sergiotarxz
/
cualsea
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Adding group authentication to the daemon.

This commit is contained in:
sergiotarxz 2021-11-11 21:38:06 +01:00
parent 366c5ad081
commit d8cdb5ac64
1 changed files with 43 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

45
cualsea-server/lib/Cualsea/Server/MessageController.pm
View File

@ -6,6 +6,7 @@ use strict;
use warnings;
use Data::Dumper;
use Socket qw/SOL_SOCKET SO_PEERCRED/;
use Params::ValidationCompiler qw/validation_for/;
use Types::Standard qw/Object HashRef/;
@ -30,14 +31,54 @@ sub new {
my $socket = $params{socket};
my $message_manager = Cualsea::MessageManager->new( socket => $socket );
my $message = $message_manager->read_message;
if ( !$self->check_if_user_has_permissions( socket => $socket ) ) {
$self->write_no_permission( message_manager => $message_manager );
}
if ( !$self->check_is_command( message => $message ) ) {
$self->write_malformed(
message_manager => $message_manager );
$self->write_malformed( message_manager => $message_manager );
return;
}
$message_manager->write_message( message => $message );
}
}
{
my $validator = validation_for(
params => {
socket => { type => Object },
}
);
sub check_if_user_has_permissions {
my $self = shift;
my %params = $validator->(@_);
my $socket = $params{socket};
my ($pid, $uid, $gid) = unpack 'LLL', $socket->sockopt(SO_PEERCRED);
my $user = getpwuid($uid);
while (my ($name, undef, undef, $members) = getgrent()) {
if ($name eq 'cualsea') {
return List::Util::any { $_ eq $user } split ',', $members;
last;
}
}
}
}
{
my $validator = validation_for(
params => {
message_manager => { type => Object }
}
);
sub write_no_permission {
my $self = shift;
my %params = $validator->(@_);
my $message_manager = $params{message_manager};
$message_manager->write_message(
message => { is_error => 1, status => 403 } );
}
}
{
my $validator = validation_for(
params => {