Added the capability to scope credential store access. This is only allowed by miCASA if the current user is running in the context of system. This is useful to system type applications doing work on behalf of other users.

2006-10-17 17:55:09 +00:00
parent bb242e5efa
commit 3f093e092d
7 changed files with 516 additions and 211 deletions
--- a/CASA-auth-token/non-java/client/windows/client.vcproj
+++ b/CASA-auth-token/non-java/client/windows/client.vcproj
@@ -21,7 +21,7 @@
 				Name="VCCLCompilerTool"
 				AdditionalOptions="/D &quot;XML_STATIC&quot;"
 				Optimization="0"
-				AdditionalIncludeDirectories=".;..\;..\..\include;&quot;\Program Files\novell\casa\include&quot;;&quot;C:\Dev\Expat-2.0.0\Source\lib&quot;"
+				AdditionalIncludeDirectories=".;..\;..\..\include;&quot;C:\Dev\casa\CASA-auth-token\non-java\include\windows&quot;;&quot;\Program Files\novell\casa\include&quot;;&quot;C:\Dev\Expat-2.0.0\Source\lib&quot;"
 				PreprocessorDefinitions="WIN32;_DEBUG;_CONSOLE"
 				MinimalRebuild="TRUE"
 				BasicRuntimeChecks="3"
@@ -81,7 +81,7 @@ copy $(SolutionDir)client\windows\authtoken.lib \&quot;Program Files&quot;\novel
 			<Tool
 				Name="VCCLCompilerTool"
 				AdditionalOptions="/D &quot;XML_STATIC&quot;"
-				AdditionalIncludeDirectories=".;..\;..\..\include;&quot;\Program Files\novell\casa\include&quot;;&quot;C:\Dev\Expat-2.0.0\Source\lib&quot;"
+				AdditionalIncludeDirectories=".;..\;..\..\include;&quot;C:\Dev\casa\CASA-auth-token\non-java\include\windows&quot;;&quot;\Program Files\novell\casa\include&quot;;&quot;C:\Dev\Expat-2.0.0\Source\lib&quot;"
 				PreprocessorDefinitions="WIN32;NDEBUG;_CONSOLE"
 				RuntimeLibrary="4"
 				UsePrecompiledHeader="0"
@@ -188,6 +188,9 @@ copy $(SolutionDir)client\windows\authtoken.lib \&quot;Program Files&quot;\novel
 			<File
 				RelativePath="..\..\include\casa_c_authtoken.h">
 			</File>
+			<File
+				RelativePath="..\..\include\windows\casa_c_authtoken_ex.h">
+			</File>
 			<File
 				RelativePath="..\config_if.h">
 			</File>
--- a/CASA-auth-token/non-java/client/windows/dllsup.c
+++ b/CASA-auth-token/non-java/client/windows/dllsup.c
@@ -27,6 +27,7 @@
 #include "internal.h"
 #include <shlobj.h>
 #include <shlwapi.h>
+#include "casa_c_authtoken_ex.h"

 //===[ External data ]=====================================================
 extern
@@ -49,6 +50,75 @@ HANDLE g_hModule;
 HANDLE g_hModuleMutex;


+//++=======================================================================
+CasaStatus SSCS_CALL
+ObtainAuthTokenEx(
+   IN    const char *pServiceName,
+   IN    const char *pHostName,
+   INOUT char *pAuthTokenBuf,
+   INOUT int *pAuthTokenBufLen,
+   IN    void *pCredStoreScope)
+//
+//  Arguments: 
+//    pServiceName -
+//       Pointer to NULL terminated string that contains the
+//       name of the service to which the client is trying to
+//       authenticate.
+//               
+//    pHostName -
+//       Pointer to NULL terminated string that contains the
+//       name of the host where resides the service to which the
+//       client is trying to authenticate. Note that the name
+//       can either be a DNS name or a dotted IP address.
+//               
+//    pAuthTokenBuf -
+//       Pointer to buffer that will receive the authentication
+//       token. The length of this buffer is specified by the
+//       pAuthTokenBufLen parameter. Note that the the authentication
+//       token will be in the form of a NULL terminated string.
+//
+//    pAuthTokenBufLen -
+//       Pointer to integer that contains the length of the
+//       buffer pointed at by pAuthTokenBuf. Upon return of the
+//       function, the integer will contain the actual length
+//       of the authentication token if the function successfully
+//       completes or the buffer length required if the function
+//       fails because the buffer pointed at by pAuthTokenBuf is
+//       not large enough.
+//
+//    pCredStoreScope -
+//       Pointer to CASA structure for scoping credential store access
+//       to specific users. This can only be leveraged by applications
+//       running in the context of System.
+//   
+// Returns:
+//    Casa Status
+//                           
+// Description:
+//    Get authentication token to authenticate user to specified
+//    service at host. The user is scoped using the info associated
+//    with the magic cookie.
+//
+// L2
+//=======================================================================--
+{
+   CasaStatus        retStatus;
+
+   DbgTrace(1, "-ObtainAuthTokenEx- Start\n", 0);
+
+   // Call our internal worker
+   retStatus = ObtainAuthTokenInt(pServiceName,
+                                  pHostName,
+                                  pAuthTokenBuf,
+                                  pAuthTokenBufLen,
+                                  pCredStoreScope);
+
+   DbgTrace(1, "-ObtainAuthTokenEx- End, retStatus = %08X\n", retStatus);
+
+   return retStatus;
+}
+
+
 //++=======================================================================
 BOOL APIENTRY DllMain(
   HANDLE hModule,