) {
return false;
}
// Decode the auth token.
protocol::ClientAuthToken client_token;
if (!DecodeClientAuthToken(encoded_access_token, &client_token)) {
return false;
}
// Kick off directory access permissions.
// TODO(ajwong): Actually implement this.
return true;
}
bool AccessVerifier::DecodeClientAuthToken(
const std::string& encoded_client_token,
protocol::ClientAuthToken* client_token) {
// TODO(ajwong): Implement this.
NOTIMPLEMENTED();
return true;
}
} // namespace remoting
|
