Página inicial Explorar Ajuda
Entrar
mirrors
/
Radicale
mirror de https://github.com/Kozea/Radicale
1
0
Fork 0
Arquivos Issues 0 Wiki
Tree: efed0b415d
Branches Tags
Radicale
/
radicale
/
acl
/
htpasswd.py

htpasswd.py 2.2 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667 
  1. # -*- coding: utf-8 -*-
    2. 

  2. #
    3. 

  3. # This file is part of Radicale Server - Calendar Server
    4. 

  4. # Copyright © 2008-2010 Guillaume Ayoub
    5. 

  5. # Copyright © 2008 Nicolas Kandel
    6. 

  6. # Copyright © 2008 Pascal Halter
    7. 

  7. #
    8. 

  8. # This library is free software: you can redistribute it and/or modify
    9. 

  9. # it under the terms of the GNU General Public License as published by
    10. 

  10. # the Free Software Foundation, either version 3 of the License, or
    11. 

  11. # (at your option) any later version.
    12. 

  12. #
    13. 

  13. # This library is distributed in the hope that it will be useful,
    14. 

  14. # but WITHOUT ANY WARRANTY; without even the implied warranty of
    15. 

  15. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    16. 

  16. # GNU General Public License for more details.
    17. 

  17. #
    18. 

  18. # You should have received a copy of the GNU General Public License
    19. 

  19. # along with Radicale.  If not, see <http://www.gnu.org/licenses/>.
    20. 

  20. 

  21. """
    22. 

  22. Htpasswd ACL.
    23. 

  23. 

  24. Load the list of login/password couples according a the configuration file
    25. 

  25. created by Apache ``htpasswd`` command. Plain-text, crypt and sha1 are
    26. 

  26. supported, but md5 is not (see ``htpasswd`` man page to understand why).
    27. 

  27. 

  28. """
    29. 

  29. 

  30. import base64
    31. 

  31. import crypt
    32. 

  32. import hashlib
    33. 

  33. 

  34. from radicale import config
    35. 

  35. 

  36. 

  37. FILENAME = config.get("acl", "filename")
    38. 

  38. CHECK_PASSWORD = locals()["_%s" % config.get("acl", "encryption")]
    39. 

  39. 

  40. 

  41. def _plain(hash_value, password):
    42. 

  42.     """Check if ``hash_value`` and ``password`` match using plain method."""
    43. 

  43.     return hash_value == password
    44. 

  44. 

  45. 

  46. def _crypt(hash_value, password):
    47. 

  47.     """Check if ``hash_value`` and ``password`` match using crypt method."""
    48. 

  48.     return crypt.crypt(password, hash_value) == hash_value
    49. 

  49. 

  50. 

  51. def _sha1(hash_value, password):
    52. 

  52.     """Check if ``hash_value`` and ``password`` match using sha1 method."""
    53. 

  53.     hash_value = hash_value.replace("{SHA}", "").encode("ascii")
    54. 

  54.     password = password.encode(config.get("encoding", "stock"))
    55. 

  55.     sha1 = hashlib.sha1()
    56. 

  56.     sha1.update(password)
    57. 

  57.     return sha1.digest() == base64.b64decode(hash_value)
    58. 

  58. 

  59. 

  60. def has_right(user, password):
    61. 

  61.     """Check if ``user``/``password`` couple is valid."""
    62. 

  62.     for line in open(FILENAME).readlines():
    63. 

  63.         if line.strip():
    64. 

  64.             login, hash_value = line.strip().split(":")
    65. 

  65.             if login == user:
    66. 

  66.                 return CHECK_PASSWORD(hash_value, password)
    67. 

  67.     return False
    68.