Главная Обзор Помощь
Вход
mirrors
/
Radicale
зеркало из https://github.com/Kozea/Radicale
1
0
Ответвить 0
Файлы Задачи 0 Вики
Дерево: 663fda4ecb
Ветки Метки
Radicale
/
radicale
/
acl
/
htpasswd.py

htpasswd.py 2.4 KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. # -*- coding: utf-8 -*-
    2. 

  2. #
    3. 

  3. # This file is part of Radicale Server - Calendar Server
    4. 

  4. # Copyright © 2008-2011 Guillaume Ayoub
    5. 

  5. # Copyright © 2008 Nicolas Kandel
    6. 

  6. # Copyright © 2008 Pascal Halter
    7. 

  7. #
    8. 

  8. # This library is free software: you can redistribute it and/or modify
    9. 

  9. # it under the terms of the GNU General Public License as published by
    10. 

  10. # the Free Software Foundation, either version 3 of the License, or
    11. 

  11. # (at your option) any later version.
    12. 

  12. #
    13. 

  13. # This library is distributed in the hope that it will be useful,
    14. 

  14. # but WITHOUT ANY WARRANTY; without even the implied warranty of
    15. 

  15. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    16. 

  16. # GNU General Public License for more details.
    17. 

  17. #
    18. 

  18. # You should have received a copy of the GNU General Public License
    19. 

  19. # along with Radicale.  If not, see <http://www.gnu.org/licenses/>.
    20. 

  20. 

  21. """
    22. 

  22. Htpasswd ACL.
    23. 

  23. 

  24. Load the list of login/password couples according a the configuration file
    25. 

  25. created by Apache ``htpasswd`` command. Plain-text, crypt and sha1 are
    26. 

  26. supported, but md5 is not (see ``htpasswd`` man page to understand why).
    27. 

  27. 

  28. """
    29. 

  29. 

  30. import base64
    31. 

  31. import hashlib
    32. 

  32. 

  33. from radicale import config
    34. 

  34. 

  35. 

  36. FILENAME = config.get("acl", "htpasswd_filename")
    37. 

  37. PERSONAL = config.getboolean("acl", "personal")
    38. 

  38. ENCRYPTION = config.get("acl", "htpasswd_encryption")
    39. 

  39. 

  40. 

  41. def _plain(hash_value, password):
    42. 

  42.     """Check if ``hash_value`` and ``password`` match using plain method."""
    43. 

  43.     return hash_value == password
    44. 

  44. 

  45. 

  46. def _crypt(hash_value, password):
    47. 

  47.     """Check if ``hash_value`` and ``password`` match using crypt method."""
    48. 

  48.     # The ``crypt`` module is only present on Unix, import if needed
    49. 

  49.     import crypt
    50. 

  50.     return crypt.crypt(password, hash_value) == hash_value
    51. 

  51. 

  52. 

  53. def _sha1(hash_value, password):
    54. 

  54.     """Check if ``hash_value`` and ``password`` match using sha1 method."""
    55. 

  55.     hash_value = hash_value.replace("{SHA}", "").encode("ascii")
    56. 

  56.     password = password.encode(config.get("htpasswd_encoding", "stock"))
    57. 

  57.     sha1 = hashlib.sha1() # pylint: disable=E1101
    58. 

  58.     sha1.update(password)
    59. 

  59.     return sha1.digest() == base64.b64decode(hash_value)
    60. 

  60. 

  61. 

  62. def has_right(owner, user, password):
    63. 

  63.     """Check if ``user``/``password`` couple is valid."""
    64. 

  64.     for line in open(FILENAME).readlines():
    65. 

  65.         if line.strip():
    66. 

  66.             login, hash_value = line.strip().split(":")
    67. 

  67.             if login == user and (not PERSONAL or user == owner):
    68. 

  68.                 return globals()["_%s" % ENCRYPTION](hash_value, password)
    69. 

  69.     return False
    70.