Back to index

lightning-sunbird  0.9+nobinonly
nsNegotiateAuthSSPI.h
Go to the documentation of this file.
00001 /* vim:set ts=4 sw=4 et cindent: */
00002 /* ***** BEGIN LICENSE BLOCK *****
00003  * Version: MPL 1.1/GPL 2.0/LGPL 2.1
00004  *
00005  * The contents of this file are subject to the Mozilla Public License Version
00006  * 1.1 (the "License"); you may not use this file except in compliance with
00007  * the License. You may obtain a copy of the License at
00008  * http://www.mozilla.org/MPL/
00009  *
00010  * Software distributed under the License is distributed on an "AS IS" basis,
00011  * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
00012  * for the specific language governing rights and limitations under the
00013  * License.
00014  *
00015  * The Original Code is the SSPI NegotiateAuth Module.
00016  *
00017  * The Initial Developer of the Original Code is IBM Corporation.
00018  * Portions created by the Initial Developer are Copyright (C) 2004
00019  * the Initial Developer. All Rights Reserved.
00020  *
00021  * Contributor(s):
00022  *   Darin Fisher <darin@meer.net>
00023  *
00024  * Alternatively, the contents of this file may be used under the terms of
00025  * either the GNU General Public License Version 2 or later (the "GPL"), or
00026  * the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
00027  * in which case the provisions of the GPL or the LGPL are applicable instead
00028  * of those above. If you wish to allow use of your version of this file only
00029  * under the terms of either the GPL or the LGPL, and not to allow others to
00030  * use your version of this file under the terms of the MPL, indicate your
00031  * decision by deleting the provisions above and replace them with the notice
00032  * and other provisions required by the GPL or the LGPL. If you do not delete
00033  * the provisions above, a recipient may use your version of this file under
00034  * the terms of any one of the MPL, the GPL or the LGPL.
00035  *
00036  * ***** END LICENSE BLOCK ***** */
00037 
00038 #ifndef nsNegotiateAuthSSPI_h__
00039 #define nsNegotiateAuthSSPI_h__
00040 
00041 #include "nsIAuthModule.h"
00042 #include "nsString.h"
00043 
00044 #include <windows.h>
00045 
00046 #define SECURITY_WIN32 1
00047 #include <security.h>
00048 #include <rpc.h>
00049 
00050 // The nsNegotiateAuth class provides responses for the GSS-API Negotiate method
00051 // as specified by Microsoft in draft-brezak-spnego-http-04.txt
00052 
00053 // It can also be configured to talk raw NTLM.  This implementation of NTLM has
00054 // the advantage of being able to access the user's logon credentials.  This
00055 // implementation of NTLM should only be used for single-signon.  It should be
00056 // avoided when authenticating over the internet since it may use a lower-grade
00057 // version of password hashing depending on the version of Windows being used.
00058 
00059 class nsNegotiateAuth : public nsIAuthModule
00060 {
00061 public:
00062     NS_DECL_ISUPPORTS
00063     NS_DECL_NSIAUTHMODULE
00064 
00065     nsNegotiateAuth(PRBool useNTLM = PR_FALSE);
00066 
00067 private:
00068     ~nsNegotiateAuth();
00069 
00070     void Reset();
00071 
00072 private:
00073     CredHandle   mCred;
00074     CtxtHandle   mCtxt;
00075     nsCString    mServiceName;
00076     PRUint32     mServiceFlags;
00077     PRUint32     mMaxTokenLen;
00078     PRBool       mUseNTLM;
00079 };
00080 
00081 #endif /* nsNegotiateAuthSSPI_h__ */