Brought up to date the README and TODO files.

CASA-auth-token/non-java/README

@@ -1,3 +1,26 @@
+/***********************************************************************
+ * 
+ *  Copyright (C) 2006 Novell, Inc. All Rights Reserved.
+ *
+ *  This library is free software; you can redistribute it and/or
+ *  modify it under the terms of the GNU Lesser General Public
+ *  License as published by the Free Software Foundation; version 2.1
+ *  of the License.
+ *
+ *  This library is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ *  Library Lesser General Public License for more details.
+ *
+ *  You should have received a copy of the GNU Lesser General Public
+ *  License along with this library; if not, Novell, Inc.
+ * 
+ *  To contact Novell about this file by physical or electronic mail, 
+ *  you may find current contact information at www.novell.com.
+ * 
+ *  Author: Juan Carlos Luciani <jluciani@novell.com>
+ *
+ ***********************************************************************/
 /***********************************************************************
  *
  *  README for auth_token
@@ -45,7 +68,7 @@ cached. Once the client is authenticated to the ATS, it then requests Authentica
 Tokens from it using the obtained Session Token. When an ATS receives a request for
 an Authentication Token, it then verifies the validity of the received Session Token
 and then it creates the appropriate Identity Token for the target service which it then
-embeds within the Authentication Token. The indentity information contained in the
+embeds within the Authentication Token. The identity information contained in the
 Identity Token as well as the type of Identity Token utilized depends on what is
 configured for the tatget service.
 

CASA-auth-token/non-java/TODO

@@ -13,5 +13,4 @@ details outstanding items at the project level.
 
 OUTSTANDING ITEMS
 
-- Plug-in auth_token into the CASA make system.
-
+- Allow the Windows client to be built under Cygwin.

CASA-auth-token/non-java/client/README

@@ -1,3 +1,26 @@
+/***********************************************************************
+ * 
+ *  Copyright (C) 2006 Novell, Inc. All Rights Reserved.
+ *
+ *  This library is free software; you can redistribute it and/or
+ *  modify it under the terms of the GNU Lesser General Public
+ *  License as published by the Free Software Foundation; version 2.1
+ *  of the License.
+ *
+ *  This library is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ *  Library Lesser General Public License for more details.
+ *
+ *  You should have received a copy of the GNU Lesser General Public
+ *  License along with this library; if not, Novell, Inc.
+ * 
+ *  To contact Novell about this file by physical or electronic mail, 
+ *  you may find current contact information at www.novell.com.
+ * 
+ *  Author: Juan Carlos Luciani <jluciani@novell.com>
+ *
+ ***********************************************************************/
 /***********************************************************************
  *
  *  README for libcasa_c_authtoken
@@ -17,8 +40,8 @@ libcasa_c_authtoken utilizes mechanism plug-ins for authenticating to ATSs.
 The client auth_token package installs mechanisms for the support of Kerberos5
 and Username/Password authentication. To configure additional authentication mechanism
 plug-ins, place their configuration file in the folder for CASA Authentication Token module
-configuration. The path to this folder under linux is /etc/opt/novell/CASA/authtoken.d/modules.d.
-The path to this folder under Windows is \Program Files\novell\CASA\auth\mechanisms. The name of
+configuration. The path to this folder under linux is /etc/CASA/authtoken.d/client.d/mechanisms.d/.
+The path to this folder under Windows is \Program Files\novell\CASA\Etc\Auth\Mechanisms\. The name of
 the plug-in configuration file is related to the authentication mechanism type in the following
 manner: AuthenticationMechanismTypeName.conf.
 

CASA-auth-token/non-java/client/TODO

@@ -10,9 +10,4 @@ This file contains a list of the items still outstanding for libcasa_c_authtoken
 
 OUTSTANDING ITEMS
 
-- Implementation of Linux specific code.
-- Re-structure the token cache to differentiate between Session Tokens and Authentication Tokens.
-- Use the CASA cache as the token store.
-- Switch Client/Server protocol to use SOAP Messages.
-- Enable communications over HTTPS instead of over HTTP.
- 
+None.

CASA-auth-token/non-java/client/csharp/README

@@ -0,0 +1,68 @@
+/***********************************************************************
+ * 
+ *  Copyright (C) 2006 Novell, Inc. All Rights Reserved.
+ *
+ *  This library is free software; you can redistribute it and/or
+ *  modify it under the terms of the GNU Lesser General Public
+ *  License as published by the Free Software Foundation; version 2.1
+ *  of the License.
+ *
+ *  This library is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ *  Library Lesser General Public License for more details.
+ *
+ *  You should have received a copy of the GNU Lesser General Public
+ *  License along with this library; if not, Novell, Inc.
+ * 
+ *  To contact Novell about this file by physical or electronic mail, 
+ *  you may find current contact information at www.novell.com.
+ * 
+ *  Author: Juan Carlos Luciani <jluciani@novell.com>
+ *
+ ***********************************************************************/
+/***********************************************************************
+ *
+ *  README for Novell.Casa.Client.Auth CSHARP Library
+ *
+ ***********************************************************************/
+
+INTRODUCTION
+
+Novell.Casa.Client.Auth CSHARP Library provides a class for CSHARP client
+applications to obtain authentication tokens from the CASA Authentication
+Token Infrastructure.
+
+CLIENT APPLICATION PROGRAMMING NOTES
+
+The Novell.Casa.Client.Auth.Authtoken class provides static method ObtainAuthToken()
+to allow client applications to obtain CASA Authentication Tokens. The caller must
+supply the name of the service to which it wants to authenticate along with the name
+of the host where it resides to the static method. The returned authentication token
+is a Base64 encoded string.
+
+Applications utilizing CASA Authentication Tokens as passwords in protocols that require the
+transfer of user name and password credentials should verify or remove any password length limits
+as the length of CASA Authentication Tokens may be over 1K bytes. The size of the CASA Authentication
+Tokens is directly dependent on the amount of identity information configured as required by the
+consuming service. These applications should also set the user name to "CasaPrincipal".
+
+For examples of code which uses the Novell.Casa.Client.Auth.Authtoken class look at the test
+application under the test folder.
+
+SECURITY CONSIDERATIONS
+
+CASA Authentication Tokens when compromised can be used to either impersonate
+a user or to obtain identity information about the user. Because of this it is
+important that the tokens be secured by applications making use of them. It is
+recommended that the tokens be transmitted using SSL.
+ 
+
+
+
+                
+
+
+
+
+

CASA-auth-token/non-java/client/csharp/TODO

@@ -0,0 +1,15 @@
+/***********************************************************************
+ *
+ *  TODO for Novell.Casa.Client.Auth CSHARP Library
+ *
+ ***********************************************************************/
+
+INTRODUCTION
+
+This file contains a list of the items still outstanding for the
+Novell.Casa.Client.Auth CSHARP library.
+
+OUTSTANDING ITEMS
+
+- Include it in the Linux Client build/rpm.
+ 

CASA-auth-token/non-java/client/mechanisms/krb5/README

@@ -1,3 +1,26 @@
+/***********************************************************************
+ * 
+ *  Copyright (C) 2006 Novell, Inc. All Rights Reserved.
+ *
+ *  This library is free software; you can redistribute it and/or
+ *  modify it under the terms of the GNU Lesser General Public
+ *  License as published by the Free Software Foundation; version 2.1
+ *  of the License.
+ *
+ *  This library is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ *  Library Lesser General Public License for more details.
+ *
+ *  You should have received a copy of the GNU Lesser General Public
+ *  License along with this library; if not, Novell, Inc.
+ * 
+ *  To contact Novell about this file by physical or electronic mail, 
+ *  you may find current contact information at www.novell.com.
+ * 
+ *  Author: Juan Carlos Luciani <jluciani@novell.com>
+ *
+ ***********************************************************************/
 /***********************************************************************
  *
  *  README for krb5mech

CASA-auth-token/non-java/client/mechanisms/krb5/TODO

@@ -10,5 +10,4 @@ This file contains a list of the items still outstanding for krb5mech.
 
 OUTSTANDING ITEMS
 
-- Implementation of Linux specific code.
- 
+None. 

CASA-auth-token/non-java/client/mechanisms/pwd/README

@@ -1,3 +1,26 @@
+/***********************************************************************
+ * 
+ *  Copyright (C) 2006 Novell, Inc. All Rights Reserved.
+ *
+ *  This library is free software; you can redistribute it and/or
+ *  modify it under the terms of the GNU Lesser General Public
+ *  License as published by the Free Software Foundation; version 2.1
+ *  of the License.
+ *
+ *  This library is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ *  Library Lesser General Public License for more details.
+ *
+ *  You should have received a copy of the GNU Lesser General Public
+ *  License along with this library; if not, Novell, Inc.
+ * 
+ *  To contact Novell about this file by physical or electronic mail, 
+ *  you may find current contact information at www.novell.com.
+ * 
+ *  Author: Juan Carlos Luciani <jluciani@novell.com>
+ *
+ ***********************************************************************/
 /***********************************************************************
  *
  *  README for pwmech

CASA-auth-token/non-java/client/mechanisms/pwd/TODO

@@ -10,5 +10,4 @@ This file contains a list of the items still outstanding for pwmech.
 
 OUTSTANDING ITEMS
 
-- Implementation of Linux specific code.
- 
+None. 

CASA-auth-token/non-java/package/linux/CASA_auth_token_native.changes

@@ -1,3 +1,14 @@
+-------------------------------------------------------------------
+Tue Oct 10 08:46:22 MDT 2006 - jluciani@novell.com
+
+- Brought up to date the README and TODO files. 
+
+-------------------------------------------------------------------
+Mon Oct  9 09:28:37 MDT 2006 - jluciani@novell.com
+
+- Cleaned up compiler warnings that were present in some of the
+  components. 
+
 -------------------------------------------------------------------
 Fri Oct  6 14:22:54 MDT 2006 - schoi@novell.com
 

CASA-auth-token/non-java/server/ApacheSupport/2.2/README

@@ -1,3 +1,26 @@
+/***********************************************************************
+ * 
+ *  Copyright (C) 2006 Novell, Inc. All Rights Reserved.
+ *
+ *  This library is free software; you can redistribute it and/or
+ *  modify it under the terms of the GNU Lesser General Public
+ *  License as published by the Free Software Foundation; version 2.1
+ *  of the License.
+ *
+ *  This library is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ *  Library Lesser General Public License for more details.
+ *
+ *  You should have received a copy of the GNU Lesser General Public
+ *  License along with this library; if not, Novell, Inc.
+ * 
+ *  To contact Novell about this file by physical or electronic mail, 
+ *  you may find current contact information at www.novell.com.
+ * 
+ *  Author: Juan Carlos Luciani <jluciani@novell.com>
+ *
+ ***********************************************************************/
 /***********************************************************************
  *
  *  README for mod_authn_casa
@@ -35,9 +58,10 @@ for authenticating requests issued to mod_example:
     Require valid-user
 </Location>
 
-Note that the name specified in the AuthName directive should match the name
-configured under CASA for the authentication realm used by CASA to obtain
-identity information for the service.
+The AuthName directive specifies the name of the authentication REALM relayed
+by the server to HTTP clients when requesting that the they authenticate using
+the Basic Authentication scheme. The AuthName can be used by the HTTP client to
+realize that the server is expecting CASA Authentication Token materials.
 
 mod_authn_casa supports the following configuration directives:
 

CASA-auth-token/non-java/server/AuthTokenValidate/README

@@ -1,3 +1,26 @@
+/***********************************************************************
+ * 
+ *  Copyright (C) 2006 Novell, Inc. All Rights Reserved.
+ *
+ *  This library is free software; you can redistribute it and/or
+ *  modify it under the terms of the GNU Lesser General Public
+ *  License as published by the Free Software Foundation; version 2.1
+ *  of the License.
+ *
+ *  This library is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ *  Library Lesser General Public License for more details.
+ *
+ *  You should have received a copy of the GNU Lesser General Public
+ *  License along with this library; if not, Novell, Inc.
+ * 
+ *  To contact Novell about this file by physical or electronic mail, 
+ *  you may find current contact information at www.novell.com.
+ * 
+ *  Author: Juan Carlos Luciani <jluciani@novell.com>
+ *
+ ***********************************************************************/
 /***********************************************************************
  *
  *  README for libcasa_s_authtoken
@@ -16,9 +39,8 @@ module to perform the credential validation. To facilitate this, CASA Authentica
 provides PAM, Apache, and JAAS modules that can be used to validate credentials containing
 CASA Authentication tokens,
 
-CONFIGURING TRUSTED AUTHENTICATION TOKEN SERVICES
-
-tbd. Add info about the installation of public certificates and trusted certificate authorities.
+libcasa_s_authtoken relies on the CasaAuthtokenValidateD service in order to perform its
+functions. To learn more about CasaAuthtokenValidateD see the Svc folder.
 
 CONFIGURING ADDITIONAL IDENTITY TOKEN PROVIDER MODULES
 
@@ -30,7 +52,7 @@ is configured for CASA Authentication. The default identity token type is CasaId
 libcasa_s_authtoken supports different identity token types through an API that allows for the
 configuration of different Identity Token Provider plug-ins. An Identity Token Provider plug-in
 is configured by placing a configuration file for the plug-ins in the
-/etc/opt/CASA/authtoken.d/modules.d folder. The name of the plug-in configuration file is related
+/etc/CASA/authtoken.d/modules.d folder. The name of the plug-in configuration file is related
 to the identity token type in the following manner: IdentityTokenTypeName.conf.
 
 Identity Token Provider plug-in configuration files must must contain a directive indicating the

CASA-auth-token/non-java/server/AuthTokenValidate/Svc/README

@@ -0,0 +1,80 @@
+/***********************************************************************
+ * 
+ *  Copyright (C) 2006 Novell, Inc. All Rights Reserved.
+ *
+ *  This library is free software; you can redistribute it and/or
+ *  modify it under the terms of the GNU Lesser General Public
+ *  License as published by the Free Software Foundation; version 2.1
+ *  of the License.
+ *
+ *  This library is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ *  Library Lesser General Public License for more details.
+ *
+ *  You should have received a copy of the GNU Lesser General Public
+ *  License along with this library; if not, Novell, Inc.
+ * 
+ *  To contact Novell about this file by physical or electronic mail, 
+ *  you may find current contact information at www.novell.com.
+ * 
+ *  Author: Juan Carlos Luciani <jluciani@novell.com>
+ *
+ ***********************************************************************/
+/***********************************************************************
+ *
+ *  README for CasaAuthtokenValidateD
+ *
+ ***********************************************************************/
+
+INTRODUCTION
+
+CasaAuthtokenValidateD provides a service that is utilized by libcasa_s_authtoken
+for the validation of CASA Authentication Tokens.
+
+Processes executing libcasa_s_authtoken communicate with CasaAuthTokenValidateD via
+domain sockets. CasaAuthTokenValidateD validates authentication tokens by invoking
+the appropriate CASA Authentication Token Java classes.
+
+COMMAND LINE PARAMETERS
+
+CasaAuthtokenValidateD has the following command line parameters:
+
+   -b BeginThreads
+
+      Optional parameter that specifies the initial number of threads utilized by the
+      service to process requests.
+
+   -g GrowThreads
+
+      Optional parameter that specifies the number of threads by which the service can
+      grow its thread pool utilized for processing requests.
+
+   -m MaxThreads
+
+      Optional parameter that specifies the maximum number of threads that the service
+      can have in its thread pool for processing requests.
+
+   -D DebugLevel
+
+      Optional parameter that specifies the level used for logging debugging information.
+      0 being the lowest debug level.
+
+   -d
+      Optional parameter that specifies that the service must be run as a daemon.
+
+SECURITY CONSIDERATIONS
+
+Appropriate rights need to be set on the folder used by CasaAuthtokenValidateD to
+create its listeing socket to keep other services from hijacking it and taking on
+the validation of CASA authentication sockets. CasaAuthtokenValidateD creates its
+listen socket in the /var/lib/CASA/authtoken/validate/ folder.
+
+
+
+                
+
+
+
+
+

CASA-auth-token/non-java/server/AuthTokenValidate/Svc/TODO

@@ -0,0 +1,13 @@
+/***********************************************************************
+ *
+ *  TODO for CasaAuthtokenValidateD
+ *
+ ***********************************************************************/
+
+INTRODUCTION
+
+This file contains a list of the items still outstanding for CasaAuthtokenValidateD.
+
+OUTSTANDING ITEMS
+
+None.

CASA-auth-token/non-java/server/AuthTokenValidate/TODO

@@ -10,6 +10,4 @@ This file contains a list of the items still outstanding for libcasa_s_authtoken
 
 OUTSTANDING ITEMS
 
-- Change AuthTokens to be SOAP messages secured with WS-Security and WS-Trust.
-- Implement CheckAuthToken().
-- Finish README documentation.
+None.

CASA-auth-token/non-java/server/AuthTokenValidate/idenTokenProviders/casa/README

@@ -1,3 +1,26 @@
+/***********************************************************************
+ * 
+ *  Copyright (C) 2006 Novell, Inc. All Rights Reserved.
+ *
+ *  This library is free software; you can redistribute it and/or
+ *  modify it under the terms of the GNU Lesser General Public
+ *  License as published by the Free Software Foundation; version 2.1
+ *  of the License.
+ *
+ *  This library is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ *  Library Lesser General Public License for more details.
+ *
+ *  You should have received a copy of the GNU Lesser General Public
+ *  License along with this library; if not, Novell, Inc.
+ * 
+ *  To contact Novell about this file by physical or electronic mail, 
+ *  you may find current contact information at www.novell.com.
+ * 
+ *  Author: Juan Carlos Luciani <jluciani@novell.com>
+ *
+ ***********************************************************************/
 /***********************************************************************
  *
  *  README for casa_identoken

CASA-auth-token/non-java/server/PamSupport/README

@@ -1,3 +1,26 @@
+/***********************************************************************
+ * 
+ *  Copyright (C) 2006 Novell, Inc. All Rights Reserved.
+ *
+ *  This library is free software; you can redistribute it and/or
+ *  modify it under the terms of the GNU Lesser General Public
+ *  License as published by the Free Software Foundation; version 2.1
+ *  of the License.
+ *
+ *  This library is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ *  Library Lesser General Public License for more details.
+ *
+ *  You should have received a copy of the GNU Lesser General Public
+ *  License along with this library; if not, Novell, Inc.
+ * 
+ *  To contact Novell about this file by physical or electronic mail, 
+ *  you may find current contact information at www.novell.com.
+ * 
+ *  Author: Juan Carlos Luciani <jluciani@novell.com>
+ *
+ ***********************************************************************/
 /***********************************************************************
  *
  *  README for pam_casaauthtok

CASA-auth-token/non-java/utilities/IpcLibs/README

@@ -1,3 +1,26 @@
+/***********************************************************************
+ * 
+ *  Copyright (C) 2006 Novell, Inc. All Rights Reserved.
+ *
+ *  This library is free software; you can redistribute it and/or
+ *  modify it under the terms of the GNU Lesser General Public
+ *  License as published by the Free Software Foundation; version 2.1
+ *  of the License.
+ *
+ *  This library is distributed in the hope that it will be useful,
+ *  but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ *  Library Lesser General Public License for more details.
+ *
+ *  You should have received a copy of the GNU Lesser General Public
+ *  License along with this library; if not, Novell, Inc.
+ * 
+ *  To contact Novell about this file by physical or electronic mail, 
+ *  you may find current contact information at www.novell.com.
+ * 
+ *  Author: Juan Carlos Luciani <jluciani@novell.com>
+ *
+ ***********************************************************************/
 /***********************************************************************
  *
  *  README for IpcLibs