#include <XrdSecServer.hh>
Public Member Functions | |
XrdSecServer (XrdSysLogger *lp) | |
~XrdSecServer () | |
int | Configure (const char *cfn) |
const char * | getParms (int &size, XrdNetAddrInfo *endPoint=0) |
XrdSecProtocol * | getProtocol (const char *host, XrdNetAddrInfo &endPoint, const XrdSecCredentials *cred, XrdOucErrInfo &einfo) |
bool | PostProcess (XrdSecEntity &entity, XrdOucErrInfo &einfo) |
const char * | protTLS () |
Definition at line 45 of file XrdSecServer.hh.
XrdSecServer::XrdSecServer | ( | XrdSysLogger * | lp | ) |
Definition at line 288 of file XrdSecServer.cc.
References TRACE_ALL.
|
inline |
Definition at line 67 of file XrdSecServer.hh.
int XrdSecServer::Configure | ( | const char * | cfn | ) |
Definition at line 441 of file XrdSecServer.cc.
References XrdSecProtector::Config(), XrdOucEnv::Export(), XrdSecProtectParms::force, XrdSecProtector::LName(), XrdSecProtectParms::relax, XrdSecProtectParms::secNone, and XrdSecLoadProtection().
Referenced by XrdSecgetService().
|
virtual |
Obtain security parameters to be sent to the client upon initial contact.
size | Where the length of the return parameters are to be placed. |
endPoint | The client's address information. It may also be a null pointer if the client's host is immaterial. |
Implements XrdSecService.
Definition at line 317 of file XrdSecServer.cc.
References XrdSecBuffer::buffer, DEBUG, Debug, EPNAME, XrdNetAddrInfo::fmtAuto, XrdNetAddrInfo::Format(), XrdSecProtBind::Match(), XrdNetAddrInfo::Name(), XrdSecProtBind::next, XrdNetAddrInfo::noPort, QTRACE, XrdSecProtBind::SecToken, and XrdSecBuffer::size.
|
virtual |
Obtain a protocol object suitable for authentication based on cred and possibly based on the hostname or host address, as needed.
host | The client's host name or the IP address as text. An IP may be supplied if the host address is not resolvable or resolution has been suppressed (i.e. nodnr). Use endPoint to get the hostname if it's actually needed. |
endPoint | the XrdNetAddrInfo object describing the client end-point. |
cred | The initial credentials supplied by the client, the pointer may be null if the client did not supply credentials. |
einfo | The structure to record any error messages. These are normally sent to the client. |
Implements XrdSecService.
Definition at line 356 of file XrdSecServer.cc.
References XrdSecBuffer::buffer, XrdSecProtBind::Find(), XrdOucErrInfo::setErrInfo(), XrdSecBuffer::size, and XrdSecProtBind::ValidProts.
|
virtual |
Post process a fully authenticated XrdSecEntity object.
entity | The fully authenticated entity object. |
einfo | The structure to record any error messages. These are normally sent to the client. If einfo is a null pointer, the messages should be sent to standard error via an XrdSysError object using the supplied XrdSysLogger when the the plugin was initialized. |
Reimplemented from XrdSecService.
Definition at line 407 of file XrdSecServer.cc.
References EAUTH, XrdOucErrInfo::getErrText(), and XrdOucErrInfo::setErrInfo().
|
inlinevirtual |
Get a list of authentication protocols that require TLS.
Implements XrdSecService.
Definition at line 64 of file XrdSecServer.hh.