mirror of
https://github.com/unrealircd/unrealircd.git
synced 2026-06-24 17:06:38 +02:00
Bram Matthys
b600dffdc8
method to authenticate users with SSL client certificates based on SHA256 fingerprints. This can be used instead of the already existing 'sslclientcert' so you don't have to use an external file. One way to get the SHA256 fingerprint would be: openssl x509 -in name-of-pem-file.pem -sha256 -noout -fingerprint Suggested and patch supplied by Jobe (#4019). - Added documentation on the new sslclientcertfp - Moved documentation on authentication types to one place and refer to it from each section (oper::password, vhost::password, link::password-receive, etc).
61 lines
1.7 KiB
C
61 lines
1.7 KiB
C
/************************************************************************
|
|
* Unreal Internet Relay Chat Daemon, include/auth.h
|
|
* Copyright (C) 2001 Carsten V. Munk (stskeeps@tspre.org)
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 1, or (at your option)
|
|
* any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
|
|
*
|
|
* $Id$
|
|
*/
|
|
|
|
typedef struct {
|
|
char *data;
|
|
short type;
|
|
} anAuthStruct;
|
|
|
|
#define AUTHTYPE_PLAINTEXT 0
|
|
#define AUTHTYPE_UNIXCRYPT 1
|
|
#define AUTHTYPE_MD5 2
|
|
#define AUTHTYPE_SHA1 3
|
|
#define AUTHTYPE_SSL_CLIENTCERT 4
|
|
#define AUTHTYPE_RIPEMD160 5
|
|
#define AUTHTYPE_SSL_CLIENTCERTFP 6
|
|
|
|
/* md5 is always available and enabled as of Unreal3.2.1 */
|
|
#define AUTHENABLE_MD5
|
|
#ifdef USE_SSL
|
|
#define AUTHENABLE_SHA1
|
|
#define AUTHENABLE_SSL_CLIENTCERT
|
|
#define AUTHENABLE_RIPEMD160
|
|
#define AUTHENABLE_SSL_CLIENTCERTFP
|
|
/* OpenSSL provides a crypt() */
|
|
#ifndef AUTHENABLE_UNIXCRYPT
|
|
#define AUTHENABLE_UNIXCRYPT
|
|
#if OPENSSL_VERSION_NUMBER >= 0x0090700fL
|
|
#ifndef HAVE_CRYPT
|
|
#define crypt DES_crypt
|
|
#endif
|
|
#endif
|
|
#endif
|
|
#endif
|
|
|
|
#ifdef _WIN32
|
|
#ifndef AUTHENABLE_SHA1
|
|
#define AUTHENABLE_SHA1
|
|
#endif
|
|
#endif
|
|
|
|
|
|
|