Mercurial > hg > nginx-quic
annotate src/imap/ngx_imap_auth_http_module.c @ 801:d6f0a00015fd release-0.4.10
nginx-0.4.10-RELEASE
author | Igor Sysoev <igor@sysoev.ru> |
---|---|
date | Mon, 23 Oct 2006 13:25:27 +0000 |
parents | 887d8dec72dc |
children | 8ee450f30c25 |
rev | line source |
---|---|
521 | 1 |
2 /* | |
3 * Copyright (C) Igor Sysoev | |
4 */ | |
5 | |
6 | |
7 #include <ngx_config.h> | |
8 #include <ngx_core.h> | |
9 #include <ngx_event.h> | |
10 #include <ngx_event_connect.h> | |
11 #include <ngx_imap.h> | |
12 | |
13 | |
14 typedef struct { | |
527 | 15 ngx_peers_t *peers; |
521 | 16 |
527 | 17 ngx_msec_t timeout; |
521 | 18 |
527 | 19 ngx_str_t host_header; |
20 ngx_str_t uri; | |
573 | 21 ngx_str_t header; |
22 | |
23 ngx_array_t *headers; | |
521 | 24 } ngx_imap_auth_http_conf_t; |
25 | |
26 | |
527 | 27 typedef struct ngx_imap_auth_http_ctx_s ngx_imap_auth_http_ctx_t; |
28 | |
29 typedef void (*ngx_imap_auth_http_handler_pt)(ngx_imap_session_t *s, | |
30 ngx_imap_auth_http_ctx_t *ctx); | |
31 | |
32 struct ngx_imap_auth_http_ctx_s { | |
33 ngx_buf_t *request; | |
34 ngx_buf_t *response; | |
35 ngx_peer_connection_t peer; | |
36 | |
37 ngx_imap_auth_http_handler_pt handler; | |
38 | |
39 ngx_uint_t state; | |
40 ngx_uint_t hash; /* no needed ? */ | |
41 | |
42 u_char *header_name_start; | |
43 u_char *header_name_end; | |
44 u_char *header_start; | |
45 u_char *header_end; | |
46 | |
47 ngx_str_t addr; | |
48 ngx_str_t port; | |
49 ngx_str_t err; | |
567 | 50 ngx_str_t errmsg; |
527 | 51 |
547 | 52 time_t sleep; |
527 | 53 |
547 | 54 ngx_pool_t *pool; |
527 | 55 }; |
521 | 56 |
57 | |
58 static void ngx_imap_auth_http_write_handler(ngx_event_t *wev); | |
59 static void ngx_imap_auth_http_read_handler(ngx_event_t *rev); | |
527 | 60 static void ngx_imap_auth_http_ignore_status_line(ngx_imap_session_t *s, |
61 ngx_imap_auth_http_ctx_t *ctx); | |
62 static void ngx_imap_auth_http_process_headers(ngx_imap_session_t *s, | |
63 ngx_imap_auth_http_ctx_t *ctx); | |
64 static void ngx_imap_auth_sleep_handler(ngx_event_t *rev); | |
65 static ngx_int_t ngx_imap_auth_http_parse_header_line(ngx_imap_session_t *s, | |
66 ngx_imap_auth_http_ctx_t *ctx); | |
521 | 67 static void ngx_imap_auth_http_block_read(ngx_event_t *rev); |
68 static void ngx_imap_auth_http_dummy_handler(ngx_event_t *ev); | |
69 static ngx_buf_t *ngx_imap_auth_http_create_request(ngx_imap_session_t *s, | |
547 | 70 ngx_pool_t *pool, ngx_imap_auth_http_conf_t *ahcf); |
633 | 71 static ngx_int_t ngx_imap_auth_http_escape(ngx_pool_t *pool, ngx_str_t *text, |
72 ngx_str_t *escaped); | |
521 | 73 |
74 static void *ngx_imap_auth_http_create_conf(ngx_conf_t *cf); | |
75 static char *ngx_imap_auth_http_merge_conf(ngx_conf_t *cf, void *parent, | |
76 void *child); | |
77 static char *ngx_imap_auth_http(ngx_conf_t *cf, ngx_command_t *cmd, void *conf); | |
573 | 78 static char *ngx_imap_auth_http_header(ngx_conf_t *cf, ngx_command_t *cmd, |
79 void *conf); | |
521 | 80 |
81 | |
82 static ngx_command_t ngx_imap_auth_http_commands[] = { | |
83 | |
84 { ngx_string("auth_http"), | |
85 NGX_IMAP_MAIN_CONF|NGX_IMAP_SRV_CONF|NGX_CONF_TAKE1, | |
86 ngx_imap_auth_http, | |
87 NGX_IMAP_SRV_CONF_OFFSET, | |
88 0, | |
89 NULL }, | |
90 | |
91 { ngx_string("auth_http_timeout"), | |
92 NGX_IMAP_MAIN_CONF|NGX_IMAP_SRV_CONF|NGX_CONF_TAKE1, | |
93 ngx_conf_set_msec_slot, | |
94 NGX_IMAP_SRV_CONF_OFFSET, | |
95 offsetof(ngx_imap_auth_http_conf_t, timeout), | |
96 NULL }, | |
97 | |
573 | 98 { ngx_string("auth_http_header"), |
99 NGX_IMAP_MAIN_CONF|NGX_IMAP_SRV_CONF|NGX_CONF_TAKE2, | |
100 ngx_imap_auth_http_header, | |
101 NGX_IMAP_SRV_CONF_OFFSET, | |
102 0, | |
103 NULL }, | |
104 | |
521 | 105 ngx_null_command |
106 }; | |
107 | |
108 | |
109 static ngx_imap_module_t ngx_imap_auth_http_module_ctx = { | |
110 NULL, /* create main configuration */ | |
111 NULL, /* init main configuration */ | |
112 | |
113 ngx_imap_auth_http_create_conf, /* create server configuration */ | |
114 ngx_imap_auth_http_merge_conf /* merge server configuration */ | |
115 }; | |
116 | |
117 | |
118 ngx_module_t ngx_imap_auth_http_module = { | |
119 NGX_MODULE_V1, | |
120 &ngx_imap_auth_http_module_ctx, /* module context */ | |
121 ngx_imap_auth_http_commands, /* module directives */ | |
122 NGX_IMAP_MODULE, /* module type */ | |
541 | 123 NULL, /* init master */ |
521 | 124 NULL, /* init module */ |
541 | 125 NULL, /* init process */ |
126 NULL, /* init thread */ | |
127 NULL, /* exit thread */ | |
128 NULL, /* exit process */ | |
129 NULL, /* exit master */ | |
130 NGX_MODULE_V1_PADDING | |
521 | 131 }; |
132 | |
133 | |
800 | 134 static char *ngx_imap_auth_http_protocol[] = { "pop3", "imap" }; |
135 static ngx_str_t ngx_imap_auth_http_method[] = { | |
136 ngx_string("plain"), ngx_string("apop") | |
137 }; | |
521 | 138 |
139 | |
140 void | |
141 ngx_imap_auth_http_init(ngx_imap_session_t *s) | |
142 { | |
143 ngx_int_t rc; | |
547 | 144 ngx_pool_t *pool; |
521 | 145 ngx_imap_auth_http_ctx_t *ctx; |
146 ngx_imap_auth_http_conf_t *ahcf; | |
147 | |
541 | 148 s->connection->log->action = "in http auth state"; |
149 | |
547 | 150 pool = ngx_create_pool(2048, s->connection->log); |
151 if (pool == NULL) { | |
525 | 152 ngx_imap_session_internal_server_error(s); |
521 | 153 return; |
154 } | |
155 | |
547 | 156 ctx = ngx_pcalloc(pool, sizeof(ngx_imap_auth_http_ctx_t)); |
157 if (ctx == NULL) { | |
158 ngx_destroy_pool(pool); | |
159 ngx_imap_session_internal_server_error(s); | |
160 return; | |
161 } | |
162 | |
163 ctx->pool = pool; | |
164 | |
521 | 165 ahcf = ngx_imap_get_module_srv_conf(s, ngx_imap_auth_http_module); |
166 | |
547 | 167 ctx->request = ngx_imap_auth_http_create_request(s, pool, ahcf); |
521 | 168 if (ctx->request == NULL) { |
547 | 169 ngx_destroy_pool(ctx->pool); |
525 | 170 ngx_imap_session_internal_server_error(s); |
521 | 171 return; |
172 } | |
173 | |
174 ngx_imap_set_ctx(s, ctx, ngx_imap_auth_http_module); | |
175 | |
176 ctx->peer.peers = ahcf->peers; | |
177 ctx->peer.log = s->connection->log; | |
178 ctx->peer.log_error = NGX_ERROR_ERR; | |
179 | |
180 rc = ngx_event_connect_peer(&ctx->peer); | |
181 | |
543 | 182 if (rc == NGX_ERROR || rc == NGX_BUSY || rc == NGX_DECLINED) { |
183 ngx_close_connection(ctx->peer.connection); | |
547 | 184 ngx_destroy_pool(ctx->pool); |
525 | 185 ngx_imap_session_internal_server_error(s); |
521 | 186 return; |
187 } | |
188 | |
189 ctx->peer.connection->data = s; | |
190 ctx->peer.connection->pool = s->connection->pool; | |
191 | |
192 s->connection->read->handler = ngx_imap_auth_http_block_read; | |
193 ctx->peer.connection->read->handler = ngx_imap_auth_http_read_handler; | |
194 ctx->peer.connection->write->handler = ngx_imap_auth_http_write_handler; | |
195 | |
527 | 196 ctx->handler = ngx_imap_auth_http_ignore_status_line; |
197 | |
541 | 198 ngx_add_timer(ctx->peer.connection->read, ahcf->timeout); |
199 ngx_add_timer(ctx->peer.connection->write, ahcf->timeout); | |
200 | |
521 | 201 if (rc == NGX_OK) { |
202 ngx_imap_auth_http_write_handler(ctx->peer.connection->write); | |
203 return; | |
204 } | |
205 } | |
206 | |
207 | |
208 static void | |
209 ngx_imap_auth_http_write_handler(ngx_event_t *wev) | |
210 { | |
211 ssize_t n, size; | |
212 ngx_connection_t *c; | |
213 ngx_imap_session_t *s; | |
214 ngx_imap_auth_http_ctx_t *ctx; | |
215 ngx_imap_auth_http_conf_t *ahcf; | |
216 | |
217 c = wev->data; | |
218 s = c->data; | |
219 | |
220 ctx = ngx_imap_get_module_ctx(s, ngx_imap_auth_http_module); | |
221 | |
222 ngx_log_debug0(NGX_LOG_DEBUG_IMAP, wev->log, 0, | |
223 "imap auth http write handler"); | |
224 | |
577 | 225 if (wev->timedout) { |
521 | 226 ngx_log_error(NGX_LOG_ERR, wev->log, NGX_ETIMEDOUT, |
541 | 227 "auth http server %V timed out", |
228 &ctx->peer.peers->peer[0].name); | |
525 | 229 ngx_close_connection(ctx->peer.connection); |
547 | 230 ngx_destroy_pool(ctx->pool); |
525 | 231 ngx_imap_session_internal_server_error(s); |
521 | 232 return; |
233 } | |
234 | |
235 size = ctx->request->last - ctx->request->pos; | |
236 | |
237 n = ngx_send(c, ctx->request->pos, size); | |
238 | |
239 if (n == NGX_ERROR) { | |
525 | 240 ngx_close_connection(ctx->peer.connection); |
547 | 241 ngx_destroy_pool(ctx->pool); |
525 | 242 ngx_imap_session_internal_server_error(s); |
521 | 243 return; |
244 } | |
245 | |
246 if (n > 0) { | |
247 ctx->request->pos += n; | |
248 | |
249 if (n == size) { | |
250 wev->handler = ngx_imap_auth_http_dummy_handler; | |
251 | |
252 if (wev->timer_set) { | |
253 ngx_del_timer(wev); | |
254 } | |
255 | |
799
9737d6fb1ac6
disable write level event while waiting auth server response
Igor Sysoev <igor@sysoev.ru>
parents:
633
diff
changeset
|
256 if (ngx_handle_write_event(wev, 0) == NGX_ERROR) { |
9737d6fb1ac6
disable write level event while waiting auth server response
Igor Sysoev <igor@sysoev.ru>
parents:
633
diff
changeset
|
257 ngx_close_connection(ctx->peer.connection); |
9737d6fb1ac6
disable write level event while waiting auth server response
Igor Sysoev <igor@sysoev.ru>
parents:
633
diff
changeset
|
258 ngx_destroy_pool(ctx->pool); |
9737d6fb1ac6
disable write level event while waiting auth server response
Igor Sysoev <igor@sysoev.ru>
parents:
633
diff
changeset
|
259 ngx_imap_session_internal_server_error(s); |
9737d6fb1ac6
disable write level event while waiting auth server response
Igor Sysoev <igor@sysoev.ru>
parents:
633
diff
changeset
|
260 } |
9737d6fb1ac6
disable write level event while waiting auth server response
Igor Sysoev <igor@sysoev.ru>
parents:
633
diff
changeset
|
261 |
521 | 262 return; |
263 } | |
264 } | |
265 | |
266 if (!wev->timer_set) { | |
267 ahcf = ngx_imap_get_module_srv_conf(s, ngx_imap_auth_http_module); | |
268 ngx_add_timer(wev, ahcf->timeout); | |
269 } | |
270 } | |
271 | |
272 | |
273 static void | |
274 ngx_imap_auth_http_read_handler(ngx_event_t *rev) | |
275 { | |
525 | 276 ssize_t n, size; |
521 | 277 ngx_connection_t *c; |
278 ngx_imap_session_t *s; | |
279 ngx_imap_auth_http_ctx_t *ctx; | |
280 | |
281 c = rev->data; | |
282 s = c->data; | |
283 | |
284 ngx_log_debug0(NGX_LOG_DEBUG_IMAP, rev->log, 0, | |
285 "imap auth http read handler"); | |
286 | |
525 | 287 ctx = ngx_imap_get_module_ctx(s, ngx_imap_auth_http_module); |
288 | |
577 | 289 if (rev->timedout) { |
525 | 290 ngx_log_error(NGX_LOG_ERR, rev->log, NGX_ETIMEDOUT, |
541 | 291 "auth http server %V timed out", |
292 &ctx->peer.peers->peer[0].name); | |
525 | 293 ngx_close_connection(ctx->peer.connection); |
547 | 294 ngx_destroy_pool(ctx->pool); |
525 | 295 ngx_imap_session_internal_server_error(s); |
296 return; | |
297 } | |
298 | |
299 if (ctx->response == NULL) { | |
547 | 300 ctx->response = ngx_create_temp_buf(ctx->pool, 1024); |
525 | 301 if (ctx->response == NULL) { |
302 ngx_close_connection(ctx->peer.connection); | |
547 | 303 ngx_destroy_pool(ctx->pool); |
525 | 304 ngx_imap_session_internal_server_error(s); |
305 return; | |
306 } | |
307 } | |
308 | |
527 | 309 size = ctx->response->end - ctx->response->last; |
525 | 310 |
311 n = ngx_recv(c, ctx->response->pos, size); | |
312 | |
527 | 313 if (n > 0) { |
314 ctx->response->last += n; | |
315 | |
316 ctx->handler(s, ctx); | |
317 return; | |
318 } | |
319 | |
320 if (n == NGX_AGAIN) { | |
525 | 321 return; |
322 } | |
323 | |
527 | 324 ngx_close_connection(ctx->peer.connection); |
547 | 325 ngx_destroy_pool(ctx->pool); |
527 | 326 ngx_imap_session_internal_server_error(s); |
327 } | |
525 | 328 |
329 | |
527 | 330 static void |
331 ngx_imap_auth_http_ignore_status_line(ngx_imap_session_t *s, | |
332 ngx_imap_auth_http_ctx_t *ctx) | |
333 { | |
334 u_char *p, ch; | |
335 enum { | |
336 sw_start = 0, | |
337 sw_H, | |
338 sw_HT, | |
339 sw_HTT, | |
340 sw_HTTP, | |
341 sw_skip, | |
342 sw_almost_done | |
343 } state; | |
344 | |
345 ngx_log_debug0(NGX_LOG_DEBUG_IMAP, s->connection->log, 0, | |
346 "imap auth http process status line"); | |
347 | |
348 state = ctx->state; | |
349 | |
350 for (p = ctx->response->pos; p < ctx->response->last; p++) { | |
351 ch = *p; | |
352 | |
353 switch (state) { | |
354 | |
355 /* "HTTP/" */ | |
356 case sw_start: | |
357 if (ch == 'H') { | |
358 state = sw_H; | |
359 break; | |
360 } | |
361 goto next; | |
362 | |
363 case sw_H: | |
364 if (ch == 'T') { | |
365 state = sw_HT; | |
366 break; | |
367 } | |
368 goto next; | |
369 | |
370 case sw_HT: | |
371 if (ch == 'T') { | |
372 state = sw_HTT; | |
373 break; | |
374 } | |
375 goto next; | |
376 | |
377 case sw_HTT: | |
378 if (ch == 'P') { | |
379 state = sw_HTTP; | |
380 break; | |
381 } | |
382 goto next; | |
383 | |
384 case sw_HTTP: | |
385 if (ch == '/') { | |
386 state = sw_skip; | |
387 break; | |
388 } | |
389 goto next; | |
390 | |
391 /* any text until end of line */ | |
392 case sw_skip: | |
393 switch (ch) { | |
394 case CR: | |
395 state = sw_almost_done; | |
396 | |
397 break; | |
577 | 398 case LF: |
527 | 399 goto done; |
400 } | |
401 break; | |
402 | |
403 /* end of status line */ | |
404 case sw_almost_done: | |
405 if (ch == LF) { | |
406 goto done; | |
407 } | |
408 | |
409 ngx_log_error(NGX_LOG_ERR, s->connection->log, 0, | |
541 | 410 "auth http server &V sent invalid response", |
411 &ctx->peer.peers->peer[0].name); | |
527 | 412 ngx_close_connection(ctx->peer.connection); |
547 | 413 ngx_destroy_pool(ctx->pool); |
527 | 414 ngx_imap_session_internal_server_error(s); |
415 return; | |
416 } | |
417 } | |
418 | |
419 ctx->response->pos = p; | |
420 ctx->state = state; | |
421 | |
422 return; | |
423 | |
424 next: | |
425 | |
426 p = ctx->response->start - 1; | |
427 | |
428 done: | |
429 | |
430 ctx->response->pos = p + 1; | |
431 ctx->state = 0; | |
432 ctx->handler = ngx_imap_auth_http_process_headers; | |
433 ctx->handler(s, ctx); | |
434 } | |
525 | 435 |
436 | |
527 | 437 static void |
438 ngx_imap_auth_http_process_headers(ngx_imap_session_t *s, | |
439 ngx_imap_auth_http_ctx_t *ctx) | |
440 { | |
441 u_char *p; | |
547 | 442 time_t timer; |
527 | 443 size_t len, size; |
444 ngx_int_t rc, port, n; | |
547 | 445 ngx_peers_t *peers; |
527 | 446 struct sockaddr_in *sin; |
525 | 447 |
527 | 448 ngx_log_debug0(NGX_LOG_DEBUG_IMAP, s->connection->log, 0, |
449 "imap auth http process headers"); | |
450 | |
451 for ( ;; ) { | |
452 rc = ngx_imap_auth_http_parse_header_line(s, ctx); | |
453 | |
454 if (rc == NGX_OK) { | |
455 | |
456 #if (NGX_DEBUG) | |
457 { | |
458 ngx_str_t key, value; | |
459 | |
460 key.len = ctx->header_name_end - ctx->header_name_start; | |
461 key.data = ctx->header_name_start; | |
462 value.len = ctx->header_end - ctx->header_start; | |
463 value.data = ctx->header_start; | |
464 | |
465 ngx_log_debug2(NGX_LOG_DEBUG_IMAP, s->connection->log, 0, | |
466 "auth http header: \"%V: %V\"", | |
467 &key, &value); | |
468 } | |
469 #endif | |
470 | |
471 len = ctx->header_name_end - ctx->header_name_start; | |
472 | |
473 if (len == sizeof("Auth-Status") - 1 | |
474 && ngx_strncasecmp(ctx->header_name_start, "Auth-Status", | |
475 sizeof("Auth-Status") - 1) == 0) | |
476 { | |
477 len = ctx->header_end - ctx->header_start; | |
478 | |
479 if (len == 2 | |
480 && ctx->header_start[0] == 'O' | |
481 && ctx->header_start[1] == 'K') | |
482 { | |
483 continue; | |
484 } | |
485 | |
567 | 486 ctx->errmsg.len = len; |
487 ctx->errmsg.data = ctx->header_start; | |
488 | |
527 | 489 if (s->protocol == NGX_IMAP_POP3_PROTOCOL) { |
490 size = sizeof("-ERR") - 1 + len + sizeof(CRLF) - 1; | |
491 | |
492 } else { | |
493 size = s->tag.len + sizeof("NO") - 1 + len | |
494 + sizeof(CRLF) - 1; | |
495 } | |
496 | |
497 p = ngx_pcalloc(s->connection->pool, size); | |
498 if (p == NULL) { | |
543 | 499 ngx_close_connection(ctx->peer.connection); |
547 | 500 ngx_destroy_pool(ctx->pool); |
527 | 501 ngx_imap_session_internal_server_error(s); |
502 return; | |
503 } | |
504 | |
505 ctx->err.data = p; | |
506 | |
507 if (s->protocol == NGX_IMAP_POP3_PROTOCOL) { | |
508 *p++ = '-'; *p++ = 'E'; *p++ = 'R'; *p++ = 'R'; | |
509 | |
510 } else { | |
511 p = ngx_cpymem(p, s->tag.data, s->tag.len); | |
512 *p++ = 'N'; *p++ = 'O'; | |
513 } | |
514 | |
515 *p++ = ' '; | |
567 | 516 |
527 | 517 p = ngx_cpymem(p, ctx->header_start, len); |
518 *p++ = CR; *p++ = LF; | |
519 | |
520 ctx->err.len = p - ctx->err.data; | |
521 | |
522 continue; | |
523 } | |
524 | |
525 if (len == sizeof("Auth-Server") - 1 | |
526 && ngx_strncasecmp(ctx->header_name_start, "Auth-Server", | |
527 sizeof("Auth-Server") - 1) == 0) | |
528 { | |
529 ctx->addr.len = ctx->header_end - ctx->header_start; | |
530 ctx->addr.data = ctx->header_start; | |
531 | |
532 continue; | |
533 } | |
534 | |
535 if (len == sizeof("Auth-Port") - 1 | |
536 && ngx_strncasecmp(ctx->header_name_start, "Auth-Port", | |
537 sizeof("Auth-Port") - 1) == 0) | |
538 { | |
539 ctx->port.len = ctx->header_end - ctx->header_start; | |
540 ctx->port.data = ctx->header_start; | |
541 | |
542 continue; | |
543 } | |
544 | |
545 if (len == sizeof("Auth-User") - 1 | |
546 && ngx_strncasecmp(ctx->header_name_start, "Auth-User", | |
547 sizeof("Auth-User") - 1) == 0) | |
548 { | |
549 s->login.len = ctx->header_end - ctx->header_start; | |
567 | 550 |
551 s->login.data = ngx_palloc(s->connection->pool, s->login.len); | |
552 if (s->login.data == NULL) { | |
553 ngx_close_connection(ctx->peer.connection); | |
554 ngx_destroy_pool(ctx->pool); | |
555 ngx_imap_session_internal_server_error(s); | |
556 return; | |
557 } | |
558 | |
559 ngx_memcpy(s->login.data, ctx->header_start, s->login.len); | |
527 | 560 |
561 continue; | |
562 } | |
563 | |
800 | 564 if (len == sizeof("Auth-Pass") - 1 |
565 && ngx_strncasecmp(ctx->header_name_start, "Auth-Pass", | |
566 sizeof("Auth-Pass") - 1) == 0) | |
567 { | |
568 s->passwd.len = ctx->header_end - ctx->header_start; | |
569 | |
570 s->passwd.data = ngx_palloc(s->connection->pool, s->passwd.len); | |
571 if (s->passwd.data == NULL) { | |
572 ngx_close_connection(ctx->peer.connection); | |
573 ngx_destroy_pool(ctx->pool); | |
574 ngx_imap_session_internal_server_error(s); | |
575 return; | |
576 } | |
577 | |
578 ngx_memcpy(s->passwd.data, ctx->header_start, s->passwd.len); | |
579 | |
580 continue; | |
581 } | |
582 | |
527 | 583 if (len == sizeof("Auth-Wait") - 1 |
584 && ngx_strncasecmp(ctx->header_name_start, "Auth-Wait", | |
585 sizeof("Auth-Wait") - 1) == 0) | |
586 { | |
587 n = ngx_atoi(ctx->header_start, | |
588 ctx->header_end - ctx->header_start); | |
589 | |
590 if (n != NGX_ERROR) { | |
591 ctx->sleep = n; | |
592 } | |
593 | |
594 continue; | |
595 } | |
596 | |
597 /* ignore other headers */ | |
598 | |
599 continue; | |
600 } | |
601 | |
602 if (rc == NGX_DONE) { | |
603 ngx_log_debug0(NGX_LOG_DEBUG_IMAP, s->connection->log, 0, | |
604 "auth http header done"); | |
605 | |
606 ngx_close_connection(ctx->peer.connection); | |
607 | |
608 if (ctx->err.len) { | |
567 | 609 ngx_log_error(NGX_LOG_INFO, s->connection->log, 0, |
610 "client login failed: \"%V\"", &ctx->errmsg); | |
611 | |
539 | 612 s->out = ctx->err; |
547 | 613 timer = ctx->sleep; |
527 | 614 |
547 | 615 ngx_destroy_pool(ctx->pool); |
616 | |
617 if (timer == 0) { | |
539 | 618 s->quit = 1; |
541 | 619 ngx_imap_send(s->connection->write); |
620 return; | |
621 } | |
539 | 622 |
547 | 623 ngx_add_timer(s->connection->read, timer * 1000); |
527 | 624 |
625 s->connection->read->handler = ngx_imap_auth_sleep_handler; | |
626 | |
627 return; | |
628 } | |
629 | |
630 if (ctx->addr.len == 0 || ctx->port.len == 0) { | |
631 ngx_log_error(NGX_LOG_ERR, s->connection->log, 0, | |
541 | 632 "auth http server %V did not send server or port", |
633 &ctx->peer.peers->peer[0].name); | |
547 | 634 ngx_destroy_pool(ctx->pool); |
527 | 635 ngx_imap_session_internal_server_error(s); |
636 return; | |
637 } | |
638 | |
800 | 639 if (s->passwd.data == NULL) { |
640 ngx_log_error(NGX_LOG_ERR, s->connection->log, 0, | |
641 "auth http server %V did not send password", | |
642 &ctx->peer.peers->peer[0].name); | |
643 ngx_destroy_pool(ctx->pool); | |
644 ngx_imap_session_internal_server_error(s); | |
645 return; | |
646 } | |
647 | |
547 | 648 peers = ngx_pcalloc(s->connection->pool, sizeof(ngx_peers_t)); |
649 if (peers == NULL) { | |
650 ngx_destroy_pool(ctx->pool); | |
527 | 651 ngx_imap_session_internal_server_error(s); |
652 return; | |
653 } | |
654 | |
655 sin = ngx_pcalloc(s->connection->pool, sizeof(struct sockaddr_in)); | |
656 if (sin == NULL) { | |
547 | 657 ngx_destroy_pool(ctx->pool); |
527 | 658 ngx_imap_session_internal_server_error(s); |
659 return; | |
660 } | |
661 | |
662 sin->sin_family = AF_INET; | |
663 | |
664 port = ngx_atoi(ctx->port.data, ctx->port.len); | |
665 if (port == NGX_ERROR || port < 1 || port > 65536) { | |
666 ngx_log_error(NGX_LOG_ERR, s->connection->log, 0, | |
541 | 667 "auth http server %V sent invalid server " |
668 "port:\"%V\"", | |
669 &ctx->peer.peers->peer[0].name, &ctx->port); | |
547 | 670 ngx_destroy_pool(ctx->pool); |
527 | 671 ngx_imap_session_internal_server_error(s); |
672 return; | |
673 } | |
674 | |
675 sin->sin_port = htons((in_port_t) port); | |
676 | |
677 ctx->addr.data[ctx->addr.len] = '\0'; | |
678 sin->sin_addr.s_addr = inet_addr((char *) ctx->addr.data); | |
679 if (sin->sin_addr.s_addr == INADDR_NONE) { | |
680 ngx_log_error(NGX_LOG_ERR, s->connection->log, 0, | |
541 | 681 "auth http server %V sent invalid server " |
682 "address:\"%V\"", | |
683 &ctx->peer.peers->peer[0].name, &ctx->addr); | |
547 | 684 ngx_destroy_pool(ctx->pool); |
527 | 685 ngx_imap_session_internal_server_error(s); |
686 return; | |
687 } | |
688 | |
547 | 689 peers->number = 1; |
527 | 690 |
547 | 691 peers->peer[0].sockaddr = (struct sockaddr *) sin; |
692 peers->peer[0].socklen = sizeof(struct sockaddr_in); | |
527 | 693 |
694 len = ctx->addr.len + 1 + ctx->port.len; | |
695 | |
547 | 696 peers->peer[0].name.len = len; |
527 | 697 |
547 | 698 peers->peer[0].name.data = ngx_palloc(s->connection->pool, len); |
699 if (peers->peer[0].name.data == NULL) { | |
700 ngx_destroy_pool(ctx->pool); | |
527 | 701 ngx_imap_session_internal_server_error(s); |
702 return; | |
703 } | |
704 | |
705 len = ctx->addr.len; | |
706 | |
547 | 707 ngx_memcpy(peers->peer[0].name.data, ctx->addr.data, len); |
527 | 708 |
547 | 709 peers->peer[0].name.data[len++] = ':'; |
527 | 710 |
547 | 711 ngx_memcpy(peers->peer[0].name.data + len, |
527 | 712 ctx->port.data, ctx->port.len); |
713 | |
547 | 714 peers->peer[0].uri_separator = ""; |
527 | 715 |
547 | 716 ngx_destroy_pool(ctx->pool); |
717 ngx_imap_proxy_init(s, peers); | |
527 | 718 |
719 return; | |
720 } | |
721 | |
722 if (rc == NGX_AGAIN ) { | |
723 return; | |
724 } | |
725 | |
726 /* rc == NGX_ERROR */ | |
727 | |
728 ngx_log_error(NGX_LOG_ERR, s->connection->log, 0, | |
541 | 729 "auth http server %V sent invalid header in response", |
730 &ctx->peer.peers->peer[0].name); | |
527 | 731 ngx_close_connection(ctx->peer.connection); |
547 | 732 ngx_destroy_pool(ctx->pool); |
527 | 733 ngx_imap_session_internal_server_error(s); |
734 | |
735 return; | |
736 } | |
737 } | |
738 | |
521 | 739 |
527 | 740 static void |
741 ngx_imap_auth_sleep_handler(ngx_event_t *rev) | |
742 { | |
543 | 743 ngx_connection_t *c; |
744 ngx_imap_session_t *s; | |
745 ngx_imap_core_srv_conf_t *cscf; | |
527 | 746 |
747 ngx_log_debug0(NGX_LOG_DEBUG_IMAP, rev->log, 0, "imap auth sleep handler"); | |
748 | |
749 c = rev->data; | |
750 s = c->data; | |
751 | |
752 if (rev->timedout) { | |
753 | |
754 rev->timedout = 0; | |
755 | |
756 if (s->protocol == NGX_IMAP_POP3_PROTOCOL) { | |
757 s->imap_state = ngx_pop3_start; | |
758 s->connection->read->handler = ngx_pop3_auth_state; | |
759 | |
760 } else { | |
761 s->imap_state = ngx_imap_start; | |
762 s->connection->read->handler = ngx_imap_auth_state; | |
763 } | |
764 | |
800 | 765 s->auth_method = NGX_IMAP_AUTH_PLAIN; |
766 | |
543 | 767 c->log->action = "in auth state"; |
768 | |
769 ngx_imap_send(s->connection->write); | |
770 | |
583 | 771 if (c->destroyed) { |
543 | 772 return; |
773 } | |
774 | |
775 cscf = ngx_imap_get_module_srv_conf(s, ngx_imap_core_module); | |
776 | |
777 ngx_add_timer(rev, cscf->timeout); | |
778 | |
527 | 779 if (rev->ready) { |
780 s->connection->read->handler(rev); | |
781 return; | |
782 } | |
783 | |
784 if (ngx_handle_read_event(rev, 0) == NGX_ERROR) { | |
785 ngx_imap_close_connection(s->connection); | |
786 } | |
787 | |
788 return; | |
789 } | |
790 | |
791 if (rev->active) { | |
792 if (ngx_handle_read_event(rev, 0) == NGX_ERROR) { | |
793 ngx_imap_close_connection(s->connection); | |
794 } | |
795 } | |
796 } | |
797 | |
798 | |
799 static ngx_int_t | |
800 ngx_imap_auth_http_parse_header_line(ngx_imap_session_t *s, | |
801 ngx_imap_auth_http_ctx_t *ctx) | |
802 { | |
803 u_char c, ch, *p; | |
804 ngx_uint_t hash; | |
805 enum { | |
806 sw_start = 0, | |
807 sw_name, | |
808 sw_space_before_value, | |
809 sw_value, | |
810 sw_space_after_value, | |
577 | 811 sw_almost_done, |
527 | 812 sw_header_almost_done |
813 } state; | |
814 | |
577 | 815 state = ctx->state; |
527 | 816 hash = ctx->hash; |
817 | |
818 for (p = ctx->response->pos; p < ctx->response->last; p++) { | |
819 ch = *p; | |
820 | |
821 switch (state) { | |
822 | |
823 /* first char */ | |
824 case sw_start: | |
825 | |
826 switch (ch) { | |
827 case CR: | |
577 | 828 ctx->header_end = p; |
527 | 829 state = sw_header_almost_done; |
830 break; | |
577 | 831 case LF: |
527 | 832 ctx->header_end = p; |
833 goto header_done; | |
834 default: | |
835 state = sw_name; | |
836 ctx->header_name_start = p; | |
837 | |
838 c = (u_char) (ch | 0x20); | |
839 if (c >= 'a' && c <= 'z') { | |
840 hash = c; | |
841 break; | |
842 } | |
843 | |
844 if (ch >= '0' && ch <= '9') { | |
845 hash = ch; | |
846 break; | |
847 } | |
848 | |
849 return NGX_ERROR; | |
850 } | |
851 break; | |
852 | |
853 /* header name */ | |
854 case sw_name: | |
855 c = (u_char) (ch | 0x20); | |
856 if (c >= 'a' && c <= 'z') { | |
857 hash += c; | |
858 break; | |
859 } | |
860 | |
861 if (ch == ':') { | |
862 ctx->header_name_end = p; | |
863 state = sw_space_before_value; | |
864 break; | |
865 } | |
866 | |
867 if (ch == '-') { | |
868 hash += ch; | |
869 break; | |
870 } | |
871 | |
872 if (ch >= '0' && ch <= '9') { | |
873 hash += ch; | |
874 break; | |
875 } | |
876 | |
877 if (ch == CR) { | |
878 ctx->header_name_end = p; | |
879 ctx->header_start = p; | |
880 ctx->header_end = p; | |
881 state = sw_almost_done; | |
882 break; | |
883 } | |
884 | |
885 if (ch == LF) { | |
886 ctx->header_name_end = p; | |
887 ctx->header_start = p; | |
888 ctx->header_end = p; | |
889 goto done; | |
890 } | |
891 | |
892 return NGX_ERROR; | |
893 | |
894 /* space* before header value */ | |
895 case sw_space_before_value: | |
896 switch (ch) { | |
897 case ' ': | |
898 break; | |
899 case CR: | |
900 ctx->header_start = p; | |
901 ctx->header_end = p; | |
902 state = sw_almost_done; | |
903 break; | |
904 case LF: | |
905 ctx->header_start = p; | |
906 ctx->header_end = p; | |
907 goto done; | |
908 default: | |
909 ctx->header_start = p; | |
910 state = sw_value; | |
911 break; | |
912 } | |
913 break; | |
914 | |
915 /* header value */ | |
916 case sw_value: | |
917 switch (ch) { | |
918 case ' ': | |
919 ctx->header_end = p; | |
920 state = sw_space_after_value; | |
921 break; | |
922 case CR: | |
923 ctx->header_end = p; | |
924 state = sw_almost_done; | |
925 break; | |
926 case LF: | |
927 ctx->header_end = p; | |
928 goto done; | |
929 } | |
930 break; | |
931 | |
932 /* space* before end of header line */ | |
933 case sw_space_after_value: | |
934 switch (ch) { | |
935 case ' ': | |
936 break; | |
937 case CR: | |
938 state = sw_almost_done; | |
939 break; | |
940 case LF: | |
941 goto done; | |
942 default: | |
943 state = sw_value; | |
944 break; | |
945 } | |
946 break; | |
947 | |
948 /* end of header line */ | |
949 case sw_almost_done: | |
950 switch (ch) { | |
951 case LF: | |
952 goto done; | |
953 default: | |
954 return NGX_ERROR; | |
955 } | |
956 | |
957 /* end of header */ | |
958 case sw_header_almost_done: | |
959 switch (ch) { | |
960 case LF: | |
961 goto header_done; | |
962 default: | |
963 return NGX_ERROR; | |
964 } | |
965 } | |
966 } | |
967 | |
968 ctx->response->pos = p; | |
969 ctx->state = state; | |
970 ctx->hash = hash; | |
971 | |
972 return NGX_AGAIN; | |
973 | |
974 done: | |
975 | |
976 ctx->response->pos = p + 1; | |
977 ctx->state = sw_start; | |
978 ctx->hash = hash; | |
979 | |
980 return NGX_OK; | |
981 | |
982 header_done: | |
983 | |
984 ctx->response->pos = p + 1; | |
985 ctx->state = sw_start; | |
986 | |
987 return NGX_DONE; | |
521 | 988 } |
989 | |
990 | |
991 static void | |
992 ngx_imap_auth_http_block_read(ngx_event_t *rev) | |
993 { | |
994 ngx_connection_t *c; | |
995 ngx_imap_session_t *s; | |
996 ngx_imap_auth_http_ctx_t *ctx; | |
997 | |
998 ngx_log_debug0(NGX_LOG_DEBUG_IMAP, rev->log, 0, | |
999 "imap auth http block read"); | |
1000 | |
1001 if (ngx_handle_read_event(rev, 0) == NGX_ERROR) { | |
1002 c = rev->data; | |
1003 s = c->data; | |
1004 | |
1005 ctx = ngx_imap_get_module_ctx(s, ngx_imap_auth_http_module); | |
1006 | |
525 | 1007 ngx_close_connection(ctx->peer.connection); |
547 | 1008 ngx_destroy_pool(ctx->pool); |
525 | 1009 ngx_imap_session_internal_server_error(s); |
521 | 1010 } |
1011 } | |
1012 | |
1013 | |
1014 static void | |
1015 ngx_imap_auth_http_dummy_handler(ngx_event_t *ev) | |
1016 { | |
1017 ngx_log_debug0(NGX_LOG_DEBUG_IMAP, ev->log, 0, | |
1018 "imap auth http dummy handler"); | |
1019 } | |
1020 | |
1021 | |
1022 static ngx_buf_t * | |
547 | 1023 ngx_imap_auth_http_create_request(ngx_imap_session_t *s, ngx_pool_t *pool, |
521 | 1024 ngx_imap_auth_http_conf_t *ahcf) |
1025 { | |
1026 size_t len; | |
1027 ngx_buf_t *b; | |
633 | 1028 ngx_str_t login, passwd; |
1029 | |
1030 if (ngx_imap_auth_http_escape(pool, &s->login, &login) != NGX_OK) { | |
1031 return NULL; | |
1032 } | |
1033 | |
1034 if (ngx_imap_auth_http_escape(pool, &s->passwd, &passwd) != NGX_OK) { | |
1035 return NULL; | |
1036 } | |
521 | 1037 |
1038 len = sizeof("GET ") - 1 + ahcf->uri.len + sizeof(" HTTP/1.0" CRLF) - 1 | |
1039 + sizeof("Host: ") - 1 + ahcf->host_header.len + sizeof(CRLF) - 1 | |
1040 + sizeof("Auth-Method: plain" CRLF) - 1 | |
633 | 1041 + sizeof("Auth-User: ") - 1 + login.len + sizeof(CRLF) - 1 |
1042 + sizeof("Auth-Pass: ") - 1 + passwd.len + sizeof(CRLF) - 1 | |
800 | 1043 + sizeof("Auth-Salt: ") - 1 + s->salt.len |
521 | 1044 + sizeof("Auth-Protocol: imap" CRLF) - 1 |
527 | 1045 + sizeof("Auth-Login-Attempt: ") - 1 + NGX_INT_T_LEN |
1046 + sizeof(CRLF) - 1 | |
521 | 1047 + sizeof("Client-IP: ") - 1 + s->connection->addr_text.len |
1048 + sizeof(CRLF) - 1 | |
1049 + sizeof(CRLF) - 1; | |
1050 | |
547 | 1051 b = ngx_create_temp_buf(pool, len); |
521 | 1052 if (b == NULL) { |
1053 return NULL; | |
1054 } | |
1055 | |
1056 b->last = ngx_cpymem(b->last, "GET ", sizeof("GET ") - 1); | |
573 | 1057 b->last = ngx_copy(b->last, ahcf->uri.data, ahcf->uri.len); |
521 | 1058 b->last = ngx_cpymem(b->last, " HTTP/1.0" CRLF, |
1059 sizeof(" HTTP/1.0" CRLF) - 1); | |
1060 | |
1061 b->last = ngx_cpymem(b->last, "Host: ", sizeof("Host: ") - 1); | |
573 | 1062 b->last = ngx_copy(b->last, ahcf->host_header.data, |
521 | 1063 ahcf->host_header.len); |
1064 *b->last++ = CR; *b->last++ = LF; | |
1065 | |
800 | 1066 b->last = ngx_cpymem(b->last, "Auth-Method: ", |
1067 sizeof("Auth-Method: ") - 1); | |
1068 b->last = ngx_cpymem(b->last, | |
1069 ngx_imap_auth_http_method[s->auth_method].data, | |
1070 ngx_imap_auth_http_method[s->auth_method].len); | |
1071 *b->last++ = CR; *b->last++ = LF; | |
521 | 1072 |
1073 b->last = ngx_cpymem(b->last, "Auth-User: ", sizeof("Auth-User: ") - 1); | |
633 | 1074 b->last = ngx_copy(b->last, login.data, login.len); |
521 | 1075 *b->last++ = CR; *b->last++ = LF; |
1076 | |
1077 b->last = ngx_cpymem(b->last, "Auth-Pass: ", sizeof("Auth-Pass: ") - 1); | |
633 | 1078 b->last = ngx_copy(b->last, passwd.data, passwd.len); |
521 | 1079 *b->last++ = CR; *b->last++ = LF; |
1080 | |
800 | 1081 if (s->salt.len) { |
1082 b->last = ngx_cpymem(b->last, "Auth-Salt: ", sizeof("Auth-Salt: ") - 1); | |
1083 b->last = ngx_copy(b->last, s->salt.data, s->salt.len); | |
1084 | |
1085 s->passwd.data = NULL; | |
1086 } | |
1087 | |
521 | 1088 b->last = ngx_cpymem(b->last, "Auth-Protocol: ", |
1089 sizeof("Auth-Protocol: ") - 1); | |
1090 b->last = ngx_cpymem(b->last, ngx_imap_auth_http_protocol[s->protocol], | |
1091 sizeof("imap") - 1); | |
1092 *b->last++ = CR; *b->last++ = LF; | |
1093 | |
527 | 1094 b->last = ngx_sprintf(b->last, "Auth-Login-Attempt: %ui" CRLF, |
1095 s->login_attempt); | |
1096 | |
521 | 1097 b->last = ngx_cpymem(b->last, "Client-IP: ", sizeof("Client-IP: ") - 1); |
573 | 1098 b->last = ngx_copy(b->last, s->connection->addr_text.data, |
521 | 1099 s->connection->addr_text.len); |
1100 *b->last++ = CR; *b->last++ = LF; | |
1101 | |
573 | 1102 if (ahcf->header.len) { |
1103 b->last = ngx_copy(b->last, ahcf->header.data, ahcf->header.len); | |
1104 } | |
1105 | |
521 | 1106 /* add "\r\n" at the header end */ |
1107 *b->last++ = CR; *b->last++ = LF; | |
1108 | |
547 | 1109 #if (NGX_DEBUG_IMAP_PASSWD) |
521 | 1110 { |
1111 ngx_str_t l; | |
1112 | |
1113 l.len = b->last - b->pos; | |
1114 l.data = b->pos; | |
527 | 1115 ngx_log_debug1(NGX_LOG_DEBUG_IMAP, s->connection->log, 0, |
521 | 1116 "imap auth http header:\n\"%V\"", &l); |
1117 } | |
1118 #endif | |
1119 | |
1120 return b; | |
1121 } | |
1122 | |
1123 | |
633 | 1124 static ngx_int_t |
1125 ngx_imap_auth_http_escape(ngx_pool_t *pool, ngx_str_t *text, ngx_str_t *escaped) | |
1126 { | |
1127 u_char ch, *p; | |
1128 ngx_uint_t i, n; | |
1129 | |
1130 n = 0; | |
1131 | |
1132 for (i = 0; i < text->len; i++) { | |
1133 ch = text->data[i]; | |
1134 | |
1135 if (ch == CR || ch == LF) { | |
1136 n++; | |
1137 } | |
1138 } | |
1139 | |
1140 if (n == 0) { | |
1141 *escaped = *text; | |
1142 return NGX_OK; | |
1143 } | |
1144 | |
1145 escaped->len = text->len + n * 2; | |
1146 | |
1147 p = ngx_palloc(pool, escaped->len); | |
1148 if (p == NULL) { | |
1149 return NGX_ERROR; | |
1150 } | |
1151 | |
1152 escaped->data = p; | |
1153 | |
1154 for (i = 0; i < text->len; i++) { | |
1155 ch = text->data[i]; | |
1156 | |
1157 if (ch == CR) { | |
1158 *p++ = '%'; | |
1159 *p++ = '0'; | |
1160 *p++ = 'D'; | |
1161 continue; | |
1162 } | |
1163 | |
1164 if (ch == LF) { | |
1165 *p++ = '%'; | |
1166 *p++ = '0'; | |
1167 *p++ = 'A'; | |
1168 continue; | |
1169 } | |
1170 | |
1171 *p++ = ch; | |
1172 } | |
1173 | |
1174 return NGX_OK; | |
1175 } | |
1176 | |
1177 | |
521 | 1178 static void * |
1179 ngx_imap_auth_http_create_conf(ngx_conf_t *cf) | |
577 | 1180 { |
521 | 1181 ngx_imap_auth_http_conf_t *ahcf; |
577 | 1182 |
521 | 1183 ahcf = ngx_pcalloc(cf->pool, sizeof(ngx_imap_auth_http_conf_t)); |
1184 if (ahcf == NULL) { | |
1185 return NGX_CONF_ERROR; | |
1186 } | |
1187 | |
1188 ahcf->timeout = NGX_CONF_UNSET_MSEC; | |
1189 | |
1190 return ahcf; | |
1191 } | |
1192 | |
1193 | |
1194 static char * | |
1195 ngx_imap_auth_http_merge_conf(ngx_conf_t *cf, void *parent, void *child) | |
1196 { | |
1197 ngx_imap_auth_http_conf_t *prev = parent; | |
1198 ngx_imap_auth_http_conf_t *conf = child; | |
1199 | |
573 | 1200 u_char *p; |
1201 size_t len; | |
1202 ngx_uint_t i; | |
1203 ngx_table_elt_t *header; | |
1204 | |
521 | 1205 if (conf->peers == NULL) { |
1206 conf->peers = prev->peers; | |
1207 conf->host_header = prev->host_header; | |
1208 conf->uri = prev->uri; | |
1209 } | |
1210 | |
1211 ngx_conf_merge_msec_value(conf->timeout, prev->timeout, 60000); | |
1212 | |
573 | 1213 if (conf->headers == NULL) { |
1214 conf->headers = prev->headers; | |
1215 conf->header = prev->header; | |
1216 } | |
1217 | |
1218 if (conf->headers && conf->header.len == 0) { | |
1219 len = 0; | |
1220 header = conf->headers->elts; | |
1221 for (i = 0; i < conf->headers->nelts; i++) { | |
1222 len += header[i].key.len + 2 + header[i].value.len + 2; | |
1223 } | |
1224 | |
1225 p = ngx_palloc(cf->pool, len); | |
1226 if (p == NULL) { | |
1227 return NGX_CONF_ERROR; | |
1228 } | |
1229 | |
1230 conf->header.len = len; | |
1231 conf->header.data = p; | |
1232 | |
1233 for (i = 0; i < conf->headers->nelts; i++) { | |
1234 p = ngx_cpymem(p, header[i].key.data, header[i].key.len); | |
1235 *p++ = ':'; *p++ = ' '; | |
1236 p = ngx_cpymem(p, header[i].value.data, header[i].value.len); | |
1237 *p++ = CR; *p++ = LF; | |
1238 } | |
1239 } | |
1240 | |
521 | 1241 return NGX_CONF_OK; |
1242 } | |
1243 | |
1244 | |
1245 static char * | |
1246 ngx_imap_auth_http(ngx_conf_t *cf, ngx_command_t *cmd, void *conf) | |
577 | 1247 { |
521 | 1248 ngx_imap_auth_http_conf_t *ahcf = conf; |
1249 | |
1250 ngx_str_t *value, *url; | |
1251 ngx_inet_upstream_t inet_upstream; | |
1252 #if (NGX_HAVE_UNIX_DOMAIN) | |
1253 ngx_unix_domain_upstream_t unix_upstream; | |
1254 #endif | |
573 | 1255 |
521 | 1256 value = cf->args->elts; |
1257 | |
1258 url = &value[1]; | |
1259 | |
1260 if (ngx_strncasecmp(url->data, "unix:", 5) == 0) { | |
1261 | |
1262 #if (NGX_HAVE_UNIX_DOMAIN) | |
1263 | |
1264 ngx_memzero(&unix_upstream, sizeof(ngx_unix_domain_upstream_t)); | |
1265 | |
1266 unix_upstream.name = *url; | |
1267 unix_upstream.url = *url; | |
1268 unix_upstream.uri_part = 1; | |
1269 | |
1270 ahcf->peers = ngx_unix_upstream_parse(cf, &unix_upstream); | |
1271 if (ahcf->peers == NULL) { | |
1272 return NGX_CONF_ERROR; | |
1273 } | |
1274 | |
1275 ahcf->host_header.len = sizeof("localhost") - 1; | |
1276 ahcf->host_header.data = (u_char *) "localhost"; | |
1277 ahcf->uri = unix_upstream.uri; | |
577 | 1278 |
521 | 1279 #else |
1280 ngx_conf_log_error(NGX_LOG_EMERG, cf, 0, | |
1281 "the unix domain sockets are not supported " | |
1282 "on this platform"); | |
1283 return NGX_CONF_ERROR; | |
577 | 1284 |
521 | 1285 #endif |
1286 | |
1287 } else { | |
1288 ngx_memzero(&inet_upstream, sizeof(ngx_inet_upstream_t)); | |
1289 | |
1290 inet_upstream.name = *url; | |
1291 inet_upstream.url = *url; | |
1292 inet_upstream.default_port_value = 80; | |
1293 inet_upstream.uri_part = 1; | |
1294 | |
1295 ahcf->peers = ngx_inet_upstream_parse(cf, &inet_upstream); | |
1296 if (ahcf->peers == NULL) { | |
1297 return NGX_CONF_ERROR; | |
1298 } | |
1299 | |
583 | 1300 ahcf->peers->number = 1; |
1301 | |
521 | 1302 ahcf->host_header = inet_upstream.host_header; |
1303 ahcf->uri = inet_upstream.uri; | |
1304 } | |
1305 | |
559 | 1306 if (ahcf->uri.len == 0) { |
555 | 1307 ahcf->uri.len = sizeof("/") - 1; |
1308 ahcf->uri.data = (u_char *) "/"; | |
1309 } | |
1310 | |
521 | 1311 return NGX_CONF_OK; |
1312 } | |
573 | 1313 |
1314 | |
1315 static char * | |
1316 ngx_imap_auth_http_header(ngx_conf_t *cf, ngx_command_t *cmd, void *conf) | |
577 | 1317 { |
573 | 1318 ngx_imap_auth_http_conf_t *ahcf = conf; |
1319 | |
1320 ngx_str_t *value; | |
1321 ngx_table_elt_t *header; | |
1322 | |
1323 if (ahcf->headers == NULL) { | |
1324 ahcf->headers = ngx_array_create(cf->pool, 1, sizeof(ngx_table_elt_t)); | |
1325 if (ahcf->headers == NULL) { | |
1326 return NGX_CONF_ERROR; | |
1327 } | |
1328 } | |
1329 | |
1330 header = ngx_array_push(ahcf->headers); | |
1331 if (header == NULL) { | |
1332 return NGX_CONF_ERROR; | |
1333 } | |
1334 | |
1335 value = cf->args->elts; | |
1336 | |
1337 header->key = value[1]; | |
1338 header->value = value[2]; | |
1339 | |
1340 return NGX_CONF_OK; | |
1341 } |