userver: userver/server/handlers/auth/digest/standalone_checker.hpp Source File
⚠️ This is the documentation for an old userver version. Click here to switch to the latest version.
All Classes Namespaces Files Functions Variables Typedefs Enumerations Enumerator Friends Macros Modules Pages Concepts
standalone_checker.hpp
Go to the documentation of this file.
1#pragma once
2
3/// @file userver/server/handlers/auth/digest/standalone_checker.hpp
4/// @brief @copybrief server::handlers::auth::digest::AuthStandaloneCheckerBase
5
6#include <chrono>
7#include <cstdint>
8#include <functional>
9#include <random>
10#include <string_view>
11
12#include <userver/cache/expirable_lru_cache.hpp>
13#include <userver/concurrent/mpsc_queue.hpp>
14#include <userver/concurrent/variable.hpp>
15#include <userver/crypto/hash.hpp>
16#include <userver/rcu/rcu_map.hpp>
17#include <userver/server/handlers/auth/digest/auth_checker_base.hpp>
18#include <userver/server/handlers/auth/digest/auth_checker_settings.hpp>
19#include <userver/server/handlers/auth/digest/directives_parser.hpp>
20#include <userver/server/http/http_request.hpp>
21#include <userver/server/http/http_response.hpp>
22#include <userver/server/http/http_status.hpp>
23#include <userver/server/request/request_context.hpp>
24
25USERVER_NAMESPACE_BEGIN
26
27namespace server::handlers::auth::digest {
28
29struct NonceInfo final {
30 NonceInfo();
31 NonceInfo(const std::string& nonce, TimePoint expiration_time,
32 std::int64_t nonce_count);
33 std::string nonce;
34 TimePoint expiration_time;
35 std::int64_t nonce_count;
36};
37
38/// @ingroup userver_base_classes
39///
40/// @brief Class for digest authentication checker. Implements a stand-alone
41/// digest-authentication logic.
42class AuthStandaloneCheckerBase : public AuthCheckerBase {
43 public:
44 AuthStandaloneCheckerBase(const AuthCheckerSettings& digest_settings,
45 std::string&& realm,
46 const SecdistConfig& secdist_config,
47 std::size_t ways, std::size_t way_size);
48
49 [[nodiscard]] bool SupportsUserAuth() const noexcept override { return true; }
50
51 std::optional<UserData> FetchUserData(
52 const std::string& username) const override;
53 void SetUserData(const std::string& username, const std::string& nonce,
54 std::int64_t nonce_count,
55 TimePoint nonce_creation_time) const override;
56
57 void PushUnnamedNonce(std::string nonce) const override;
58 std::optional<TimePoint> GetUnnamedNonceCreationTime(
59 const std::string& nonce) const override;
60
61 virtual std::optional<UserData::HA1> GetHA1(
62 std::string_view username) const = 0;
63
64 private:
65 using NonceCache = cache::ExpirableLruCache<std::string, TimePoint>;
66 // potentially we store ALL user's data
67 // great chance to occupy large block of memory
68 mutable rcu::RcuMap<std::string, concurrent::Variable<NonceInfo>> user_data_;
69 // cache for "unnamed" nonces,
70 // i.e initial nonces not tied to any user
71 mutable NonceCache unnamed_nonces_;
72};
73
74} // namespace server::handlers::auth::digest
75
76USERVER_NAMESPACE_END