dynsec_client.c 6.3 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259
  1. /*
  2. Copyright (c) 2020 Roger Light <roger@atchoo.org>
  3. All rights reserved. This program and the accompanying materials
  4. are made available under the terms of the Eclipse Public License 2.0
  5. and Eclipse Distribution License v1.0 which accompany this distribution.
  6. The Eclipse Public License is available at
  7. https://www.eclipse.org/legal/epl-2.0/
  8. and the Eclipse Distribution License is available at
  9. http://www.eclipse.org/org/documents/edl-v10.php.
  10. SPDX-License-Identifier: EPL-2.0 OR BSD-3-Clause
  11. Contributors:
  12. Roger Light - initial implementation and documentation.
  13. */
  14. #include <cjson/cJSON.h>
  15. #include <stdio.h>
  16. #include <stdlib.h>
  17. #include <string.h>
  18. #include "mosquitto.h"
  19. #include "mosquitto_ctrl.h"
  20. #include "get_password.h"
  21. #include "password_mosq.h"
  22. int dynsec_client__create(int argc, char *argv[], cJSON *j_command)
  23. {
  24. char *username = NULL, *password = NULL, *clientid = NULL;
  25. char prompt[200], verify_prompt[200];
  26. char password_buf[200];
  27. int rc;
  28. int i;
  29. bool request_password = true;
  30. if(argc == 0){
  31. return MOSQ_ERR_INVAL;
  32. }
  33. username = argv[0];
  34. for(i=1; i<argc; i++){
  35. if(!strcmp(argv[i], "-c")){
  36. if(i+1 == argc){
  37. fprintf(stderr, "Error: -c argument given, but no clientid provided.\n");
  38. return MOSQ_ERR_INVAL;
  39. }
  40. clientid = argv[i+1];
  41. i++;
  42. }else if(!strcmp(argv[i], "-p")){
  43. if(i+1 == argc){
  44. fprintf(stderr, "Error: -p argument given, but no password provided.\n");
  45. return MOSQ_ERR_INVAL;
  46. }
  47. password = argv[i+1];
  48. i++;
  49. request_password = false;
  50. }
  51. }
  52. if(request_password){
  53. printf("Enter new password for %s. Press return for no password (user will be unable to login).\n", username);
  54. snprintf(prompt, sizeof(prompt), "New password for %s: ", username);
  55. snprintf(verify_prompt, sizeof(verify_prompt), "Reenter password for %s: ", username);
  56. rc = get_password(prompt, verify_prompt, true, password_buf, sizeof(password_buf));
  57. if(rc == 0){
  58. password = password_buf;
  59. }else if(rc == 2){
  60. fprintf(stderr, "Error: Passwords do not match.\n");
  61. return -1;
  62. }else{
  63. password = NULL;
  64. printf("\n");
  65. }
  66. }
  67. if(cJSON_AddStringToObject(j_command, "command", "createClient") == NULL
  68. || cJSON_AddStringToObject(j_command, "username", username) == NULL
  69. || (clientid && cJSON_AddStringToObject(j_command, "clientid", clientid) == NULL)
  70. || (password && cJSON_AddStringToObject(j_command, "password", password) == NULL)
  71. ){
  72. return MOSQ_ERR_NOMEM;
  73. }else{
  74. return MOSQ_ERR_SUCCESS;
  75. }
  76. }
  77. int dynsec_client__delete(int argc, char *argv[], cJSON *j_command)
  78. {
  79. char *username = NULL;
  80. if(argc == 1){
  81. username = argv[0];
  82. }else{
  83. return MOSQ_ERR_INVAL;
  84. }
  85. if(cJSON_AddStringToObject(j_command, "command", "deleteClient") == NULL
  86. || cJSON_AddStringToObject(j_command, "username", username) == NULL
  87. ){
  88. return MOSQ_ERR_NOMEM;
  89. }else{
  90. return MOSQ_ERR_SUCCESS;
  91. }
  92. }
  93. int dynsec_client__enable_disable(int argc, char *argv[], cJSON *j_command, const char *command)
  94. {
  95. char *username = NULL;
  96. if(argc == 1){
  97. username = argv[0];
  98. }else{
  99. return MOSQ_ERR_INVAL;
  100. }
  101. if(cJSON_AddStringToObject(j_command, "command", command) == NULL
  102. || cJSON_AddStringToObject(j_command, "username", username) == NULL
  103. ){
  104. return MOSQ_ERR_NOMEM;
  105. }else{
  106. return MOSQ_ERR_SUCCESS;
  107. }
  108. }
  109. int dynsec_client__set_id(int argc, char *argv[], cJSON *j_command)
  110. {
  111. char *username = NULL, *clientid = NULL;
  112. if(argc == 2){
  113. username = argv[0];
  114. clientid = argv[1];
  115. }else if(argc == 1){
  116. username = argv[0];
  117. }else{
  118. return MOSQ_ERR_INVAL;
  119. }
  120. if(cJSON_AddStringToObject(j_command, "command", "setClientId") == NULL
  121. || cJSON_AddStringToObject(j_command, "username", username) == NULL
  122. || (clientid && cJSON_AddStringToObject(j_command, "clientid", clientid) == NULL)
  123. ){
  124. return MOSQ_ERR_NOMEM;
  125. }else{
  126. return MOSQ_ERR_SUCCESS;
  127. }
  128. }
  129. int dynsec_client__set_password(int argc, char *argv[], cJSON *j_command)
  130. {
  131. char *username = NULL, *password = NULL;
  132. char prompt[200], verify_prompt[200];
  133. char password_buf[200];
  134. int rc;
  135. if(argc == 2){
  136. username = argv[0];
  137. password = argv[1];
  138. }else if(argc == 1){
  139. username = argv[0];
  140. snprintf(prompt, sizeof(prompt), "New password for %s: ", username);
  141. snprintf(verify_prompt, sizeof(verify_prompt), "Reenter password for %s: ", username);
  142. rc = get_password(prompt, verify_prompt, false, password_buf, sizeof(password_buf));
  143. if(rc){
  144. return -1;
  145. }
  146. password = password_buf;
  147. }else{
  148. return MOSQ_ERR_INVAL;
  149. }
  150. if(cJSON_AddStringToObject(j_command, "command", "setClientPassword") == NULL
  151. || cJSON_AddStringToObject(j_command, "username", username) == NULL
  152. || cJSON_AddStringToObject(j_command, "password", password) == NULL
  153. ){
  154. return MOSQ_ERR_NOMEM;
  155. }else{
  156. return MOSQ_ERR_SUCCESS;
  157. }
  158. }
  159. int dynsec_client__get(int argc, char *argv[], cJSON *j_command)
  160. {
  161. char *username = NULL;
  162. if(argc == 1){
  163. username = argv[0];
  164. }else{
  165. return MOSQ_ERR_INVAL;
  166. }
  167. if(cJSON_AddStringToObject(j_command, "command", "getClient") == NULL
  168. || cJSON_AddStringToObject(j_command, "username", username) == NULL
  169. ){
  170. return MOSQ_ERR_NOMEM;
  171. }else{
  172. return MOSQ_ERR_SUCCESS;
  173. }
  174. }
  175. int dynsec_client__add_remove_role(int argc, char *argv[], cJSON *j_command, const char *command)
  176. {
  177. char *username = NULL, *rolename = NULL;
  178. int priority = -1;
  179. if(argc == 2){
  180. username = argv[0];
  181. rolename = argv[1];
  182. }else if(argc == 3){
  183. username = argv[0];
  184. rolename = argv[1];
  185. priority = atoi(argv[2]);
  186. }else{
  187. return MOSQ_ERR_INVAL;
  188. }
  189. if(cJSON_AddStringToObject(j_command, "command", command) == NULL
  190. || cJSON_AddStringToObject(j_command, "username", username) == NULL
  191. || cJSON_AddStringToObject(j_command, "rolename", rolename) == NULL
  192. || (priority != -1 && cJSON_AddIntToObject(j_command, "priority", priority) == NULL)
  193. ){
  194. return MOSQ_ERR_NOMEM;
  195. }else{
  196. return MOSQ_ERR_SUCCESS;
  197. }
  198. }
  199. int dynsec_client__list_all(int argc, char *argv[], cJSON *j_command)
  200. {
  201. int count = -1, offset = -1;
  202. if(argc == 0){
  203. /* All clients */
  204. }else if(argc == 1){
  205. count = atoi(argv[0]);
  206. }else if(argc == 2){
  207. count = atoi(argv[0]);
  208. offset = atoi(argv[1]);
  209. }else{
  210. return MOSQ_ERR_INVAL;
  211. }
  212. if(cJSON_AddStringToObject(j_command, "command", "listClients") == NULL
  213. || (count > 0 && cJSON_AddIntToObject(j_command, "count", count) == NULL)
  214. || (offset > 0 && cJSON_AddIntToObject(j_command, "offset", offset) == NULL)
  215. ){
  216. return MOSQ_ERR_NOMEM;
  217. }else{
  218. return MOSQ_ERR_SUCCESS;
  219. }
  220. }