db/security.h

// security.h

/**
*    Copyright (C) 2009 10gen Inc.
*
*    This program is free software: you can redistribute it and/or  modify
*    it under the terms of the GNU Affero General Public License, version 3,
*    as published by the Free Software Foundation.
*
*    This program is distributed in the hope that it will be useful,
*    but WITHOUT ANY WARRANTY; without even the implied warranty of
*    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
*    GNU Affero General Public License for more details.
*
*    You should have received a copy of the GNU Affero General Public License
*    along with this program.  If not, see <http://www.gnu.org/licenses/>.
*/

#pragma once

#include "nonce.h"
#include "concurrency.h"

namespace mongo {

    // --noauth cmd line option
    extern bool noauth;

    /* for a particular db */
    struct Auth {
        Auth() { level = 0; }
        int level;
    };

    class AuthenticationInfo : boost::noncopyable {
        mongo::mutex _lock;
        map<string, Auth> m; // dbname -> auth
		static int warned;
    public:
		bool isLocalHost;
        AuthenticationInfo() : _lock("AuthenticationInfo") { isLocalHost = false; }
        ~AuthenticationInfo() {
        }
        void logout(const string& dbname ) { 
            scoped_lock lk(_lock);
			m.erase(dbname); 
		}
        void authorize(const string& dbname ) { 
            scoped_lock lk(_lock);
            m[dbname].level = 2;
        }
        void authorizeReadOnly(const string& dbname) {
            scoped_lock lk(_lock);
            m[dbname].level = 1;            
        }
        bool isAuthorized(const string& dbname) { return _isAuthorized( dbname, 2 ); }
        bool isAuthorizedReads(const string& dbname) { return _isAuthorized( dbname, 1 ); }
        bool isAuthorizedForLock(const string& dbname, int lockType ) { return _isAuthorized( dbname , lockType > 0 ? 2 : 1 ); }
        
        void print();

    protected:
        bool _isAuthorized(const string& dbname, int level) { 
            if( m[dbname].level >= level ) return true;
			if( noauth ) return true;
			if( m["admin"].level >= level ) return true;
			if( m["local"].level >= level ) return true;
            return _isAuthorizedSpecialChecks( dbname );
        }

        bool _isAuthorizedSpecialChecks( const string& dbname );
    };

} // namespace mongo
suppress a couple compiler warnings 2009-01-18 19:13:12 -05:00			`// security.h`

			`/**`
			`* Copyright (C) 2009 10gen Inc.`
			`*`
a little work on securit 2009-01-09 18:15:30 -05:00			`* This program is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU Affero General Public License, version 3,`
			`* as published by the Free Software Foundation.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU Affero General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU Affero General Public License`
			`* along with this program. If not, see <http://www.gnu.org/licenses/>.`
			`*/`
Replace tab indentation with spaces 2009-01-14 17:17:24 -05:00
			`#pragma once`

Fix dependency problem 2009-01-23 11:28:29 -05:00			`#include "nonce.h"`
cleaning up security - moving to centralized location 2010-02-04 10:49:19 -05:00			`#include "concurrency.h"`
Put our code in 'mongo' namespace 2009-01-14 17:09:51 -05:00
			`namespace mongo {`

basic security 2009-01-18 20:31:33 -05:00			`// --noauth cmd line option`
			`extern bool noauth;`

authenticate command work some dbhelpers additions less verbose logging 2009-01-18 17:48:44 -05:00			`/* for a particular db */`
			`struct Auth {`
basic security 2009-01-18 20:31:33 -05:00			`Auth() { level = 0; }`
authenticate command work some dbhelpers additions less verbose logging 2009-01-18 17:48:44 -05:00			`int level;`
			`};`

Indent all lines within namespaces one level 2009-01-15 10:17:11 -05:00			`class AuthenticationInfo : boost::noncopyable {`
Revert "Revert "SERVER-695 don't destroy static global mutexes"" This reverts commit eb7cde3e751b02eae055a922af8985fe52c807fa. Conflicts: db/instance.h 2010-03-15 09:42:01 -07:00			`mongo::mutex _lock;`
minor/safer 2009-01-18 19:01:51 -05:00			`map<string, Auth> m; // dbname -> auth`
if no admin.system.users, allow access to everything from localhost 2009-01-21 17:26:16 -05:00			`static int warned;`
Indent all lines within namespaces one level 2009-01-15 10:17:11 -05:00			`public:`
if no admin.system.users, allow access to everything from localhost 2009-01-21 17:26:16 -05:00			`bool isLocalHost;`
MutexDebugger 2010-05-26 00:46:49 -04:00			`AuthenticationInfo() : _lock("AuthenticationInfo") { isLocalHost = false; }`
cleaning up security - moving to centralized location 2010-02-04 10:49:19 -05:00			`~AuthenticationInfo() {`
Indent all lines within namespaces one level 2009-01-15 10:17:11 -05:00			`}`
cleaning up security - moving to centralized location 2010-02-04 10:49:19 -05:00			`void logout(const string& dbname ) {`
Revert "Revert "SERVER-695 don't destroy static global mutexes"" This reverts commit eb7cde3e751b02eae055a922af8985fe52c807fa. Conflicts: db/instance.h 2010-03-15 09:42:01 -07:00			`scoped_lock lk(_lock);`
if no admin.system.users, allow access to everything from localhost 2009-01-21 17:26:16 -05:00			`m.erase(dbname);`
			`}`
cleaning up security - moving to centralized location 2010-02-04 10:49:19 -05:00			`void authorize(const string& dbname ) {`
Revert "Revert "SERVER-695 don't destroy static global mutexes"" This reverts commit eb7cde3e751b02eae055a922af8985fe52c807fa. Conflicts: db/instance.h 2010-03-15 09:42:01 -07:00			`scoped_lock lk(_lock);`
basic security 2009-01-18 20:31:33 -05:00			`m[dbname].level = 2;`
			`}`
cleaning up security - moving to centralized location 2010-02-04 10:49:19 -05:00			`void authorizeReadOnly(const string& dbname) {`
Revert "Revert "SERVER-695 don't destroy static global mutexes"" This reverts commit eb7cde3e751b02eae055a922af8985fe52c807fa. Conflicts: db/instance.h 2010-03-15 09:42:01 -07:00			`scoped_lock lk(_lock);`
SERVER-258 add readOnly auth mode 2010-01-26 17:04:09 -08:00			`m[dbname].level = 1;`
			`}`
cleaning up security - moving to centralized location 2010-02-04 10:49:19 -05:00			`bool isAuthorized(const string& dbname) { return _isAuthorized( dbname, 2 ); }`
			`bool isAuthorizedReads(const string& dbname) { return _isAuthorized( dbname, 1 ); }`
			`bool isAuthorizedForLock(const string& dbname, int lockType ) { return _isAuthorized( dbname , lockType > 0 ? 2 : 1 ); }`

			`void print();`

SERVER-258 add readOnly auth mode 2010-01-26 17:04:09 -08:00			`protected:`
cleaning up security - moving to centralized location 2010-02-04 10:49:19 -05:00			`bool _isAuthorized(const string& dbname, int level) {`
SERVER-258 add readOnly auth mode 2010-01-26 17:04:09 -08:00			`if( m[dbname].level >= level ) return true;`
if no admin.system.users, allow access to everything from localhost 2009-01-21 17:26:16 -05:00			`if( noauth ) return true;`
SERVER-258 add readOnly auth mode 2010-01-26 17:04:09 -08:00			`if( m["admin"].level >= level ) return true;`
			`if( m["local"].level >= level ) return true;`
cleaning up security - moving to centralized location 2010-02-04 10:49:19 -05:00			`return _isAuthorizedSpecialChecks( dbname );`
basic security 2009-01-18 20:31:33 -05:00			`}`
cleaning up security - moving to centralized location 2010-02-04 10:49:19 -05:00
			`bool _isAuthorizedSpecialChecks( const string& dbname );`
Indent all lines within namespaces one level 2009-01-15 10:17:11 -05:00			`};`
Replace tab indentation with spaces 2009-01-14 17:17:24 -05:00
			`} // namespace mongo`