diff options
Diffstat (limited to 'appl/wm/getauthinfo.b')
| -rw-r--r-- | appl/wm/getauthinfo.b | 291 |
1 files changed, 291 insertions, 0 deletions
diff --git a/appl/wm/getauthinfo.b b/appl/wm/getauthinfo.b new file mode 100644 index 00000000..0e03cc85 --- /dev/null +++ b/appl/wm/getauthinfo.b @@ -0,0 +1,291 @@ +implement WmGetauthinfo; + +include "sys.m"; + sys: Sys; + +include "security.m"; + login: Login; + +include "draw.m"; + draw: Draw; + +include "tk.m"; + tk: Tk; + +include "tkclient.m"; + tkclient: Tkclient; + +include "dialog.m"; + dialog: Dialog; + +include "keyring.m"; + kr: Keyring; + +include "string.m"; + +include "sh.m"; + +# +# Tk version of getauthinfo command +# +WmGetauthinfo: module +{ + init: fn(ctxt: ref Draw->Context, argv: list of string); +}; + +Wm: module +{ + init: fn(ctxt: ref Draw->Context, argv: list of string); +}; + +cfg := array[] of { + "frame .all -borderwidth 2 -relief raised", + + "frame .u", + "label .u.l -text {User } -anchor w", + "entry .u.e", + "pack .u.l .u.e -side left -in .u -expand 1", + "bind .u.e <Key-\n> {send cmd u}", + "focus .u.e", + + "frame .p", + "label .p.l -text {Password} -anchor w", + "entry .p.e -show *", + "pack .p.l .p.e -side left -in .p -expand 1", + "bind .p.e <Key-\n> {send cmd p}", + + "frame .s", + "label .s.l -text {Signer } -anchor w", + "entry .s.e", + "pack .s.l .s.e -side left -in .s -expand 1", + "bind .s.e <Key-\n> {send cmd s}", + + "frame .f", + "label .f.l -text {Save key} -anchor w", + "entry .f.e", + "pack .f.l .f.e -side left -in .f -expand 1", + "bind .f.e <Key-\n> {send cmd f}", + + "frame .b", + "radiobutton .b.p -variable save -value p -anchor w -text '" + "Permanent", + "radiobutton .b.t -variable save -value t -anchor w -text '" + "Temporary", + "pack .b.p .b.t -side right -in .b -expand 1", + ".b.p invoke", + "pack .u .p .s .f .b -in .all", + "pack .Wm_t .all -fill x -expand 1", + "update" +}; + +about : con "Generate keys and\n" + + "request certificate for\n" + + "mounting remote server"; + + +init(ctxt: ref Draw->Context, nil: list of string) +{ + sys = load Sys Sys->PATH; + if (ctxt == nil) { + sys->fprint(sys->fildes(2), "getauthinfo: no window context\n"); + raise "fail:bad context"; + } + kr = load Keyring Keyring->PATH; + str := load String String->PATH; + + draw = load Draw Draw->PATH; + tk = load Tk Tk->PATH; + + tkclient = load Tkclient Tkclient->PATH; + dialog = load Dialog Dialog->PATH; + tkclient->init(); + dialog->init(); + + (top, wmctl) := tkclient->toplevel(ctxt, "", + "Obtain Certificate for Server", Tkclient->Help); + for (c:=0; c<len cfg; c++) + tk->cmd(top, cfg[c]); + cmd := chan of string; + tk->namechan(top, cmd, "cmd"); + + login = load Login Login->PATH; + if(login == nil){ + dialog->prompt(ctxt, top.image, "error -fg red", "Error", + "Cannot load " + Login->PATH, 0, "Exit"::nil); + exit; + } + + # start interactive + usr := user(); + passwd := ""; + signer := defaultsigner(); + dir:= ""; + file := "net!"; + path := ""; + tk->cmd(top, ".u.e insert end '" + usr); + tk->cmd(top, ".s.e insert end '" + signer); + tk->cmd(top, "update"); + tkclient->onscreen(top, nil); + tkclient->startinput(top, "kbd"::"ptr"::nil); + info : ref Keyring->Authinfo; + for(;;){ + alt { + s := <-top.ctxt.kbd => + tk->keyboard(top, s); + s := <-top.ctxt.ptr => + tk->pointer(top, *s); + s := <-top.ctxt.ctl or + s = <-top.wreq => + tkclient->wmctl(top, s); + menu := <-wmctl => + case menu { + "exit" => + exit; + "help" => + dialog->prompt(ctxt, top.image, "info -fg green", "About", + about, 0, "OK"::nil); + } + tkclient->wmctl(top, menu); + rdy := <-cmd => + case (rdy[0]) { + 'u' => + usr = tk->cmd(top, ".u.e get"); + if(usr == "") + tk->cmd(top, "focus .u.e; update"); + else { + dir = "/usr/" + usr + "/keyring/"; + path = dir + file; + tk->cmd(top, ".f.e delete 0 end"); + tk->cmd(top, ".f.e insert end '" + path); + tk->cmd(top, "focus .p.e; update"); + } + continue; + 'p' => + passwd = tk->cmd(top, ".p.e get"); + if(passwd == "") + tk->cmd(top, "focus .p.e; update"); + else + tk->cmd(top, "focus .s.e; update"); + continue; + 's' => + signer = tk->cmd(top, ".s.e get"); + if(signer == "") + tk->cmd(top, "focus .s.e"); + else { + file = "net!" + signer; + path = dir + file; + tk->cmd(top, ".f.e delete 0 end"); + tk->cmd(top, ".f.e insert end " + path); + tk->cmd(top, "focus .f.e; update"); + } + continue; + 'f' => + path = tk->cmd(top, ".f.e get"); + if(path == "") { + tk->cmd(top, "focus .f.e; update"); + continue; + } + + # start encrypt key exchange + addr := "net!"+signer+"!inflogin"; + tk->cmd(top, "cursor -bitmap cursor.wait"); + err: string; + (err, info) = login->login(usr, passwd, addr); + tk->cmd(top, "cursor -default"); + if(info == nil){ + dialog->prompt(ctxt, top.image, "warning -fg yellow", "Warning", + err, 0, "Continue"::nil); + tk->cmd(top, ".p.e delete 0 end"); + tk->cmd(top, "focus .p.e"); + continue; + } + + # save the info for later access + save := tk->cmd(top, "variable save"); + (dir, file) = str->splitr(path, "/"); + if(save[0] == 't') + spawn save2file(dir, file); + + tk->cmd(top, "cursor -default"); + if(kr->writeauthinfo(path, info) < 0){ + dialog->prompt(ctxt, top.image, "error -fg red", "Error", + "Can't write to " + path, 0, "Exit"::nil); + exit; + } + if(save[0] == 'p') + dialog->prompt(ctxt, top.image, "info -fg green", "Notice", + "Authentication information is\nsaved in file:\n" + + path, 0, "OK"::nil); + else + dialog->prompt(ctxt, top.image, "info -fg green", "Notice", + "Authentication information is\nheld in a temporary file:\n" + + path, 0, "OK"::nil); + + return; + + } + } + } +} + + +user(): string +{ + sys = load Sys Sys->PATH; + + fd := sys->open("/dev/user", sys->OREAD); + if(fd == nil) + return ""; + + buf := array[Sys->NAMEMAX] of byte; + n := sys->read(fd, buf, len buf); + if(n < 0) + return ""; + + return string buf[0:n]; +} + +save2file(dir, file: string) +{ + if(sys->bind("#s", dir, Sys->MBEFORE) < 0) + exit; + fileio := sys->file2chan(dir, file); + if(fileio != nil) + exit; + + sys->pctl(Sys->NEWPGRP, nil); + + infodata := array[0] of byte; + + for(;;) alt { + (off, nbytes, fid, rc) := <-fileio.read => + if(rc == nil) + break; + if(off > len infodata){ + rc <-= (infodata[off:off], nil); + } else { + if(off + nbytes > len infodata) + nbytes = len infodata - off; + rc <-= (infodata[off:off+nbytes], nil); + } + + (off, data, fid, wc) := <-fileio.write => + if(wc == nil) + break; + + if(off != len infodata){ + wc <-= (0, "cannot be rewritten"); + } else { + nid := array[len infodata+len data] of byte; + nid[0:] = infodata; + nid[len infodata:] = data; + infodata = nid; + wc <-= (len data, nil); + } + data = nil; + } +} + +# get default signer server name +defaultsigner(): string +{ + return "$SIGNER"; +} |