current/html/XrdSecEntity_8hh_source.html

#ifndef __SEC_ENTITY_H__

#define __SEC_ENTITY_H__

/******************************************************************************/

/*                                                                            */

/*                       X r d S e c E n t i t y . h h                        */

/*                                                                            */

/* (c) 2019 by the Board of Trustees of the Leland Stanford, Jr., University  */

/*   Produced by Andrew Hanushevsky for Stanford University under contract    */

/*              DE-AC02-76-SFO0515 with the Department of Energy              */

/*                                                                            */

/* This file is part of the XRootD software suite.                            */

/*                                                                            */

/* XRootD is free software: you can redistribute it and/or modify it under    */

/* the terms of the GNU Lesser General Public License as published by the     */

/* Free Software Foundation, either version 3 of the License, or (at your     */

/* option) any later version.                                                 */

/*                                                                            */

/* XRootD is distributed in the hope that it will be useful, but WITHOUT      */

/* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or      */

/* FITNESS FOR A PARTICULAR PURPOSE.  See the GNU Lesser General Public       */

/* License for more details.                                                  */

/*                                                                            */

/* You should have received a copy of the GNU Lesser General Public License   */

/* along with XRootD in a file called COPYING.LESSER (LGPL license) and file  */

/* COPYING (GPL license).  If not, see <http://www.gnu.org/licenses/>.        */

/*                                                                            */

/* The copyright holder's institutional names and contributor's names may not */

/* be used to endorse or promote products derived from this software without  */

/* specific prior written permission of the institution or contributor.       */

/******************************************************************************/


//------------------------------------------------------------------------------

//------------------------------------------------------------------------------


#include <sys/types.h>


#define XrdSecPROTOIDSIZE 8


class XrdNetAddrInfo;

class XrdSecEntityAttr;

class XrdSecMonitor;

class XrdSysError;


/******************************************************************************/

/*                          X r d S e c E n t i t y                           */

/******************************************************************************/


// The XrdSecEntity describes the client associated with a connection. One

// such object is allocated for each clent connection and it persists until

// the connection is closed. Note that when an entity has more than one

// role or vorg, the fields <vorg, role, grps> form a columnar tuple. This

// tuple must be repeated whenever any one of the values differs.

//


class XrdSecEntity

{

public:

         char    prot[XrdSecPROTOIDSIZE];

         char    prox[XrdSecPROTOIDSIZE];

         char   *name;

         char   *host;

         char   *vorg;

         char   *role;

         char   *grps;

         char   *caps;

         char   *endorsements;

         char   *moninfo;

         char   *creds;

         int     credslen;

unsigned int     ueid;

XrdNetAddrInfo  *addrInfo;

const    char   *tident;

const    char   *pident;

         void   *sessvar;

         uid_t   uid;

         gid_t   gid;


XrdSecMonitor   *secMon;

         void   *future[2];


XrdSecEntityAttr *eaAPI;


//------------------------------------------------------------------------------

//------------------------------------------------------------------------------


         void    Display(XrdSysError &mDest);


//------------------------------------------------------------------------------

//------------------------------------------------------------------------------


         void    Reset(const char *spV=0);


//------------------------------------------------------------------------------

//------------------------------------------------------------------------------


         XrdSecEntity(const char *spName=0);


        ~XrdSecEntity();


private:

void     Init(const char *spV);

};


#define XrdSecClientName XrdSecEntity

#define XrdSecServerName XrdSecEntity


#endif

XrdSecPROTOIDSIZE
#define XrdSecPROTOIDSIZE
Definition XrdSecEntity.hh:47

XrdNetAddrInfo
Definition XrdNetAddrInfo.hh:54

XrdSecEntityAttr
Definition XrdSecEntityAttr.hh:55

XrdSecEntity
Definition XrdSecEntity.hh:65

XrdSecEntity::vorg
char * vorg
Entity's virtual organization(s)
Definition XrdSecEntity.hh:71

XrdSecEntity::pident
const char * pident
Trace identifier (originator)
Definition XrdSecEntity.hh:82

XrdSecEntity::credslen
int credslen
Length of the 'creds' data.
Definition XrdSecEntity.hh:78

XrdSecEntity::prox
char prox[XrdSecPROTOIDSIZE]
Auth extractor used (e.g. xrdvoms)
Definition XrdSecEntity.hh:68

XrdSecEntity::addrInfo
XrdNetAddrInfo * addrInfo
Entity's connection details.
Definition XrdSecEntity.hh:80

XrdSecEntity::eaAPI
XrdSecEntityAttr * eaAPI
non-const API to attributes
Definition XrdSecEntity.hh:92

XrdSecEntity::tident
const char * tident
Trace identifier always preset.
Definition XrdSecEntity.hh:81

XrdSecEntity::prot
char prot[XrdSecPROTOIDSIZE]
Auth protocol used (e.g. krb5)
Definition XrdSecEntity.hh:67

XrdSecEntity::caps
char * caps
Entity's capabilities.
Definition XrdSecEntity.hh:74

XrdSecEntity::creds
char * creds
Raw entity credentials or cert.
Definition XrdSecEntity.hh:77

XrdSecEntity::secMon
XrdSecMonitor * secMon
If !0 security monitoring enabled.
Definition XrdSecEntity.hh:89

XrdSecEntity::gid
gid_t gid
Unix gid or 0 if none.
Definition XrdSecEntity.hh:87

XrdSecEntity::sessvar
void * sessvar
Definition XrdSecEntity.hh:83

XrdSecEntity::grps
char * grps
Entity's group name(s)
Definition XrdSecEntity.hh:73

XrdSecEntity::Reset
void Reset(const char *spV=0)

XrdSecEntity::XrdSecEntity
XrdSecEntity(const char *spName=0)

XrdSecEntity::uid
uid_t uid
Unix uid or 0 if none.
Definition XrdSecEntity.hh:86

XrdSecEntity::future
void * future[2]
Reserved for future expansion.
Definition XrdSecEntity.hh:90

XrdSecEntity::Init
void Init(const char *spV)

XrdSecEntity::~XrdSecEntity
~XrdSecEntity()

XrdSecEntity::name
char * name
Entity's name.
Definition XrdSecEntity.hh:69

XrdSecEntity::ueid
unsigned int ueid
Unique ID of entity instance.
Definition XrdSecEntity.hh:79

XrdSecEntity::role
char * role
Entity's role(s)
Definition XrdSecEntity.hh:72

XrdSecEntity::endorsements
char * endorsements
Protocol specific endorsements.
Definition XrdSecEntity.hh:75

XrdSecEntity::Display
void Display(XrdSysError &mDest)

XrdSecEntity::moninfo
char * moninfo
Information for monitoring.
Definition XrdSecEntity.hh:76

XrdSecEntity::host
char * host
Entity's host name dnr dependent.
Definition XrdSecEntity.hh:70

XrdSecMonitor
Definition XrdSecMonitor.hh:34

XrdSysError
Definition XrdSysError.hh:90