Annotation of src/include/login_cap.h, Revision 1.1
1.1 ! millert 1: /* $OpenBSD$ */
! 2:
! 3: /*-
! 4: * Copyright (c) 1995,1997 Berkeley Software Design, Inc. All rights reserved.
! 5: *
! 6: * Redistribution and use in source and binary forms, with or without
! 7: * modification, are permitted provided that the following conditions
! 8: * are met:
! 9: * 1. Redistributions of source code must retain the above copyright
! 10: * notice, this list of conditions and the following disclaimer.
! 11: * 2. Redistributions in binary form must reproduce the above copyright
! 12: * notice, this list of conditions and the following disclaimer in the
! 13: * documentation and/or other materials provided with the distribution.
! 14: * 3. All advertising materials mentioning features or use of this software
! 15: * must display the following acknowledgement:
! 16: * This product includes software developed by Berkeley Software Design,
! 17: * Inc.
! 18: * 4. The name of Berkeley Software Design, Inc. may not be used to endorse
! 19: * or promote products derived from this software without specific prior
! 20: * written permission.
! 21: *
! 22: * THIS SOFTWARE IS PROVIDED BY BERKELEY SOFTWARE DESIGN, INC. ``AS IS'' AND
! 23: * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
! 24: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
! 25: * ARE DISCLAIMED. IN NO EVENT SHALL BERKELEY SOFTWARE DESIGN, INC. BE LIABLE
! 26: * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
! 27: * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
! 28: * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
! 29: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
! 30: * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
! 31: * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
! 32: * SUCH DAMAGE.
! 33: *
! 34: * BSDI $From: login_cap.h,v 2.11 1999/09/08 18:11:57 prb Exp $
! 35: */
! 36:
! 37: #define LOGIN_DEFCLASS "default"
! 38: #define LOGIN_DEFSTYLE "passwd"
! 39: #define LOGIN_DEFSERVICE "login"
! 40: #define LOGIN_DEFUMASK 022
! 41: #define _PATH_LOGIN_CONF "/etc/login.conf"
! 42: #define _PATH_AUTHPROG "/usr/libexec/auth/login_"
! 43:
! 44: #define LOGIN_SETGROUP 0x0001 /* Set group */
! 45: #define LOGIN_SETLOGIN 0x0002 /* Set login */
! 46: #define LOGIN_SETPATH 0x0004 /* Set path */
! 47: #define LOGIN_SETPRIORITY 0x0008 /* Set priority */
! 48: #define LOGIN_SETRESOURCES 0x0010 /* Set resource limits */
! 49: #define LOGIN_SETUMASK 0x0020 /* Set umask */
! 50: #define LOGIN_SETUSER 0x0040 /* Set user */
! 51: #define LOGIN_SETALL 0x007f /* Set all. */
! 52:
! 53: #define BI_AUTH "authorize" /* Accepted authentication */
! 54: #define BI_REJECT "reject" /* Rejected authentication */
! 55: #define BI_CHALLENGE "reject challenge" /* Reject with a challenge */
! 56: #define BI_SILENT "reject silent" /* Reject silently */
! 57: #define BI_REMOVE "remove" /* remove file on error */
! 58: #define BI_ROOTOKAY "authorize root" /* root authenticated */
! 59: #define BI_SECURE "authorize secure" /* okay on non-secure line */
! 60: #define BI_SETENV "setenv" /* set environment variable */
! 61: #define BI_UNSETENV "unsetenv" /* unset environment variable */
! 62: #define BI_VALUE "value" /* set local variable */
! 63: #define BI_EXPIRED "reject expired" /* account expired */
! 64: #define BI_PWEXPIRED "reject pwexpired" /* password expired */
! 65:
! 66: /*
! 67: * bits which can be returned by authenticate()/auth_scan()
! 68: */
! 69: #define AUTH_OKAY 0x01 /* user authentciated */
! 70: #define AUTH_ROOTOKAY 0x02 /* authenticated as root */
! 71: #define AUTH_SECURE 0x04 /* secure login */
! 72: #define AUTH_SILENT 0x08 /* silent rejection */
! 73: #define AUTH_CHALLENGE 0x10 /* a challenge was given */
! 74: #define AUTH_EXPIRED 0x20 /* account expired */
! 75: #define AUTH_PWEXPIRED 0x40 /* password expired */
! 76:
! 77: #define AUTH_ALLOW (AUTH_OKAY | AUTH_ROOTOKAY | AUTH_SECURE)
! 78:
! 79: typedef struct {
! 80: char *lc_class;
! 81: char *lc_cap;
! 82: char *lc_style;
! 83: } login_cap_t;
! 84:
! 85: #include <sys/cdefs.h>
! 86: __BEGIN_DECLS
! 87: struct passwd;
! 88:
! 89: login_cap_t *login_getclass __P((char *));
! 90: void login_close __P((login_cap_t *));
! 91: int login_getcapbool __P((login_cap_t *, char *, u_int));
! 92: quad_t login_getcapnum __P((login_cap_t *, char *, quad_t, quad_t));
! 93: quad_t login_getcapsize __P((login_cap_t *, char *, quad_t, quad_t));
! 94: char *login_getcapstr __P((login_cap_t *, char *, char *, char *));
! 95: quad_t login_getcaptime __P((login_cap_t *, char *, quad_t, quad_t));
! 96: char *login_getstyle __P((login_cap_t *, char *, char *));
! 97:
! 98: int secure_path __P((char *));
! 99: int setclasscontext __P((char *, u_int));
! 100: int setusercontext __P((login_cap_t *, struct passwd *, uid_t, u_int));
! 101:
! 102: /*
! 103: * Routines for authentication
! 104: * Most of these will be deprecated in a future release
! 105: */
! 106: int auth_approve __P((login_cap_t *, char *, char *));
! 107: int auth_cat __P((char *));
! 108: int auth_check __P((char *, char *, char *, char *, int *));
! 109: void auth_checknologin __P((login_cap_t *));
! 110: void auth_env __P((void));
! 111: char *auth_mkvalue __P((char *));
! 112: int auth_response __P((char *, char *, char *, char *, int *, char *, char *));
! 113: void auth_rmfiles __P((void));
! 114: int auth_scan __P((int));
! 115: int auth_script __P((char *, ...));
! 116: int auth_script_data __P((char *, int, char *, ...));
! 117: char *auth_value __P((char *));
! 118: int auth_setopt __P((char *, char *));
! 119: void auth_clropts __P((void));
! 120: __END_DECLS