|
MythTV
master
|
#include <mythsession.h>
Public Member Functions | |
| MythSessionManager () | |
| bool | IsValidSession (const QString &sessionToken) |
| Check if the session token is valid. More... | |
| MythUserSession | GetSession (const QString &sessionToken) |
| Load the session details and return. More... | |
| MythUserSession | LoginUser (const QString &username, const QByteArray &digest, const QString &client="") |
| Login user by digest. More... | |
| MythUserSession | LoginUser (const QString &username, const QString &password, const QString &client="") |
| Login user by password - convenient alternative to using the digest. More... | |
Static Public Member Functions | |
| static bool | IsValidUser (const QString &username) |
| Check if the given user exists but not whether there is a valid session open for them! More... | |
| static QString | GetPasswordDigest (const QString &username) |
| Load the password digest for comparison in the HTTP Auth code. More... | |
| static QByteArray | CreateDigest (const QString &username, const QString &password) |
| Generate a digest string. More... | |
| static bool | ManageDigestUser (DigestUserActions action, const QString &username, const QString &password, const QString &newPassword, const QString &adminPassword) |
| Manage digest user entries. More... | |
Private Member Functions | |
| void | LoadSessions (void) |
| Load the values from the sessions table on startup. More... | |
| void | UpdateSession (const QString &sessionToken) |
| Update the session timestamps. More... | |
| MythUserSession | GetSession (const QString &username, const QString &client) |
| Checks if an existing session for this user and client exists. More... | |
| MythUserSession | CreateUserSession (uint userId, const QString &username, const QString &client) |
| Add new user session to the database and cache. More... | |
| void | DestroyUserSession (const QString &sessionToken) |
| Removes user session from the database and cache. More... | |
Static Private Member Functions | |
| static bool | AddDigestUser (const QString &username, const QString &password, const QString &adminPassword) |
| static bool | RemoveDigestUser (const QString &username, const QString &password) |
| static bool | ChangeDigestUserPassword (const QString &username, const QString &oldPassword, const QString &newPassword) |
Private Attributes | |
| QMap< QString, MythUserSession > | m_sessionList |
We use digest authentication because it protects the password over unprotected networks. Even if traffic between the client and server is captured, the digest and password cannot be determined and the attacker cannot gain system access in that way. It cannot protect against a full man-in-the-middle but if that really is a concern, users should setup TLS.
The digest isn't very strong if it leaked, but for that to happen the database would need to be breached, at which point the MythTV system is already heavily compromised.
Definition at line 102 of file mythsession.h.
| MythSessionManager::MythSessionManager | ( | ) |
Definition at line 111 of file mythsession.cpp.
|
static |
Check if the given user exists but not whether there is a valid session open for them!
| username |
Definition at line 151 of file mythsession.cpp.
Referenced by AddDigestUser(), HTTPRequest::BasicAuthentication(), ChangeDigestUserPassword(), HTTPRequest::DigestAuthentication(), Myth::ManageUrlProtection(), V2Myth::ManageUrlProtection(), and RemoveDigestUser().
| bool MythSessionManager::IsValidSession | ( | const QString & | sessionToken | ) |
Check if the session token is valid.
| sessionToken |
Definition at line 242 of file mythsession.cpp.
Referenced by GetSession().
| MythUserSession MythSessionManager::GetSession | ( | const QString & | sessionToken | ) |
Load the session details and return.
| sessionToken | If no matching session exists an empty MythUserSession object is returned |
Definition at line 175 of file mythsession.cpp.
Referenced by LoginUser(), and HTTPRequest::ParseRequest().
|
static |
Load the password digest for comparison in the HTTP Auth code.
| username | The username should be checked for validity first |
Definition at line 224 of file mythsession.cpp.
Referenced by AddDigestUser(), ChangeDigestUserPassword(), HTTPRequest::DigestAuthentication(), Myth::ManageUrlProtection(), V2Myth::ManageUrlProtection(), and RemoveDigestUser().
| MythUserSession MythSessionManager::LoginUser | ( | const QString & | username, |
| const QByteArray & | digest, | ||
| const QString & | client = "" |
||
| ) |
Login user by digest.
| username | |
| digest | Password Digest (RFC 2617) |
| client | Optional string identifying this client uniquely, will be created automatically if absent |
Definition at line 282 of file mythsession.cpp.
Referenced by HTTPRequest::BasicAuthentication(), HTTPRequest::DigestAuthentication(), and LoginUser().
| MythUserSession MythSessionManager::LoginUser | ( | const QString & | username, |
| const QString & | password, | ||
| const QString & | client = "" |
||
| ) |
Login user by password - convenient alternative to using the digest.
| username | |
| password | Clear text password string |
| client | Optional string identifying this client uniquely, will be created automatically if absent |
Definition at line 339 of file mythsession.cpp.
|
static |
Generate a digest string.
| username | |
| password |
Definition at line 536 of file mythsession.cpp.
Referenced by AddDigestUser(), ChangeDigestUserPassword(), LoginUser(), Myth::ManageUrlProtection(), V2Myth::ManageUrlProtection(), and RemoveDigestUser().
|
static |
Manage digest user entries.
| action | requires one from: DigestUserActions |
| username | always required |
| password | always required |
| newPassword | if action=DIGEST_USER_CHANGE_PW |
| adminPassword | if action=DIGEST_USER_ADD |
Definition at line 550 of file mythsession.cpp.
Referenced by Myth::ManageDigestUser(), and V2Myth::ManageDigestUser().
|
private |
Load the values from the sessions table on startup.
Definition at line 120 of file mythsession.cpp.
Referenced by MythSessionManager().
|
private |
Update the session timestamps.
Definition at line 269 of file mythsession.cpp.
Referenced by IsValidSession().
|
private |
Checks if an existing session for this user and client exists.
| username | |
| client | We may want to reuse this session or destroy this session |
Definition at line 192 of file mythsession.cpp.
|
private |
Add new user session to the database and cache.
Definition at line 351 of file mythsession.cpp.
Referenced by LoginUser().
|
private |
Removes user session from the database and cache.
Definition at line 388 of file mythsession.cpp.
Referenced by GetSession(), and IsValidSession().
|
staticprivate |
Definition at line 410 of file mythsession.cpp.
Referenced by ManageDigestUser().
|
staticprivate |
Definition at line 451 of file mythsession.cpp.
Referenced by ManageDigestUser().
|
staticprivate |
Definition at line 490 of file mythsession.cpp.
Referenced by ManageDigestUser().
|
private |
Definition at line 224 of file mythsession.h.
Referenced by CreateUserSession(), DestroyUserSession(), GetSession(), IsValidSession(), LoadSessions(), and UpdateSession().
1.8.17