mirror of
https://github.com/mozilla/gecko-dev.git
synced 2025-01-07 11:56:51 +00:00
3157 lines
96 KiB
C
3157 lines
96 KiB
C
/* -*- Mode: C; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 2 -*-
|
|
*
|
|
* The contents of this file are subject to the Netscape Public License
|
|
* Version 1.0 (the "License"); you may not use this file except in
|
|
* compliance with the License. You may obtain a copy of the License at
|
|
* http://www.mozilla.org/NPL/
|
|
*
|
|
* Software distributed under the License is distributed on an "AS IS"
|
|
* basis, WITHOUT WARRANTY OF ANY KIND, either express or implied. See
|
|
* the License for the specific language governing rights and limitations
|
|
* under the License.
|
|
*
|
|
* The Original Code is Mozilla Communicator client code.
|
|
*
|
|
* The Initial Developer of the Original Code is Netscape Communications
|
|
* Corporation. Portions created by Netscape are Copyright (C) 1998
|
|
* Netscape Communications Corporation. All Rights Reserved.
|
|
*/
|
|
|
|
#if defined(SingleSignon)
|
|
|
|
#define alphabetize 1
|
|
#include "libi18n.h" /* For the character code set conversions */
|
|
#include "secnav.h" /* For SECNAV_UnMungeString and SECNAV_MungeString */
|
|
|
|
#ifdef XP_MAC
|
|
#include "prpriv.h" /* for NewNamedMonitor */
|
|
#include "prinrval.h" /* for PR_IntervalNow */
|
|
#ifdef APPLE_KEYCHAIN /* APPLE */
|
|
#include "Keychain.h" /* APPLE */
|
|
#define kNetscapeProtocolType 'form' /* APPLE */
|
|
#endif /* APPLE */
|
|
#else
|
|
#include "private/prpriv.h" /* for NewNamedMonitor */
|
|
#endif
|
|
|
|
#ifdef PROFILE
|
|
#pragma profile on
|
|
#endif
|
|
|
|
#include "prefapi.h"
|
|
#include "xpgetstr.h"
|
|
#include "xpgetstr.h"
|
|
|
|
extern int MK_SIGNON_PASSWORDS_GENERATE;
|
|
extern int MK_SIGNON_PASSWORDS_REMEMBER;
|
|
extern int MK_SIGNON_PASSWORDS_FETCH;
|
|
extern int MK_SIGNON_YOUR_SIGNONS;
|
|
extern int MK_SIGNON_YOUR_SIGNON_REJECTS;
|
|
extern int MK_SIGNON_NOTIFICATION;
|
|
extern int MK_SIGNON_NOTIFICATION_1;
|
|
extern int MK_SIGNON_NAG;
|
|
extern int MK_SIGNON_REMEMBER;
|
|
extern int MK_SIGNON_SELECTUSER;
|
|
extern int MK_SIGNON_CHANGE;
|
|
|
|
/* locks for signon cache */
|
|
|
|
static PRMonitor * signon_lock_monitor = NULL;
|
|
static PRThread * signon_lock_owner = NULL;
|
|
static int signon_lock_count = 0;
|
|
static Bool si_anonymous = FALSE;
|
|
|
|
#ifdef APPLE_KEYCHAIN
|
|
static Bool si_list_invalid = FALSE;
|
|
static KCCallbackUPP si_kcUPP = NULL;
|
|
PRIVATE int
|
|
si_SaveSignonDataInKeychain();
|
|
|
|
#endif
|
|
|
|
/* temporary */
|
|
/*
|
|
* Need this for now because the normal call to FE_Confirm goes through
|
|
* a pointer in the context (context->func->confirm) and the context
|
|
* doesn't exist when we get control from layout, namely when SI_RememberSignonData
|
|
* is called
|
|
*
|
|
* Same applies to FE_SelectDialog because context doesn't exist when
|
|
* SI_RestoreSignonData is called
|
|
*/
|
|
#undef FE_Confirm
|
|
Bool
|
|
FE_Confirm(MWContext* context, const char* szMessage)
|
|
{
|
|
char c;
|
|
fprintf(stdout, "%c%s (y/n)? ", '\007', szMessage); /* \007 is BELL */
|
|
for (;;) {
|
|
c = getchar();
|
|
if (tolower(c) == 'y') {
|
|
return JS_TRUE;
|
|
}
|
|
if (tolower(c) == 'n') {
|
|
return JS_FALSE;
|
|
}
|
|
}
|
|
}
|
|
|
|
#undef FE_SelectDialog
|
|
Bool
|
|
FE_SelectDialog
|
|
(MWContext* context, const char* szMessage, const char** pList, int16* pCount)
|
|
{
|
|
char c;
|
|
int i;
|
|
fprintf(stdout, "%s\n", szMessage);
|
|
for (i=0; i<*pCount; i++) {
|
|
fprintf(stdout, "%d: %s\n", i, pList[i]);
|
|
}
|
|
fprintf(stdout, "%cType user number (max=9) or type n to cancel. ", '\007'); /* \007 is BELL */
|
|
for (;;) {
|
|
c = getchar();
|
|
if (c >= '0' && c <= '9') {
|
|
*pCount = c - '0';
|
|
return JS_TRUE;
|
|
}
|
|
if (tolower(c) == 'n') {
|
|
return JS_FALSE;
|
|
}
|
|
}
|
|
}
|
|
|
|
/* end of temporary */
|
|
|
|
PRIVATE void
|
|
si_lock_signon_list(void)
|
|
{
|
|
if(!signon_lock_monitor) {
|
|
signon_lock_monitor =
|
|
PR_NewNamedMonitor("signon-lock");
|
|
}
|
|
|
|
PR_EnterMonitor(signon_lock_monitor);
|
|
|
|
while(TRUE) {
|
|
|
|
/* no current owner or owned by this thread */
|
|
PRThread * t = PR_CurrentThread();
|
|
if(signon_lock_owner == NULL || signon_lock_owner == t) {
|
|
signon_lock_owner = t;
|
|
signon_lock_count++;
|
|
|
|
PR_ExitMonitor(signon_lock_monitor);
|
|
return;
|
|
}
|
|
|
|
/* owned by someone else -- wait till we can get it */
|
|
PR_Wait(signon_lock_monitor, PR_INTERVAL_NO_TIMEOUT);
|
|
|
|
}
|
|
}
|
|
|
|
PRIVATE void
|
|
si_unlock_signon_list(void)
|
|
{
|
|
PR_EnterMonitor(signon_lock_monitor);
|
|
|
|
#ifdef DEBUG
|
|
/* make sure someone doesn't try to free a lock they don't own */
|
|
PR_ASSERT(signon_lock_owner == PR_CurrentThread());
|
|
#endif
|
|
|
|
signon_lock_count--;
|
|
|
|
if(signon_lock_count == 0) {
|
|
signon_lock_owner = NULL;
|
|
PR_Notify(signon_lock_monitor);
|
|
}
|
|
PR_ExitMonitor(signon_lock_monitor);
|
|
|
|
}
|
|
|
|
|
|
/*
|
|
* Data and procedures for rememberSignons preference
|
|
*/
|
|
|
|
static const char *pref_rememberSignons =
|
|
"network.signon.rememberSignons";
|
|
PRIVATE Bool si_RememberSignons = FALSE;
|
|
|
|
PRIVATE int
|
|
si_SaveSignonDataLocked(char * filename);
|
|
|
|
PRIVATE void
|
|
si_SetSignonRememberingPref(Bool x)
|
|
{
|
|
/* do nothing if new value of pref is same as current value */
|
|
if (x == si_RememberSignons) {
|
|
return;
|
|
}
|
|
|
|
/* if pref is being turned off, save the current signons to a file */
|
|
if (x == 0) {
|
|
si_lock_signon_list();
|
|
si_SaveSignonDataLocked(NULL);
|
|
si_unlock_signon_list();
|
|
#ifdef APPLE_KEYCHAIN
|
|
/* We no longer need the Keychain callback installed */
|
|
KCRemoveCallback( si_kcUPP );
|
|
DisposeRoutineDescriptor( si_kcUPP );
|
|
si_kcUPP = NULL;
|
|
#endif
|
|
}
|
|
|
|
/* change the pref */
|
|
si_RememberSignons = x;
|
|
|
|
/* if pref is being turned on, load the signon file into memory */
|
|
if (x == 1) {
|
|
SI_RemoveAllSignonData();
|
|
SI_LoadSignonData(NULL);
|
|
}
|
|
}
|
|
|
|
MODULE_PRIVATE int PR_CALLBACK
|
|
si_SignonRememberingPrefChanged(const char * newpref, void * data)
|
|
{
|
|
Bool x;
|
|
PREF_GetBoolPref(pref_rememberSignons, &x);
|
|
si_SetSignonRememberingPref(x);
|
|
return PREF_NOERROR;
|
|
}
|
|
|
|
void
|
|
si_RegisterSignonPrefCallbacks(void)
|
|
{
|
|
Bool x = TRUE; /* initialize to default value in case PREF_GetBoolPref fails */
|
|
static Bool first_time = TRUE;
|
|
|
|
if(first_time)
|
|
{
|
|
first_time = FALSE;
|
|
PREF_GetBoolPref(pref_rememberSignons, &x);
|
|
si_SetSignonRememberingPref(x);
|
|
PREF_RegisterCallback(pref_rememberSignons, si_SignonRememberingPrefChanged, NULL);
|
|
}
|
|
}
|
|
|
|
PRIVATE Bool
|
|
si_GetSignonRememberingPref(void)
|
|
{
|
|
#ifdef APPLE_KEYCHAIN
|
|
/* If the Keychain has been locked or an item deleted or updated,
|
|
we need to reload the signon data */
|
|
if (si_list_invalid)
|
|
{
|
|
/*
|
|
* set si_list_invalid to FALSE first because SI_RemoveAllSignonData
|
|
* calls si_GetSignonRememberingPref
|
|
*/
|
|
si_list_invalid = FALSE;
|
|
SI_RemoveAllSignonData();
|
|
SI_LoadSignonData(NULL);
|
|
}
|
|
#endif
|
|
|
|
si_RegisterSignonPrefCallbacks();
|
|
return si_RememberSignons;
|
|
}
|
|
|
|
/*
|
|
* Data and procedures for signon cache
|
|
*/
|
|
|
|
typedef struct _SignonDataStruct {
|
|
char * name;
|
|
char * value;
|
|
Bool isPassword;
|
|
} si_SignonDataStruct;
|
|
|
|
typedef struct _SignonUserStruct {
|
|
XP_List * signonData_list;
|
|
} si_SignonUserStruct;
|
|
|
|
typedef struct _SignonURLStruct {
|
|
char * URLName;
|
|
si_SignonUserStruct* chosen_user; /* this is a state variable */
|
|
XP_List * signonUser_list;
|
|
} si_SignonURLStruct;
|
|
|
|
|
|
typedef struct _RejectStruct {
|
|
char * URLName;
|
|
char * userName;
|
|
} si_Reject;
|
|
|
|
PRIVATE XP_List * si_signon_list=0;
|
|
PRIVATE XP_List * si_reject_list=0;
|
|
|
|
PRIVATE Bool si_signon_list_changed = FALSE;
|
|
PRIVATE int si_TagCount = 0;
|
|
PRIVATE Bool si_NoticeGiven = FALSE;
|
|
|
|
|
|
/* Remove misleading portions from URL name */
|
|
PRIVATE char*
|
|
si_StrippedURL (char* URLName) {
|
|
char *result = 0;
|
|
char *s, *t;
|
|
|
|
/* check for null URLName */
|
|
if (URLName == NULL || XP_STRLEN(URLName) == 0) {
|
|
return NULL;
|
|
}
|
|
|
|
/* check for protocol at head of URL */
|
|
s = URLName;
|
|
s = (char*) XP_STRCHR(s+1, '/');
|
|
if (s) {
|
|
if (*(s+1) == '/') {
|
|
/* looks good, let's parse it */
|
|
return NET_ParseURL(URLName, GET_HOST_PART);
|
|
} else {
|
|
/* not a valid URL, leave it as is */
|
|
StrAllocCopy(result, URLName);
|
|
return result;
|
|
}
|
|
}
|
|
|
|
/* initialize result */
|
|
StrAllocCopy(result, URLName);
|
|
|
|
/* remove everything in result after and including first question mark */
|
|
s = result;
|
|
s = (char*) XP_STRCHR(s, '?');
|
|
if (s) {
|
|
*s = '\0';
|
|
}
|
|
|
|
/* remove everything in result after last slash (e.g., index.html) */
|
|
s = result;
|
|
t = 0;
|
|
while ((s = (char*) XP_STRCHR(s+1, '/'))) {
|
|
t = s;
|
|
}
|
|
if (t) {
|
|
*(t+1) = '\0';
|
|
}
|
|
|
|
/* remove socket number from result */
|
|
s = result;
|
|
while ((s = (char*) XP_STRCHR(s+1, ':'))) {
|
|
/* s is at next colon */
|
|
if (*(s+1) != '/') {
|
|
/* and it's not :// so it must be start of socket number */
|
|
if ((t = (char*) XP_STRCHR(s+1, '/'))) {
|
|
/* t is at slash terminating the socket number */
|
|
do {
|
|
/* copy remainder of t to s */
|
|
*s++ = *t;
|
|
} while (*(t++));
|
|
}
|
|
break;
|
|
}
|
|
}
|
|
|
|
/* alll done */
|
|
return result;
|
|
}
|
|
|
|
/* remove terminating CRs or LFs */
|
|
PRIVATE void
|
|
si_StripLF(char* buffer) {
|
|
while ((buffer[XP_STRLEN(buffer)-1] == '\n') ||
|
|
(buffer[XP_STRLEN(buffer)-1] == '\r')) {
|
|
buffer[XP_STRLEN(buffer)-1] = '\0';
|
|
}
|
|
}
|
|
|
|
/* If user-entered password is "generate", then generate a random password */
|
|
PRIVATE void
|
|
si_Randomize(char * password) {
|
|
PRIntervalTime random;
|
|
int i;
|
|
const char * hexDigits = "0123456789AbCdEf";
|
|
if (XP_STRCMP(password, XP_GetString(MK_SIGNON_PASSWORDS_GENERATE)) == 0) {
|
|
random = PR_IntervalNow();
|
|
for (i=0; i<8; i++) {
|
|
password[i] = hexDigits[random%16];
|
|
random = random/16;
|
|
}
|
|
}
|
|
}
|
|
|
|
/*
|
|
* Get the URL node for a given URL name
|
|
*
|
|
* This routine is called only when holding the signon lock!!!
|
|
*/
|
|
PRIVATE si_SignonURLStruct *
|
|
si_GetURL(char * URLName) {
|
|
XP_List * list_ptr = si_signon_list;
|
|
si_SignonURLStruct * url;
|
|
char *strippedURLName = 0;
|
|
|
|
if (!URLName) {
|
|
/* no URLName specified, return first URL (returns NULL if not URLs) */
|
|
return (si_SignonURLStruct *) XP_ListNextObject(list_ptr);
|
|
}
|
|
|
|
strippedURLName = si_StrippedURL(URLName);
|
|
while((url = (si_SignonURLStruct *) XP_ListNextObject(list_ptr))!=0) {
|
|
if(url->URLName && !XP_STRCMP(strippedURLName, url->URLName)) {
|
|
XP_FREE(strippedURLName);
|
|
return url;
|
|
}
|
|
}
|
|
XP_FREE(strippedURLName);
|
|
return (NULL);
|
|
}
|
|
|
|
/* Remove a user node from a given URL node */
|
|
PUBLIC Bool
|
|
SI_RemoveUser(char *URLName, char *userName, Bool save) {
|
|
si_SignonURLStruct * url;
|
|
si_SignonUserStruct * user;
|
|
si_SignonDataStruct * data;
|
|
XP_List * user_ptr;
|
|
XP_List * data_ptr;
|
|
|
|
/* do nothing if signon preference is not enabled */
|
|
if (!si_GetSignonRememberingPref()) {
|
|
return FALSE;
|
|
}
|
|
|
|
si_lock_signon_list();
|
|
|
|
/* get URL corresponding to URLName (or first URL if URLName is NULL) */
|
|
url = si_GetURL(URLName);
|
|
if (!url) {
|
|
/* URL not found */
|
|
si_unlock_signon_list();
|
|
return FALSE;
|
|
}
|
|
|
|
/* free the data in each node of the specified user node for this URL */
|
|
user_ptr = url->signonUser_list;
|
|
|
|
if (userName == NULL) {
|
|
|
|
/* no user specified so remove the first one */
|
|
user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr);
|
|
|
|
} else {
|
|
|
|
/* find the specified user */
|
|
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
|
|
data_ptr = user->signonData_list;
|
|
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
|
|
if (XP_STRCMP(data->value, userName)==0) {
|
|
goto foundUser;
|
|
}
|
|
}
|
|
}
|
|
si_unlock_signon_list();
|
|
return FALSE; /* user not found so nothing to remove */
|
|
foundUser: ;
|
|
}
|
|
|
|
/* free the items in the data list */
|
|
data_ptr = user->signonData_list;
|
|
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
|
|
XP_FREE(data->name);
|
|
XP_FREE(data->value);
|
|
}
|
|
|
|
/* free the data list */
|
|
XP_ListDestroy(user->signonData_list);
|
|
|
|
/* free the user node */
|
|
XP_ListRemoveObject(url->signonUser_list, user);
|
|
|
|
/* remove this URL if it contains no more users */
|
|
if (XP_ListCount(url->signonUser_list) == 0) {
|
|
XP_FREE(url->URLName);
|
|
XP_ListRemoveObject(si_signon_list, url);
|
|
}
|
|
|
|
/* write out the change to disk */
|
|
if (save) {
|
|
si_signon_list_changed = TRUE;
|
|
si_SaveSignonDataLocked(NULL);
|
|
}
|
|
|
|
si_unlock_signon_list();
|
|
return TRUE;
|
|
}
|
|
|
|
/* Determine if a specified url/user exists */
|
|
PRIVATE Bool
|
|
si_CheckForUser(char *URLName, char *userName) {
|
|
si_SignonURLStruct * url;
|
|
si_SignonUserStruct * user;
|
|
si_SignonDataStruct * data;
|
|
XP_List * user_ptr;
|
|
XP_List * data_ptr;
|
|
|
|
/* do nothing if signon preference is not enabled */
|
|
if (!si_GetSignonRememberingPref()) {
|
|
return FALSE;
|
|
}
|
|
|
|
si_lock_signon_list();
|
|
|
|
/* get URL corresponding to URLName */
|
|
url = si_GetURL(URLName);
|
|
if (!url) {
|
|
/* URL not found */
|
|
si_unlock_signon_list();
|
|
return FALSE;
|
|
}
|
|
|
|
/* find the specified user */
|
|
user_ptr = url->signonUser_list;
|
|
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
|
|
data_ptr = user->signonData_list;
|
|
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
|
|
if (XP_STRCMP(data->value, userName)==0) {
|
|
si_unlock_signon_list();
|
|
return TRUE;
|
|
}
|
|
}
|
|
}
|
|
si_unlock_signon_list();
|
|
return FALSE; /* user not found */
|
|
}
|
|
|
|
/*
|
|
* Get the user node for a given URL
|
|
*
|
|
* This routine is called only when holding the signon lock!!!
|
|
*
|
|
* This routine is called only if signon pref is enabled!!!
|
|
*/
|
|
PRIVATE si_SignonUserStruct*
|
|
si_GetUser(
|
|
MWContext *context, char* URLName, Bool pickFirstUser,
|
|
char* userText) {
|
|
si_SignonURLStruct* url;
|
|
si_SignonUserStruct* user;
|
|
si_SignonDataStruct* data;
|
|
XP_List * data_ptr=0;
|
|
XP_List * user_ptr=0;
|
|
|
|
/* get to node for this URL */
|
|
url = si_GetURL(URLName);
|
|
if (url != NULL) {
|
|
|
|
/* node for this URL was found */
|
|
int16 user_count;
|
|
user_ptr = url->signonUser_list;
|
|
if ((user_count = XP_ListCount(user_ptr)) == 1) {
|
|
|
|
/* only one set of data exists for this URL so select it */
|
|
user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr);
|
|
url->chosen_user = user;
|
|
|
|
} else if (pickFirstUser) {
|
|
user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr);
|
|
|
|
} else {
|
|
/* multiple users for this URL so a choice needs to be made */
|
|
char ** list;
|
|
char ** list2;
|
|
si_SignonUserStruct** users;
|
|
si_SignonUserStruct** users2;
|
|
list = XP_ALLOC(user_count*sizeof(char*));
|
|
users = XP_ALLOC(user_count*sizeof(si_SignonUserStruct*));
|
|
list2 = list;
|
|
users2 = users;
|
|
|
|
/* step through set of user nodes for this URL and create list of
|
|
* first data node of each (presumably that is the user name).
|
|
* Note that the user nodes are already ordered by
|
|
* most-recently-used so the first one in the list is the most
|
|
* likely one to be chosen.
|
|
*/
|
|
user_count = 0;
|
|
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
|
|
data_ptr = user->signonData_list;
|
|
/* consider first data node to be the identifying item */
|
|
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
|
|
if (PL_strcmp(data->name, userText)) {
|
|
/* name of current data item does not match name in data node */
|
|
continue;
|
|
}
|
|
*(list2++) = data->value;
|
|
*(users2++) = user;
|
|
user_count++;
|
|
}
|
|
|
|
/* have user select a username from the list */
|
|
if (user_count == 0) {
|
|
/* not first data node for any saved user, so simply pick first user */
|
|
user_ptr = url->signonUser_list;
|
|
user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr);
|
|
} else if (user_count == 1) {
|
|
/* only one user for this form at this url, so select it */
|
|
user = users[0];
|
|
} else if ((user_count > 1) && FE_SelectDialog(
|
|
context, XP_GetString(MK_SIGNON_SELECTUSER),
|
|
list, &user_count)) {
|
|
/* user pressed OK */
|
|
if (user_count == -1) {
|
|
user_count = 0; /* user didn't select, so use first one */
|
|
}
|
|
user = users[user_count]; /* this is the selected item */
|
|
/* item selected is now most-recently used, put at head of list */
|
|
XP_ListRemoveObject(url->signonUser_list, user);
|
|
XP_ListAddObject(url->signonUser_list, user);
|
|
} else {
|
|
user = NULL;
|
|
}
|
|
url->chosen_user = user;
|
|
XP_FREE(list);
|
|
XP_FREE(users);
|
|
|
|
/* if we don't remove the URL from the cache at this point, the
|
|
* cached copy will be brought in containing the last-used username
|
|
* rather than the username that was just selected
|
|
*/
|
|
NET_RemoveURLFromCache
|
|
(NET_CreateURLStruct((char *)URLName, NET_DONT_RELOAD));
|
|
|
|
}
|
|
} else {
|
|
user = NULL;
|
|
}
|
|
return user;
|
|
}
|
|
|
|
/*
|
|
* Get the user for which a change-of-password is to be applied
|
|
*
|
|
* This routine is called only when holding the signon lock!!!
|
|
*
|
|
* This routine is called only if signon pref is enabled!!!
|
|
*/
|
|
PRIVATE si_SignonUserStruct*
|
|
si_GetUserForChangeForm(MWContext *context, char* URLName, int messageNumber)
|
|
{
|
|
si_SignonURLStruct* url;
|
|
si_SignonUserStruct* user;
|
|
si_SignonDataStruct * data;
|
|
XP_List * user_ptr = 0;
|
|
XP_List * data_ptr = 0;
|
|
char *message = 0;
|
|
|
|
/* get to node for this URL */
|
|
url = si_GetURL(URLName);
|
|
if (url != NULL) {
|
|
|
|
/* node for this URL was found */
|
|
user_ptr = url->signonUser_list;
|
|
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
|
|
char *strippedURLName = si_StrippedURL(URLName);
|
|
data_ptr = user->signonData_list;
|
|
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
|
|
message = PR_smprintf(XP_GetString(messageNumber),
|
|
data->value,
|
|
strippedURLName);
|
|
XP_FREE(strippedURLName);
|
|
if (FE_Confirm(context, message)) {
|
|
/*
|
|
* since this user node is now the most-recently-used one, move it
|
|
* to the head of the user list so that it can be favored for
|
|
* re-use the next time this form is encountered
|
|
*/
|
|
XP_ListRemoveObject(url->signonUser_list, user);
|
|
XP_ListAddObject(url->signonUser_list, user);
|
|
si_signon_list_changed = TRUE;
|
|
si_SaveSignonDataLocked(NULL);
|
|
XP_FREE(message);
|
|
return user;
|
|
}
|
|
}
|
|
}
|
|
XP_FREE(message);
|
|
return NULL;
|
|
}
|
|
|
|
/*
|
|
* Get the url and user for which a change-of-password is to be applied
|
|
*
|
|
* This routine is called only when holding the signon lock!!!
|
|
*
|
|
* This routine is called only if signon pref is enabled!!!
|
|
*/
|
|
PRIVATE si_SignonUserStruct*
|
|
si_GetURLAndUserForChangeForm(MWContext *context, char* password)
|
|
{
|
|
si_SignonURLStruct* url;
|
|
si_SignonUserStruct* user;
|
|
si_SignonDataStruct * data;
|
|
XP_List * url_ptr = 0;
|
|
XP_List * user_ptr = 0;
|
|
XP_List * data_ptr = 0;
|
|
char *message = 0;
|
|
int16 user_count;
|
|
|
|
char ** list;
|
|
char ** list2;
|
|
si_SignonUserStruct** users;
|
|
si_SignonUserStruct** users2;
|
|
si_SignonURLStruct** urls;
|
|
si_SignonURLStruct** urls2;
|
|
|
|
/* get count of total number of user nodes at all url nodes */
|
|
user_count = 0;
|
|
url_ptr = si_signon_list;
|
|
while((url = (si_SignonURLStruct *) XP_ListNextObject(url_ptr))!=0) {
|
|
user_ptr = url->signonUser_list;
|
|
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
|
|
user_count++;
|
|
}
|
|
}
|
|
|
|
/* allocate lists for maximumum possible url and user names */
|
|
list = XP_ALLOC(user_count*sizeof(char*));
|
|
users = XP_ALLOC(user_count*sizeof(si_SignonUserStruct*));
|
|
urls = XP_ALLOC(user_count*sizeof(si_SignonUserStruct*));
|
|
list2 = list;
|
|
users2 = users;
|
|
urls2 = urls;
|
|
|
|
/* step through set of URLs and users and create list of each */
|
|
user_count = 0;
|
|
url_ptr = si_signon_list;
|
|
while((url = (si_SignonURLStruct *) XP_ListNextObject(url_ptr))!=0) {
|
|
user_ptr = url->signonUser_list;
|
|
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
|
|
data_ptr = user->signonData_list;
|
|
/* find saved password and see if it matches password user just entered */
|
|
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
|
|
if (data->isPassword && !PL_strcmp(data->value, password)) {
|
|
/* passwords match so add entry to list */
|
|
/* consider first data node to be the identifying item */
|
|
data_ptr = user->signonData_list;
|
|
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
|
|
*list2 = 0;
|
|
StrAllocCopy(*list2, url->URLName);
|
|
StrAllocCat(*list2,": ");
|
|
StrAllocCat(*list2, data->value);
|
|
list2++;
|
|
*(users2++) = user;
|
|
*(urls2++) = url;
|
|
user_count++;
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
/* query user */
|
|
if (user_count && FE_SelectDialog
|
|
(context,
|
|
XP_GetString(MK_SIGNON_CHANGE),
|
|
list,
|
|
&user_count)) {
|
|
user = users[user_count];
|
|
url = urls[user_count];
|
|
/*
|
|
* since this user node is now the most-recently-used one, move it
|
|
* to the head of the user list so that it can be favored for
|
|
* re-use the next time this form is encountered
|
|
*/
|
|
XP_ListRemoveObject(url->signonUser_list, user);
|
|
XP_ListAddObject(url->signonUser_list, user);
|
|
si_signon_list_changed = TRUE;
|
|
si_SaveSignonDataLocked(NULL);
|
|
} else {
|
|
user = NULL;
|
|
}
|
|
|
|
/* free allocated strings */
|
|
while (--list2 > list) {
|
|
XP_FREE(*list2);
|
|
}
|
|
XP_FREE(list);
|
|
XP_FREE(users);
|
|
XP_FREE(urls);
|
|
|
|
return user;
|
|
|
|
}
|
|
|
|
PRIVATE void
|
|
si_FreeReject(si_Reject * reject) {
|
|
|
|
/*
|
|
* This routine should only be called while holding the
|
|
* signon list lock
|
|
*/
|
|
|
|
if(!reject) {
|
|
return;
|
|
}
|
|
XP_ListRemoveObject(si_reject_list, reject);
|
|
PR_FREEIF(reject->URLName);
|
|
PR_FREEIF(reject->userName);
|
|
PR_Free(reject);
|
|
}
|
|
|
|
PRIVATE Bool
|
|
si_CheckForReject(char * URLName, char * userName) {
|
|
XP_List * list_ptr;
|
|
si_Reject * reject;
|
|
|
|
si_lock_signon_list();
|
|
if (si_reject_list) {
|
|
list_ptr = si_reject_list;
|
|
while((reject = (si_Reject *) XP_ListNextObject(list_ptr))!=0) {
|
|
if(!PL_strcmp(userName, reject->userName) &&
|
|
!PL_strcmp(URLName, reject->URLName)) {
|
|
si_unlock_signon_list();
|
|
return TRUE;
|
|
}
|
|
}
|
|
}
|
|
si_unlock_signon_list();
|
|
return FALSE;
|
|
}
|
|
|
|
PRIVATE void
|
|
si_PutReject(char * URLName, char * userName, Bool save) {
|
|
si_Reject * reject;
|
|
char * URLName2=NULL;
|
|
char * userName2=NULL;
|
|
|
|
reject = PR_NEW(si_Reject);
|
|
if (reject) {
|
|
/*
|
|
* lock the signon list
|
|
* Note that, for efficiency, SI_LoadSignonData already sets the lock
|
|
* before calling this routine whereas none of the other callers do.
|
|
* So we need to determine whether or not we were called from
|
|
* SI_LoadSignonData before setting or clearing the lock. We can
|
|
* determine this by testing "save" since only SI_LoadSignonData
|
|
* passes in a value of FALSE for "save".
|
|
*/
|
|
XP_List * list_ptr;
|
|
if (save) {
|
|
si_lock_signon_list();
|
|
}
|
|
list_ptr = si_reject_list;
|
|
|
|
StrAllocCopy(URLName2, URLName);
|
|
StrAllocCopy(userName2, userName);
|
|
reject->URLName = URLName2;
|
|
reject->userName = userName2;
|
|
|
|
if(!si_reject_list) {
|
|
si_reject_list = XP_ListNew();
|
|
if(!si_reject_list) {
|
|
PR_Free(reject->URLName);
|
|
PR_Free(reject->userName);
|
|
PR_Free(reject);
|
|
if (save) {
|
|
si_unlock_signon_list();
|
|
}
|
|
return;
|
|
}
|
|
}
|
|
#ifdef alphabetize
|
|
/* add it to the list in alphabetical order */
|
|
{
|
|
si_Reject * tmp_reject;
|
|
Bool rejectAdded = FALSE;
|
|
while((tmp_reject = (si_Reject *) XP_ListNextObject(list_ptr))!=0) {
|
|
if (PL_strcmp (reject->URLName, tmp_reject->URLName)<0) {
|
|
XP_ListInsertObject (si_reject_list, tmp_reject, reject);
|
|
rejectAdded = TRUE;
|
|
break;
|
|
}
|
|
}
|
|
if (!rejectAdded) {
|
|
XP_ListAddObjectToEnd (si_reject_list, reject);
|
|
}
|
|
}
|
|
#else
|
|
/* add it to the end of the list */
|
|
XP_ListAddObjectToEnd (si_reject_list, reject);
|
|
#endif
|
|
|
|
if (save) {
|
|
si_signon_list_changed = TRUE;
|
|
SI_SaveSignonData(NULL);
|
|
}
|
|
if (save) {
|
|
si_unlock_signon_list();
|
|
}
|
|
}
|
|
}
|
|
|
|
/* Ask user if it is ok to save the signon data */
|
|
PRIVATE Bool
|
|
si_OkToSave(MWContext *context, char *URLName, char *userName) {
|
|
Bool remember_checked = TRUE;
|
|
char *strippedURLName = 0;
|
|
|
|
/* if url/user already exists, then it is safe to save it again */
|
|
if (si_CheckForUser(URLName, userName)) {
|
|
return TRUE;
|
|
}
|
|
|
|
if (!si_NoticeGiven) {
|
|
char* notification = 0;
|
|
si_NoticeGiven = TRUE;
|
|
si_signon_list_changed = TRUE;
|
|
SI_SaveSignonData(NULL);
|
|
StrAllocCopy(notification, XP_GetString(MK_SIGNON_NOTIFICATION));
|
|
StrAllocCat(notification, XP_GetString(MK_SIGNON_NOTIFICATION_1));
|
|
if (!FE_Confirm(context, notification)) {
|
|
XP_FREE (notification);
|
|
PREF_SetBoolPref(pref_rememberSignons, FALSE);
|
|
return FALSE;
|
|
}
|
|
XP_FREE (notification);
|
|
}
|
|
|
|
strippedURLName = si_StrippedURL(URLName);
|
|
if (si_CheckForReject(strippedURLName, userName)) {
|
|
XP_FREE(strippedURLName);
|
|
return FALSE;
|
|
}
|
|
|
|
if (!FE_Confirm(context, XP_GetString(MK_SIGNON_NAG))) {
|
|
si_PutReject(strippedURLName, userName, TRUE);
|
|
XP_FREE(strippedURLName);
|
|
return FALSE;
|
|
}
|
|
XP_FREE(strippedURLName);
|
|
return TRUE;
|
|
}
|
|
|
|
/*
|
|
* Put data obtained from a submit form into the data structure for
|
|
* the specified URL
|
|
*
|
|
* See comments below about state of signon lock when routine is called!!!
|
|
*
|
|
* This routine is called only if signon pref is enabled!!!
|
|
*/
|
|
PRIVATE void
|
|
si_PutData(char * URLName, LO_FormSubmitData * submit, Bool save) {
|
|
char * name;
|
|
char * value;
|
|
Bool added_to_list = FALSE;
|
|
si_SignonURLStruct * url;
|
|
si_SignonUserStruct * user;
|
|
si_SignonDataStruct * data;
|
|
int j;
|
|
XP_List * list_ptr;
|
|
XP_List * user_ptr;
|
|
XP_List * data_ptr;
|
|
si_SignonURLStruct * tmp_URL_ptr;
|
|
Bool mismatch;
|
|
int i;
|
|
|
|
/* discard this if the password is empty */
|
|
for (i=0; i<submit->value_cnt; i++) {
|
|
if ((((uint8*)submit->type_array)[i] == FORM_TYPE_PASSWORD) &&
|
|
(!((char **)(submit->value_array))[i] ||
|
|
!XP_STRLEN( ((char **)(submit->value_array)) [i])) ) {
|
|
return;
|
|
}
|
|
}
|
|
|
|
/*
|
|
* lock the signon list
|
|
* Note that, for efficiency, SI_LoadSignonData already sets the lock
|
|
* before calling this routine whereas none of the other callers do.
|
|
* So we need to determine whether or not we were called from
|
|
* SI_LoadSignonData before setting or clearing the lock. We can
|
|
* determine this by testing "save" since only SI_LoadSignonData passes
|
|
* in a value of FALSE for "save".
|
|
*/
|
|
if (save) {
|
|
si_lock_signon_list();
|
|
}
|
|
|
|
/* make sure the signon list exists */
|
|
if(!si_signon_list) {
|
|
si_signon_list = XP_ListNew();
|
|
if(!si_signon_list) {
|
|
if (save) {
|
|
si_unlock_signon_list();
|
|
}
|
|
return;
|
|
}
|
|
}
|
|
|
|
/* find node in signon list having the same URL */
|
|
if ((url = si_GetURL(URLName)) == NULL) {
|
|
|
|
/* doesn't exist so allocate new node to be put into signon list */
|
|
url = XP_NEW(si_SignonURLStruct);
|
|
if (!url) {
|
|
if (save) {
|
|
si_unlock_signon_list();
|
|
}
|
|
return;
|
|
}
|
|
|
|
/* fill in fields of new node */
|
|
url->URLName = si_StrippedURL(URLName);
|
|
if (!url->URLName) {
|
|
XP_FREE(url);
|
|
if (save) {
|
|
si_unlock_signon_list();
|
|
}
|
|
return;
|
|
}
|
|
|
|
url->signonUser_list = XP_ListNew();
|
|
if(!url->signonUser_list) {
|
|
XP_FREE(url->URLName);
|
|
XP_FREE(url);
|
|
}
|
|
|
|
/* put new node into signon list */
|
|
|
|
#ifdef alphabetize
|
|
/* add it to the list in alphabetical order */
|
|
list_ptr = si_signon_list;
|
|
while((tmp_URL_ptr =
|
|
(si_SignonURLStruct *) XP_ListNextObject(list_ptr))!=0) {
|
|
if(PL_strcmp(url->URLName,tmp_URL_ptr->URLName)<0) {
|
|
XP_ListInsertObject
|
|
(si_signon_list, tmp_URL_ptr, url);
|
|
added_to_list = TRUE;
|
|
break;
|
|
}
|
|
}
|
|
if (!added_to_list) {
|
|
XP_ListAddObjectToEnd (si_signon_list, url);
|
|
}
|
|
}
|
|
#else
|
|
/* add it to the end of the list */
|
|
XP_ListAddObjectToEnd (si_signon_list, url);
|
|
#endif
|
|
|
|
/* initialize state variables in URL node */
|
|
url->chosen_user = NULL;
|
|
|
|
/*
|
|
* see if a user node with data list matching new data already exists
|
|
* (password fields will not be checked for in this matching)
|
|
*/
|
|
user_ptr = url->signonUser_list;
|
|
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr))!=0) {
|
|
data_ptr = user->signonData_list;
|
|
j = 0;
|
|
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
|
|
mismatch = FALSE;
|
|
|
|
/* skip non text/password fields */
|
|
while ((j < submit->value_cnt) &&
|
|
(((uint8*)submit->type_array)[j]!=FORM_TYPE_TEXT) &&
|
|
(((uint8*)submit->type_array)[j]!=FORM_TYPE_PASSWORD)) {
|
|
j++;
|
|
}
|
|
|
|
/* check for match on name field and type field */
|
|
if ((j < submit->value_cnt) &&
|
|
(data->isPassword ==
|
|
(((uint8*)submit->type_array)[j]==FORM_TYPE_PASSWORD)) &&
|
|
(!XP_STRCMP(data->name, ((char **)submit->name_array)[j]))) {
|
|
|
|
/* success, now check for match on value field if not password */
|
|
if (!submit->value_array[j]) {
|
|
/* special case a null value */
|
|
if (!XP_STRCMP(data->value, "")) {
|
|
j++; /* success */
|
|
} else {
|
|
mismatch = TRUE;
|
|
break; /* value mismatch, try next user */
|
|
}
|
|
} else if (!XP_STRCMP(data->value, ((char **)submit->value_array)[j])
|
|
|| data->isPassword) {
|
|
j++; /* success */
|
|
} else {
|
|
mismatch = TRUE;
|
|
break; /* value mismatch, try next user */
|
|
}
|
|
} else {
|
|
mismatch = TRUE;
|
|
break; /* name or type mismatch, try next user */
|
|
}
|
|
|
|
}
|
|
if (!mismatch) {
|
|
|
|
/* all names and types matched and all non-password values matched */
|
|
|
|
/*
|
|
* note: it is ok for password values not to match; it means
|
|
* that the user has either changed his password behind our
|
|
* back or that he previously mis-entered the password
|
|
*/
|
|
|
|
/* update the saved password values */
|
|
data_ptr = user->signonData_list;
|
|
j = 0;
|
|
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
|
|
|
|
/* skip non text/password fields */
|
|
while ((j < submit->value_cnt) &&
|
|
(((uint8*)submit->type_array)[j]!=FORM_TYPE_TEXT) &&
|
|
(((uint8*)submit->type_array)[j]!=FORM_TYPE_PASSWORD)) {
|
|
j++;
|
|
}
|
|
|
|
/* update saved password */
|
|
if ((j < submit->value_cnt) && data->isPassword) {
|
|
if (XP_STRCMP(data->value, ((char **)submit->value_array)[j])) {
|
|
si_signon_list_changed = TRUE;
|
|
StrAllocCopy(data->value, ((char **)submit->value_array)[j]);
|
|
si_Randomize(data->value);
|
|
}
|
|
}
|
|
j++;
|
|
}
|
|
|
|
/*
|
|
* since this user node is now the most-recently-used one, move it
|
|
* to the head of the user list so that it can be favored for
|
|
* re-use the next time this form is encountered
|
|
*/
|
|
XP_ListRemoveObject(url->signonUser_list, user);
|
|
XP_ListAddObject(url->signonUser_list, user);
|
|
|
|
/* return */
|
|
if (save) {
|
|
si_signon_list_changed = TRUE;
|
|
si_SaveSignonDataLocked(NULL);
|
|
si_unlock_signon_list();
|
|
}
|
|
return; /* nothing more to do since data already exists */
|
|
}
|
|
}
|
|
|
|
/* user node with current data not found so create one */
|
|
user = XP_NEW(si_SignonUserStruct);
|
|
if (!user) {
|
|
if (save) {
|
|
si_unlock_signon_list();
|
|
}
|
|
return;
|
|
}
|
|
user->signonData_list = XP_ListNew();
|
|
if(!user->signonData_list) {
|
|
XP_FREE(user);
|
|
if (save) {
|
|
si_unlock_signon_list();
|
|
}
|
|
return;
|
|
}
|
|
|
|
|
|
/* create and fill in data nodes for new user node */
|
|
for (j=0; j<submit->value_cnt; j++) {
|
|
|
|
/* skip non text/password fields */
|
|
if((((uint8*)submit->type_array)[j]!=FORM_TYPE_TEXT) &&
|
|
(((uint8*)submit->type_array)[j]!=FORM_TYPE_PASSWORD)) {
|
|
continue;
|
|
}
|
|
|
|
/* create signon data node */
|
|
data = XP_NEW(si_SignonDataStruct);
|
|
if (!data) {
|
|
XP_ListDestroy(user->signonData_list);
|
|
XP_FREE(user);
|
|
}
|
|
data->isPassword =
|
|
(((uint8 *)submit->type_array)[j] == FORM_TYPE_PASSWORD);
|
|
name = 0; /* so that StrAllocCopy doesn't free previous name */
|
|
StrAllocCopy(name, ((char **)submit->name_array)[j]);
|
|
data->name = name;
|
|
value = 0; /* so that StrAllocCopy doesn't free previous name */
|
|
if (submit->value_array[j]) {
|
|
StrAllocCopy(value, ((char **)submit->value_array)[j]);
|
|
} else {
|
|
StrAllocCopy(value, ""); /* insures that value is not null */
|
|
}
|
|
data->value = value;
|
|
if (data->isPassword) {
|
|
si_Randomize(data->value);
|
|
}
|
|
|
|
/* append new data node to end of data list */
|
|
XP_ListAddObjectToEnd (user->signonData_list, data);
|
|
}
|
|
|
|
/* append new user node to front of user list for matching URL */
|
|
/*
|
|
* Note that by appending to the front, we assure that if there are
|
|
* several users, the most recently used one will be favored for
|
|
* reuse the next time this form is encountered. But don't do this
|
|
* when reading in signons.txt (i.e., when save is false), otherwise
|
|
* we will be reversing the order when reading in.
|
|
*/
|
|
if (save) {
|
|
XP_ListAddObject(url->signonUser_list, user);
|
|
si_signon_list_changed = TRUE;
|
|
si_SaveSignonDataLocked(NULL);
|
|
si_unlock_signon_list();
|
|
} else {
|
|
XP_ListAddObjectToEnd(url->signonUser_list, user);
|
|
}
|
|
}
|
|
|
|
/*
|
|
* When a new form is started, set the tagCount to 0
|
|
*/
|
|
PUBLIC void
|
|
SI_StartOfForm() {
|
|
si_TagCount = 0;
|
|
}
|
|
|
|
/*
|
|
* APPLE
|
|
* The Keychain callback. This routine will be called whenever a lock,
|
|
* delete, or update event occurs in the Keychain. The only action taken
|
|
* is to make the signon list invalid, so it will be read in again the
|
|
* next time it is accessed.
|
|
*/
|
|
#ifdef APPLE_KEYCHAIN
|
|
OSStatus PR_CALLBACK
|
|
si_KeychainCallback( KCEvent keychainEvent, KCCallbackInfo *info, void *userContext) {
|
|
Bool *listInvalid = (Bool*)userContext;
|
|
*listInvalid = TRUE;
|
|
}
|
|
#endif
|
|
|
|
#define BUFFER_SIZE 4096
|
|
#define MAX_ARRAY_SIZE 50
|
|
/*
|
|
* APPLE
|
|
* Get the signon data from the keychain
|
|
*
|
|
* This routine is called only if signon pref is enabled!!!
|
|
*/
|
|
#ifdef APPLE_KEYCHAIN
|
|
PRIVATE int
|
|
si_LoadSignonDataFromKeychain() {
|
|
char * URLName;
|
|
LO_FormSubmitData submit;
|
|
char* name_array[MAX_ARRAY_SIZE];
|
|
char* value_array[MAX_ARRAY_SIZE];
|
|
uint8 type_array[MAX_ARRAY_SIZE];
|
|
char buffer[BUFFER_SIZE];
|
|
XP_File fp;
|
|
Bool badInput = FALSE;
|
|
int i;
|
|
char* unmungedValue;
|
|
KCItemRef itemRef;
|
|
KCAttributeList attrList;
|
|
KCAttribute attr[2];
|
|
KCItemClass itemClass = kInternetPasswordKCItemClass;
|
|
KCProtocolType protocol = kNetscapeProtocolType;
|
|
OSStatus status = noErr;
|
|
KCSearchRef searchRef = NULL;
|
|
|
|
/* initialize the submit structure */
|
|
submit.name_array = (PA_Block)name_array;
|
|
submit.value_array = (PA_Block)value_array;
|
|
submit.type_array = (PA_Block)type_array;
|
|
|
|
/* set up the attribute list */
|
|
attrList.count = 2;
|
|
attrList.attr = attr;
|
|
attr[0].tag = kClassKCItemAttr;
|
|
attr[0].data = &itemClass;
|
|
attr[0].length = sizeof(itemClass);
|
|
|
|
attr[1].tag = kProtocolKCItemAttr;
|
|
attr[1].data = &protocol;
|
|
attr[1].length = sizeof(protocol);
|
|
|
|
status = KCFindFirstItem( &attrList, &searchRef, &itemRef );
|
|
|
|
if (status == noErr) {
|
|
/* if we found a Netscape item, let's assume notice has been given */
|
|
si_NoticeGiven = TRUE;
|
|
} else {
|
|
si_NoticeGiven = FALSE;
|
|
}
|
|
|
|
si_lock_signon_list();
|
|
while(status == noErr) {
|
|
char *value;
|
|
uint16 i = 0;
|
|
uint32 actualSize;
|
|
KCItemFlags flags;
|
|
Boolean reject = FALSE;
|
|
|
|
submit.value_cnt = 0;
|
|
|
|
/* first find out if it is a reject entry */
|
|
attr[0].tag = kFlagsKCItemAttr;
|
|
attr[0].length = sizeof(KCItemFlags);
|
|
attr[0].data = &flags;
|
|
|
|
status = KCGetAttribute( itemRef, attr, nil );
|
|
if (status != noErr) {
|
|
break;
|
|
}
|
|
|
|
if (flags & kNegativeKCItemFlag) {
|
|
reject = TRUE;
|
|
}
|
|
|
|
/* get the server name */
|
|
attr[0].tag = kServerKCItemAttr;
|
|
attr[0].length = BUFFER_SIZE;
|
|
attr[0].data = buffer;
|
|
|
|
status = KCGetAttribute( itemRef, attr, &actualSize );
|
|
if (status != noErr) {
|
|
break;
|
|
{
|
|
|
|
/* null terminate */
|
|
buffer[actualSize] = 0;
|
|
|
|
URLName = NULL;
|
|
StrAllocCopy(URLName, buffer);
|
|
|
|
if (!reject) {
|
|
/* get the password data */
|
|
status = KCGetData(itemRef, BUFFER_SIZE, buffer, &actualSize);
|
|
if (status != noErr) {
|
|
break;
|
|
}
|
|
|
|
/* null terminate */
|
|
buffer[actualSize] = 0;
|
|
|
|
/* parse for '=' which separates the name and value */
|
|
for (i = 0; i < XP_STRLEN(buffer); i++) {
|
|
if (buffer[i] == '=') {
|
|
value = &buffer[i+1];
|
|
buffer[i] = 0;
|
|
break;
|
|
}
|
|
}
|
|
name_array[submit.value_cnt] = NULL;
|
|
value_array[submit.value_cnt] = NULL;
|
|
|
|
type_array[submit.value_cnt] = FORM_TYPE_PASSWORD;
|
|
StrAllocCopy(name_array[submit.value_cnt], buffer);
|
|
StrAllocCopy(value_array[submit.value_cnt], value);
|
|
}
|
|
|
|
/* get the account attribute */
|
|
attr[0].tag = kAccountKCItemAttr;
|
|
attr[0].length = BUFFER_SIZE;
|
|
attr[0].data = buffer;
|
|
|
|
status = KCGetAttribute( itemRef, attr, &actualSize );
|
|
if (status != noErr) {
|
|
break;
|
|
}
|
|
|
|
/* null terminate */
|
|
buffer[actualSize] = 0;
|
|
|
|
if (!reject) {
|
|
/* parse for '=' which separates the name and value */
|
|
for (i = 0; i < XP_STRLEN(buffer); i++) {
|
|
if (buffer[i] == '=') {
|
|
value = &buffer[i+1];
|
|
buffer[i] = 0;
|
|
break;
|
|
}
|
|
}
|
|
|
|
submit.value_cnt++;
|
|
name_array[submit.value_cnt] = NULL;
|
|
value_array[submit.value_cnt] = NULL;
|
|
|
|
type_array[submit.value_cnt] = FORM_TYPE_TEXT;
|
|
StrAllocCopy(name_array[submit.value_cnt], buffer);
|
|
StrAllocCopy(value_array[submit.value_cnt], value);
|
|
|
|
/* check for overruning of the arrays */
|
|
if (submit.value_cnt >= MAX_ARRAY_SIZE) {
|
|
break;
|
|
}
|
|
|
|
submit.value_cnt++;
|
|
/* store the info for this URL into memory-resident data structure */
|
|
if (!URLName || XP_STRLEN(URLName) == 0) {
|
|
badInput = TRUE;
|
|
}
|
|
if (!badInput) {
|
|
si_PutData(URLName, &submit, FALSE);
|
|
}
|
|
|
|
/* free up all the allocations done for processing this URL */
|
|
for (i = 0; i < submit.value_cnt; i++) {
|
|
XP_FREE(name_array[i]);
|
|
XP_FREE(value_array[i]);
|
|
}
|
|
} else {
|
|
/* reject */
|
|
si_PutReject(URLName, buffer, FALSE);
|
|
}
|
|
|
|
reject = FALSE; /* reset reject flag */
|
|
XP_FREE(URLName);
|
|
KCReleaseItemRef( &itemRef );
|
|
|
|
status = KCFindNextItem( searchRef, &itemRef );
|
|
|
|
}
|
|
si_unlock_signon_list();
|
|
|
|
if (searchRef) {
|
|
KCReleaseSearchRef( &searchRef );
|
|
}
|
|
|
|
/* Register a callback with the Keychain if we haven't already done so. */
|
|
|
|
if (si_kcUPP == NULL)
|
|
{
|
|
si_kcUPP = NewKCCallbackProc( si_KeychainCallback );
|
|
if (!si_kcUPP) {
|
|
return memFullErr;
|
|
}
|
|
|
|
KCAddCallback( si_kcUPP, kLockKCEventMask + kDeleteKCEventMask + kUpdateKCEventMask, &si_list_invalid );
|
|
/*
|
|
* Note that the callback is not necessarily removed. We take advantage
|
|
* of the fact that the Keychain will clean up the callback when the app
|
|
* goes away. It is explicitly removed when the signon preference is turned off.
|
|
*/
|
|
}
|
|
|
|
if (status == errKCItemNotFound) {
|
|
status = 0;
|
|
}
|
|
|
|
return (status);
|
|
}
|
|
#endif
|
|
|
|
/*
|
|
* Load signon data from disk file
|
|
* The parameter passed in on entry is ignored
|
|
*/
|
|
|
|
PUBLIC int
|
|
SI_LoadSignonData(char * filename) {
|
|
char * URLName;
|
|
LO_FormSubmitData submit;
|
|
char* name_array[MAX_ARRAY_SIZE];
|
|
char* value_array[MAX_ARRAY_SIZE];
|
|
uint8 type_array[MAX_ARRAY_SIZE];
|
|
char buffer[BUFFER_SIZE];
|
|
XP_File fp;
|
|
Bool badInput;
|
|
int i;
|
|
char* unmungedValue;
|
|
|
|
/* do nothing if signon preference is not enabled */
|
|
if (!si_GetSignonRememberingPref()) {
|
|
return 0;
|
|
}
|
|
|
|
#ifdef APPLE_KEYCHAIN
|
|
if (KeychainManagerAvailable()) {
|
|
return si_LoadSignonDataFromKeychain();
|
|
}
|
|
#endif
|
|
|
|
/* open the signon file */
|
|
if(!(fp = XP_FileOpen(filename, xpHTTPSingleSignon, XP_FILE_READ))) {
|
|
return(-1);
|
|
}
|
|
|
|
/* skip the initial comment lines */
|
|
do {
|
|
XP_FileReadLine(buffer, BUFFER_SIZE, fp);
|
|
} while (buffer[0] == '#');
|
|
|
|
/* first line after comment indicates if notice was given */
|
|
si_NoticeGiven = (buffer[0] == 'T');
|
|
|
|
/* read the reject list */
|
|
si_lock_signon_list();
|
|
while(XP_FileReadLine(buffer, BUFFER_SIZE, fp)) {
|
|
if (buffer[0] == '.') {
|
|
break; /* end of reject list */
|
|
}
|
|
si_StripLF(buffer);
|
|
URLName = NULL;
|
|
StrAllocCopy(URLName, buffer);
|
|
XP_FileReadLine(buffer, BUFFER_SIZE, fp); /* get username */
|
|
si_StripLF(buffer);
|
|
si_PutReject(URLName, buffer, FALSE);
|
|
XP_FREE (URLName);
|
|
}
|
|
|
|
/* initialize the submit structure */
|
|
submit.name_array = (PA_Block)name_array;
|
|
submit.value_array = (PA_Block)value_array;
|
|
submit.type_array = (PA_Block)type_array;
|
|
|
|
/* read the URL line */
|
|
while(XP_FileReadLine(buffer, BUFFER_SIZE, fp)) {
|
|
|
|
si_StripLF(buffer);
|
|
URLName = NULL;
|
|
StrAllocCopy(URLName, buffer);
|
|
|
|
/* preparre to read the name/value pairs */
|
|
submit.value_cnt = 0;
|
|
badInput = FALSE;
|
|
|
|
while(XP_FileReadLine(buffer, BUFFER_SIZE, fp)) {
|
|
|
|
/* line starting with . terminates the pairs for this URL entry */
|
|
if (buffer[0] == '.') {
|
|
break; /* end of URL entry */
|
|
}
|
|
|
|
/* line just read is the name part */
|
|
|
|
/* save the name part and determine if it is a password */
|
|
si_StripLF(buffer);
|
|
name_array[submit.value_cnt] = NULL;
|
|
if (buffer[0] == '*') {
|
|
type_array[submit.value_cnt] = FORM_TYPE_PASSWORD;
|
|
StrAllocCopy(name_array[submit.value_cnt], buffer+1);
|
|
} else {
|
|
type_array[submit.value_cnt] = FORM_TYPE_TEXT;
|
|
StrAllocCopy(name_array[submit.value_cnt], buffer);
|
|
}
|
|
|
|
/* read in and save the value part */
|
|
if(!XP_FileReadLine(buffer, BUFFER_SIZE, fp)) {
|
|
/* error in input file so give up */
|
|
badInput = TRUE;
|
|
break;
|
|
}
|
|
si_StripLF(buffer);
|
|
value_array[submit.value_cnt] = NULL;
|
|
/* note that we need to skip over leading '=' of value */
|
|
if (type_array[submit.value_cnt] == FORM_TYPE_PASSWORD) {
|
|
if ((unmungedValue=SECNAV_UnMungeString(buffer+1)) == NULL) {
|
|
/* this is the free source and there is no obscuring of passwords */
|
|
unmungedValue = buffer+1;
|
|
StrAllocCopy(value_array[submit.value_cnt++], buffer+1);
|
|
} else {
|
|
StrAllocCopy(value_array[submit.value_cnt++], unmungedValue);
|
|
XP_FREE(unmungedValue);
|
|
}
|
|
} else {
|
|
StrAllocCopy(value_array[submit.value_cnt++], buffer+1);
|
|
}
|
|
|
|
/* check for overruning of the arrays */
|
|
if (submit.value_cnt >= MAX_ARRAY_SIZE) {
|
|
break;
|
|
}
|
|
}
|
|
|
|
/* store the info for this URL into memory-resident data structure */
|
|
if (!URLName || XP_STRLEN(URLName) == 0) {
|
|
badInput = TRUE;
|
|
}
|
|
if (!badInput) {
|
|
si_PutData(URLName, &submit, FALSE);
|
|
}
|
|
|
|
/* free up all the allocations done for processing this URL */
|
|
XP_FREE(URLName);
|
|
for (i=0; i<submit.value_cnt; i++) {
|
|
XP_FREE(name_array[i]);
|
|
XP_FREE(value_array[i]);
|
|
}
|
|
if (badInput) {
|
|
si_unlock_signon_list();
|
|
return (1);
|
|
}
|
|
}
|
|
si_unlock_signon_list();
|
|
return(0);
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
* APPLE
|
|
* Save signon data to Apple Keychain
|
|
*
|
|
* This routine is called only if signon pref is enabled!!!
|
|
*/
|
|
#ifdef APPLE_KEYCHAIN
|
|
PRIVATE int
|
|
si_SaveSignonDataInKeychain() {
|
|
char* account = nil;
|
|
char* password = nil;
|
|
XP_List * list_ptr;
|
|
XP_List * user_ptr;
|
|
XP_List * data_ptr;
|
|
si_SignonURLStruct * URL;
|
|
si_SignonUserStruct * user;
|
|
si_SignonDataStruct * data;
|
|
si_Reject * reject;
|
|
OSStatus status;
|
|
KCItemRef itemRef;
|
|
KCAttribute attr;
|
|
KCItemFlags flags = kInvisibleKCItemFlag + kNegativeKCItemFlag;
|
|
uint32 actualLength;
|
|
|
|
/* save off the reject list */
|
|
if (si_reject_list) {
|
|
list_ptr = si_reject_list;
|
|
while((reject = (si_Reject *) XP_ListNextObject(list_ptr))!=0) {
|
|
status = kcaddinternetpassword
|
|
(reject->URLName, nil,
|
|
reject->userName,
|
|
kAnyPort,
|
|
kNetscapeProtocolType,
|
|
kAnyAuthType,
|
|
0,
|
|
nil,
|
|
&itemRef);
|
|
if (status != noErr && status != errKCDuplicateItem) {
|
|
return(status);
|
|
}
|
|
if (status == noErr) {
|
|
/*
|
|
* make the item invisible so the user doesn't see it and
|
|
* negative so we know that it is a reject entry
|
|
*/
|
|
attr.tag = kFlagsKCItemAttr;
|
|
attr.data = &flags;
|
|
attr.length = sizeof( flags );
|
|
|
|
status = KCSetAttribute( itemRef, &attr );
|
|
if (status != noErr) {
|
|
return(status);
|
|
}
|
|
status = KCUpdateItem(itemRef);
|
|
if (status != noErr) {
|
|
return(status);
|
|
}
|
|
KCReleaseItemRef(&itemRef);
|
|
}
|
|
}
|
|
}
|
|
|
|
/* save off the passwords */
|
|
if((si_signon_list)) {
|
|
list_ptr = si_signon_list;
|
|
while((URL = (si_SignonURLStruct *) XP_ListNextObject(list_ptr)) != NULL) {
|
|
|
|
user_ptr = URL->signonUser_list;
|
|
|
|
/* add each user node of the URL node */
|
|
while((user = (si_SignonUserStruct *) XP_ListNextObject(user_ptr)) != NULL) {
|
|
|
|
data_ptr = user->signonData_list;
|
|
|
|
/* write out each data node of the user node */
|
|
while((data=(si_SignonDataStruct *) XP_ListNextObject(data_ptr)) != NULL) {
|
|
char* attribute = nil;
|
|
if (data->isPassword) {
|
|
password = XP_ALLOC(XP_STRLEN(data->value) +
|
|
XP_STRLEN(data->name) + 2);
|
|
if (!password) {
|
|
return (-1);
|
|
}
|
|
attribute = password;
|
|
} else {
|
|
account = XP_ALLOC( XP_STRLEN(data->value) +
|
|
XP_STRLEN(data->name) + 2);
|
|
if (!account) {
|
|
XP_FREE(password);
|
|
return (-1);
|
|
}
|
|
attribute = account;
|
|
}
|
|
|
|
XP_STRCPY(attribute, data->name);
|
|
XP_STRCAT(attribute, "=");
|
|
XP_STRCAT(attribute, data->value);
|
|
|
|
}
|
|
/* if it's already there, we just want to change the password */
|
|
status = kcfindinternetpassword
|
|
(URL->URLName,
|
|
nil,
|
|
account,
|
|
kAnyPort,
|
|
kNetscapeProtocolType,
|
|
kAnyAuthType,
|
|
0,
|
|
nil,
|
|
&actualLength,
|
|
&itemRef);
|
|
if (status == noErr) {
|
|
status = KCSetData(itemRef, XP_STRLEN(password), password);
|
|
if (status != noErr) {
|
|
return(status);
|
|
}
|
|
status = KCUpdateItem(itemRef);
|
|
KCReleaseItemRef(&itemRef);
|
|
} else {
|
|
/* wasn't there, let's add it */
|
|
status = kcaddinternetpassword
|
|
(URL->URLName,
|
|
nil,
|
|
account,
|
|
kAnyPort,
|
|
kNetscapeProtocolType,
|
|
kAnyAuthType,
|
|
XP_STRLEN(password),
|
|
password,
|
|
nil);
|
|
}
|
|
if (account) {
|
|
XP_FREE(account);
|
|
}
|
|
if (password) {
|
|
XP_FREE(password);
|
|
}
|
|
account = password = nil;
|
|
if (status != noErr) {
|
|
return(status);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
si_signon_list_changed = FALSE;
|
|
return (0);
|
|
}
|
|
#endif
|
|
|
|
/*
|
|
* Save signon data to disk file
|
|
* The parameter passed in on entry is ignored
|
|
*
|
|
* This routine is called only when holding the signon lock!!!
|
|
*
|
|
* This routine is called only if signon pref is enabled!!!
|
|
*/
|
|
|
|
PRIVATE int
|
|
si_SaveSignonDataLocked(char * filename) {
|
|
XP_List * list_ptr;
|
|
XP_List * user_ptr;
|
|
XP_List * data_ptr;
|
|
si_SignonURLStruct * url;
|
|
si_SignonUserStruct * user;
|
|
si_SignonDataStruct * data;
|
|
si_Reject * reject;
|
|
XP_File fp;
|
|
|
|
/* do nothing if signon list has not changed */
|
|
if(!si_signon_list_changed) {
|
|
return(-1);
|
|
}
|
|
|
|
/* do not save signons if in anonymous mode */
|
|
if(si_anonymous) {
|
|
return(-1);
|
|
}
|
|
|
|
#ifdef APPLE_KEYCHAIN
|
|
if (KeychainManagerAvailable()) {
|
|
return si_SaveSignonDataInKeychain();
|
|
}
|
|
#endif
|
|
|
|
/* do nothing if we are unable to open file that contains signon list */
|
|
if(!(fp = XP_FileOpen(filename, xpHTTPSingleSignon, XP_FILE_WRITE))) {
|
|
return(-1);
|
|
}
|
|
|
|
/* format for head of file shall be:
|
|
* # comment
|
|
* # comment
|
|
* # comment
|
|
* TRUE -- indicates if notification has already been given to user
|
|
* URLName -- first url/username on reject list
|
|
* userName
|
|
* URLName -- second url/username on reject list
|
|
* userName
|
|
* ... -- etc.
|
|
* . -- end of list
|
|
*/
|
|
|
|
/* write out leading comments */
|
|
XP_FileWrite("# Netscape HTTP Signons File" LINEBREAK
|
|
"# This is a generated file! Do not edit."
|
|
LINEBREAK "#" LINEBREAK, -1, fp);
|
|
|
|
/* write out si_NoticeGiven */
|
|
if (si_NoticeGiven) {
|
|
XP_FileWrite("TRUE" LINEBREAK, -1, fp);
|
|
} else {
|
|
XP_FileWrite("FALSE" LINEBREAK, -1, fp);
|
|
}
|
|
|
|
/* write out reject list */
|
|
if (si_reject_list) {
|
|
list_ptr = si_reject_list;
|
|
while((reject = (si_Reject *) XP_ListNextObject(list_ptr))!=0) {
|
|
XP_FileWrite(reject->URLName, -1, fp);
|
|
XP_FileWrite(LINEBREAK, -1, fp);
|
|
XP_FileWrite(reject->userName, -1, fp);
|
|
XP_FileWrite(LINEBREAK, -1, fp);
|
|
}
|
|
}
|
|
XP_FileWrite("." LINEBREAK, -1, fp);
|
|
|
|
/* format for cached logins shall be:
|
|
* url LINEBREAK {name LINEBREAK value LINEBREAK}* . LINEBREAK
|
|
* if type is password, name is preceded by an asterisk (*)
|
|
*/
|
|
|
|
/* write out each URL node */
|
|
if((si_signon_list)) {
|
|
list_ptr = si_signon_list;
|
|
while((url = (si_SignonURLStruct *)
|
|
XP_ListNextObject(list_ptr)) != NULL) {
|
|
|
|
user_ptr = url->signonUser_list;
|
|
|
|
/* write out each user node of the URL node */
|
|
while((user = (si_SignonUserStruct *)
|
|
XP_ListNextObject(user_ptr)) != NULL) {
|
|
XP_FileWrite(url->URLName, -1, fp);
|
|
XP_FileWrite(LINEBREAK, -1, fp);
|
|
|
|
data_ptr = user->signonData_list;
|
|
|
|
/* write out each data node of the user node */
|
|
while((data = (si_SignonDataStruct *)
|
|
XP_ListNextObject(data_ptr)) != NULL) {
|
|
char* mungedValue;
|
|
if (data->isPassword) {
|
|
XP_FileWrite("*", -1, fp);
|
|
}
|
|
XP_FileWrite(data->name, -1, fp);
|
|
XP_FileWrite(LINEBREAK, -1, fp);
|
|
XP_FileWrite("=", -1, fp); /* precede values with '=' */
|
|
if (data->isPassword) {
|
|
if ((mungedValue = SECNAV_MungeString(data->value))) {
|
|
XP_FileWrite(mungedValue, -1, fp);
|
|
XP_FREE(mungedValue);
|
|
} else {
|
|
/* in free source, passwords are not obscured */
|
|
XP_FileWrite(data->value, -1, fp);
|
|
}
|
|
} else {
|
|
XP_FileWrite(data->value, -1, fp);
|
|
}
|
|
XP_FileWrite(LINEBREAK, -1, fp);
|
|
}
|
|
XP_FileWrite(".", -1, fp);
|
|
XP_FileWrite(LINEBREAK, -1, fp);
|
|
}
|
|
}
|
|
}
|
|
|
|
si_signon_list_changed = FALSE;
|
|
XP_FileClose(fp);
|
|
return(0);
|
|
}
|
|
|
|
|
|
/*
|
|
* Save signon data to disk file
|
|
* The parameter passed in on entry is ignored
|
|
*/
|
|
|
|
PUBLIC int
|
|
SI_SaveSignonData(char * filename) {
|
|
int retval;
|
|
|
|
/* do nothing if signon preference is not enabled */
|
|
if (!si_GetSignonRememberingPref()) {
|
|
return FALSE;
|
|
}
|
|
|
|
/* lock and call common save routine */
|
|
si_lock_signon_list();
|
|
retval = si_SaveSignonDataLocked(filename);
|
|
si_unlock_signon_list();
|
|
return retval;
|
|
}
|
|
|
|
/*
|
|
* Remove all the signons and free everything
|
|
*/
|
|
|
|
PUBLIC void
|
|
SI_RemoveAllSignonData() {
|
|
|
|
/* repeatedly remove first user node of first URL node */
|
|
while (SI_RemoveUser(NULL, NULL, FALSE)) {
|
|
}
|
|
}
|
|
|
|
/*
|
|
* Check for a signon submission and remember the data if so
|
|
*/
|
|
PUBLIC void
|
|
SI_RememberSignonData(char* URLName, LO_FormSubmitData * submit)
|
|
{
|
|
int i, j;
|
|
int passwordCount = 0;
|
|
int pswd[3];
|
|
MWContext *context; /* not used -- just a hold-over from the old world order */
|
|
|
|
/* do nothing if signon preference is not enabled */
|
|
if (!si_GetSignonRememberingPref()){
|
|
return;
|
|
}
|
|
|
|
/* determine how many passwords are in the form and where they are */
|
|
for (i=0; i<submit->value_cnt; i++) {
|
|
if (((uint8 *)submit->type_array)[i] == FORM_TYPE_PASSWORD) {
|
|
if (passwordCount < 3 ) {
|
|
pswd[passwordCount] = i;
|
|
}
|
|
passwordCount++;
|
|
}
|
|
}
|
|
|
|
/* process the form according to how many passwords it has */
|
|
if (passwordCount == 1) {
|
|
/* one-password form is a log-in so remember it */
|
|
|
|
/* obtain the index of the first input field (that is the username) */
|
|
for (j=0; j<submit->value_cnt; j++) {
|
|
if (((uint8 *)submit->type_array)[j] == FORM_TYPE_TEXT) {
|
|
break;
|
|
}
|
|
}
|
|
|
|
if (si_OkToSave(context,
|
|
URLName, /* urlname */
|
|
((char **)submit->value_array)[j] /* username */)) {
|
|
si_PutData(URLName, submit, TRUE);
|
|
}
|
|
} else if (passwordCount == 2) {
|
|
/* two-password form is a registration */
|
|
|
|
} else if (passwordCount == 3) {
|
|
/* three-password form is a change-of-password request */
|
|
|
|
XP_List * data_ptr;
|
|
si_SignonDataStruct* data;
|
|
si_SignonUserStruct* user;
|
|
|
|
/* make sure all passwords are non-null and 2nd and 3rd are identical */
|
|
if (!submit->value_array[pswd[0]] || ! submit->value_array[pswd[1]] ||
|
|
!submit->value_array[pswd[2]] ||
|
|
XP_STRCMP(((char **)submit->value_array)[pswd[1]],
|
|
((char **)submit->value_array)[pswd[2]])) {
|
|
return;
|
|
}
|
|
|
|
/* ask user if this is a password change */
|
|
si_lock_signon_list();
|
|
user = si_GetURLAndUserForChangeForm
|
|
(context, ((char **)submit->value_array)[pswd[0]]);
|
|
|
|
/* return if user said no */
|
|
if (!user) {
|
|
si_unlock_signon_list();
|
|
return;
|
|
}
|
|
|
|
/* get to password being saved */
|
|
data_ptr = user->signonData_list;
|
|
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
|
|
if (data->isPassword) {
|
|
break;
|
|
}
|
|
}
|
|
|
|
/*
|
|
* if second password is "generate" then generate a random
|
|
* password for it and use same random value for third password
|
|
* as well (Note: this all works because we already know that
|
|
* second and third passwords are identical so third password
|
|
* must also be "generate". Furthermore si_Randomize() will
|
|
* create a random password of exactly eight characters -- the
|
|
* same length as "generate".)
|
|
*/
|
|
si_Randomize(((char **)submit->value_array)[pswd[1]]);
|
|
XP_STRCPY(((char **)submit->value_array)[pswd[2]],
|
|
((char **)submit->value_array)[pswd[1]]);
|
|
StrAllocCopy(data->value, ((char **)submit->value_array)[pswd[1]]);
|
|
si_signon_list_changed = TRUE;
|
|
si_SaveSignonDataLocked(NULL);
|
|
si_unlock_signon_list();
|
|
}
|
|
}
|
|
|
|
PUBLIC void
|
|
SI_RestoreSignonData
|
|
(char* URLName, char* name, char** value)
|
|
{
|
|
MWContext *context; /* not used -- just a hold-over from the old world order */
|
|
si_SignonUserStruct* user;
|
|
si_SignonDataStruct* data;
|
|
XP_List * data_ptr=0;
|
|
|
|
/* do nothing if signon preference is not enabled */
|
|
if (!si_GetSignonRememberingPref()){
|
|
return;
|
|
}
|
|
|
|
si_lock_signon_list();
|
|
|
|
#ifdef xxx
|
|
/*
|
|
* determine if it is a change-of-password field
|
|
* the heuristic that we will use is that if this is the first
|
|
* item on the form and it is a password, this is probably a
|
|
* change-of-password form
|
|
*/
|
|
/* see if this is first item in form and is a password */
|
|
/* get first saved user just so we can see the name of the first item on the form */
|
|
user = si_GetUser(context, URLName, TRUE, NULL); /* this is the first saved user */
|
|
if (user) {
|
|
data_ptr = user->signonData_list; /* this is first item on form */
|
|
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
|
|
if(data->isPassword && name && XP_STRCMP(data->name, name)==0) {
|
|
/* current item is first item on form and is a password */
|
|
user = si_GetUserForChangeForm(context, URLName, MK_SIGNON_PASSWORDS_FETCH);
|
|
if (user) {
|
|
/* user has confirmed it's a change-of-password form */
|
|
data_ptr = user->signonData_list;
|
|
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
|
|
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
|
|
if (data->isPassword) {
|
|
*value = data->value;
|
|
si_unlock_signon_list();
|
|
return;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
#endif
|
|
|
|
/* restore the data from previous time this URL was visited */
|
|
user = si_GetUser(context, URLName, FALSE, name);
|
|
if (user) {
|
|
data_ptr = user->signonData_list;
|
|
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
|
|
if(name && XP_STRCMP(data->name, name)==0) {
|
|
*value = data->value;
|
|
si_unlock_signon_list();
|
|
return;
|
|
}
|
|
}
|
|
}
|
|
si_unlock_signon_list();
|
|
}
|
|
|
|
/*
|
|
* Check for remembered data from a previous signon submission and
|
|
* restore it if so
|
|
*/
|
|
PUBLIC void
|
|
SI_RestoreOldSignonData
|
|
(MWContext *context, LO_FormElementStruct *form_element, char* URLName)
|
|
{
|
|
si_SignonURLStruct* url;
|
|
si_SignonUserStruct* user;
|
|
si_SignonDataStruct* data;
|
|
XP_List * data_ptr=0;
|
|
|
|
/* do nothing if signon preference is not enabled */
|
|
if (!si_GetSignonRememberingPref()){
|
|
return;
|
|
}
|
|
|
|
/* get URL */
|
|
si_lock_signon_list();
|
|
url = si_GetURL(URLName);
|
|
|
|
/* see if this is first item in form and is a password */
|
|
si_TagCount++;
|
|
if ((si_TagCount == 1) &&
|
|
(form_element->element_data->type == FORM_TYPE_PASSWORD)) {
|
|
/*
|
|
* it is so there's a good change its a password change form,
|
|
* let's ask user to confirm this
|
|
*/
|
|
user = si_GetUserForChangeForm(context, URLName, MK_SIGNON_PASSWORDS_FETCH);
|
|
if (user) {
|
|
/* user has confirmed it's a change-of-password form */
|
|
data_ptr = user->signonData_list;
|
|
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
|
|
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
|
|
if (data->isPassword) {
|
|
#ifdef XP_MAC
|
|
StrAllocCopy(
|
|
(char *)form_element->element_data->ele_text.default_text,
|
|
data->value);
|
|
#else
|
|
char* default_text =
|
|
(char*)(form_element->element_data->ele_text.default_text);
|
|
StrAllocCopy(default_text, data->value);
|
|
form_element->element_data->ele_text.default_text =
|
|
(unsigned long *)default_text;
|
|
#endif
|
|
si_unlock_signon_list();
|
|
return;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
/* get the data from previous time this URL was visited */
|
|
|
|
if (si_TagCount == 1) {
|
|
user = si_GetUser(
|
|
context, URLName, FALSE,
|
|
(char*)(form_element->element_data->ele_text.name));
|
|
} else {
|
|
if (url) {
|
|
user = url->chosen_user;
|
|
} else {
|
|
user = NULL;
|
|
}
|
|
}
|
|
if (user) {
|
|
|
|
/* restore the data from previous time this URL was visited */
|
|
data_ptr = user->signonData_list;
|
|
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
|
|
char * fieldName =
|
|
(char *)form_element->element_data->ele_text.name;
|
|
if(fieldName && XP_STRCMP(data->name, fieldName)==0) {
|
|
#ifdef XP_MAC
|
|
StrAllocCopy(
|
|
(char *)form_element->element_data->ele_text.default_text,
|
|
data->value);
|
|
#else
|
|
char* default_text =
|
|
(char*)(form_element->element_data->ele_text.default_text);
|
|
StrAllocCopy(default_text, data->value);
|
|
form_element->element_data->ele_text.default_text =
|
|
(unsigned long *)default_text;
|
|
#endif
|
|
si_unlock_signon_list();
|
|
return;
|
|
}
|
|
}
|
|
}
|
|
si_unlock_signon_list();
|
|
}
|
|
|
|
/*
|
|
* Remember signon data from a browser-generated password dialog
|
|
*/
|
|
PRIVATE void
|
|
si_RememberSignonDataFromBrowser(char* URLName, char* username, char* password)
|
|
{
|
|
LO_FormSubmitData submit;
|
|
char* USERNAME = "username";
|
|
char* PASSWORD = "password";
|
|
char* name_array[2];
|
|
char* value_array[2];
|
|
uint8 type_array[2];
|
|
|
|
/* do nothing if signon preference is not enabled */
|
|
if (!si_GetSignonRememberingPref()){
|
|
return;
|
|
}
|
|
|
|
/* initialize a temporary submit structure */
|
|
submit.name_array = (PA_Block)name_array;
|
|
submit.value_array = (PA_Block)value_array;
|
|
submit.type_array = (PA_Block)type_array;
|
|
submit.value_cnt = 2;
|
|
|
|
name_array[0] = USERNAME;
|
|
value_array[0] = NULL;
|
|
StrAllocCopy(value_array[0], username);
|
|
type_array[0] = FORM_TYPE_TEXT;
|
|
|
|
name_array[1] = PASSWORD;
|
|
value_array[1] = NULL;
|
|
StrAllocCopy(value_array[1], password);
|
|
type_array[1] = FORM_TYPE_PASSWORD;
|
|
|
|
/* Save the signon data */
|
|
si_PutData(URLName, &submit, TRUE);
|
|
|
|
/* Free up the data memory just allocated */
|
|
XP_FREE(value_array[0]);
|
|
XP_FREE(value_array[1]);
|
|
}
|
|
|
|
PUBLIC void
|
|
SI_RememberSignonDataFromBrowser
|
|
(MWContext *context, char* URLName, char* username, char* password)
|
|
{
|
|
if (si_OkToSave(context, URLName, username)) {
|
|
si_RememberSignonDataFromBrowser (URLName, username, password);
|
|
}
|
|
}
|
|
|
|
/*
|
|
* Check for remembered data from a previous browser-generated password dialog
|
|
* restore it if so
|
|
*/
|
|
PRIVATE void
|
|
si_RestoreOldSignonDataFromBrowser
|
|
(MWContext *context, char* URLName, Bool pickFirstUser,
|
|
char** username, char** password)
|
|
{
|
|
si_SignonUserStruct* user;
|
|
si_SignonDataStruct* data;
|
|
XP_List * data_ptr=0;
|
|
|
|
/* get the data from previous time this URL was visited */
|
|
si_lock_signon_list();
|
|
user = si_GetUser(context, URLName, pickFirstUser, "username");
|
|
if (!user) {
|
|
/* leave original username and password from caller unchanged */
|
|
/* username = 0; */
|
|
/* *password = 0; */
|
|
si_unlock_signon_list();
|
|
return;
|
|
}
|
|
|
|
/* restore the data from previous time this URL was visited */
|
|
data_ptr = user->signonData_list;
|
|
while((data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr))!=0) {
|
|
if(XP_STRCMP(data->name, "username")==0) {
|
|
StrAllocCopy(*username, data->value);
|
|
} else if(XP_STRCMP(data->name, "password")==0) {
|
|
StrAllocCopy(*password, data->value);
|
|
}
|
|
}
|
|
si_unlock_signon_list();
|
|
}
|
|
|
|
PUBLIC void
|
|
SI_RestoreOldSignonDataFromBrowser
|
|
(MWContext *context, char* URLName, Bool pickFirstUser,
|
|
char** username, char** password)
|
|
{
|
|
if (si_GetSignonRememberingPref()){
|
|
si_RestoreOldSignonDataFromBrowser
|
|
(context, URLName, pickFirstUser, username, password);
|
|
}
|
|
}
|
|
|
|
/* Browser-generated prompt for user-name and password */
|
|
PUBLIC int
|
|
SI_PromptUsernameAndPassword
|
|
(MWContext *context, char *prompt,
|
|
char **username, char **password, char *URLName)
|
|
{
|
|
int status;
|
|
char *copyOfPrompt=0;
|
|
|
|
/* just for safety -- really is a problem in SI_Prompt */
|
|
StrAllocCopy(copyOfPrompt, prompt);
|
|
|
|
/* do the FE thing if signon preference is not enabled */
|
|
if (!si_GetSignonRememberingPref()){
|
|
status = FE_PromptUsernameAndPassword
|
|
(context, copyOfPrompt, username, password);
|
|
XP_FREEIF(copyOfPrompt);
|
|
return status;
|
|
}
|
|
|
|
/* prefill with previous username/password if any */
|
|
si_RestoreOldSignonDataFromBrowser
|
|
(context, URLName, FALSE, username, password);
|
|
|
|
/* get new username/password from user */
|
|
status = FE_PromptUsernameAndPassword
|
|
(context, copyOfPrompt, username, password);
|
|
|
|
/* remember these values for next time */
|
|
if (status && si_OkToSave(context, URLName, *username)) {
|
|
si_RememberSignonDataFromBrowser (URLName, *username, *password);
|
|
}
|
|
|
|
/* cleanup and return */
|
|
XP_FREEIF(copyOfPrompt);
|
|
return status;
|
|
}
|
|
|
|
/* Browser-generated prompt for password */
|
|
PUBLIC char *
|
|
SI_PromptPassword
|
|
(MWContext *context, char *prompt, char *URLName, Bool pickFirstUser)
|
|
{
|
|
char *password=0, *username=0, *copyOfPrompt=0, *result;
|
|
char *urlname = URLName;
|
|
char *s;
|
|
|
|
/* just for safety -- really is a problem in SI_Prompt */
|
|
StrAllocCopy(copyOfPrompt, prompt);
|
|
|
|
/* do the FE thing if signon preference is not enabled */
|
|
if (!si_GetSignonRememberingPref()){
|
|
result = FE_PromptPassword(context, copyOfPrompt);
|
|
XP_FREEIF(copyOfPrompt);
|
|
return result;
|
|
}
|
|
|
|
/* get host part of URL which is of form user@host */
|
|
s = URLName;
|
|
while (*s && (*s != '@')) {
|
|
s++;
|
|
}
|
|
if (*s) {
|
|
/* @ found, host is URL part following the @ */
|
|
urlname = s+1; /* urlname is part of URL after the @ */
|
|
}
|
|
|
|
/* get previous password used with this username */
|
|
si_RestoreOldSignonDataFromBrowser
|
|
(context, urlname, pickFirstUser, &username, &password);
|
|
|
|
/* return if a password was found */
|
|
/*
|
|
* Note that we reject a password of " ". It is a dummy password
|
|
* that was put in by a preceding call to SI_Prompt. This occurs
|
|
* in mknews which calls on SI_Prompt to get the username and then
|
|
* SI_PromptPassword to get the password (why they didn't simply
|
|
* call on SI_PromptUsernameAndPassword is beyond me). So the call
|
|
* to SI_Prompt will save the username along with the dummy password.
|
|
* In this call to SI_Password, the real password gets saved in place
|
|
* of the dummy one.
|
|
*/
|
|
if (password && XP_STRLEN(password) && XP_STRCMP(password, " ")) {
|
|
XP_FREEIF(copyOfPrompt);
|
|
return password;
|
|
}
|
|
|
|
/* if no password found, get new password from user */
|
|
password = FE_PromptPassword(context, copyOfPrompt);
|
|
|
|
/* if username wasn't even found, extract it from URLName */
|
|
if (!username) {
|
|
s = URLName;
|
|
|
|
/* get to @ in URL if any */
|
|
while (*s && (*s != '@')) {
|
|
s++;
|
|
}
|
|
if (*s) {
|
|
/* @ found, username is URL part preceding the @ */
|
|
*s = '\0';
|
|
StrAllocCopy(username, URLName);
|
|
*s = '@';
|
|
} else {
|
|
/* no @ found, use entire URL as uername */
|
|
StrAllocCopy(username, URLName);
|
|
}
|
|
}
|
|
|
|
/* remember these values for next time */
|
|
if (password && XP_STRLEN(password) &&
|
|
si_OkToSave(context, urlname, username)) {
|
|
si_RememberSignonDataFromBrowser (urlname, username, password);
|
|
}
|
|
|
|
/* cleanup and return */
|
|
XP_FREEIF(username);
|
|
XP_FREEIF(copyOfPrompt);
|
|
return password;
|
|
}
|
|
|
|
/* Browser-generated prompt for username */
|
|
PUBLIC char *
|
|
SI_Prompt (MWContext *context, char *prompt,
|
|
char* defaultUsername, char *URLName)
|
|
{
|
|
char *password=0, *username=0, *copyOfPrompt=0, *result;
|
|
|
|
/*
|
|
* make copy of prompt because it is currently in a temporary buffer in
|
|
* the caller (from GetString) which will be destroyed if GetString() is
|
|
* called again before prompt is used
|
|
*/
|
|
StrAllocCopy(copyOfPrompt, prompt);
|
|
|
|
/* do the FE thing if signon preference is not enabled */
|
|
if (!si_GetSignonRememberingPref()){
|
|
result = FE_Prompt(context, copyOfPrompt, defaultUsername);
|
|
XP_FREEIF(copyOfPrompt);
|
|
return result;
|
|
}
|
|
|
|
/* get previous username used */
|
|
if (!defaultUsername || !XP_STRLEN(defaultUsername)) {
|
|
si_RestoreOldSignonDataFromBrowser
|
|
(context, URLName, FALSE, &username, &password);
|
|
} else {
|
|
StrAllocCopy(username, defaultUsername);
|
|
}
|
|
|
|
/* prompt for new username */
|
|
result = FE_Prompt(context, copyOfPrompt, username);
|
|
|
|
/* remember this username for next time */
|
|
if (result && XP_STRLEN(result)) {
|
|
if (username && (XP_STRCMP(username, result) == 0)) {
|
|
/*
|
|
* User is re-using the same user name as from previous time
|
|
* so keep the previous password as well
|
|
*/
|
|
si_RememberSignonDataFromBrowser (URLName, result, password);
|
|
} else {
|
|
/*
|
|
* We put in a dummy password of " " which we will test
|
|
* for in a following call to SI_PromptPassword. See comments
|
|
* in that routine.
|
|
*/
|
|
si_RememberSignonDataFromBrowser (URLName, result, " ");
|
|
}
|
|
}
|
|
|
|
/* cleanup and return */
|
|
XP_FREEIF(username);
|
|
XP_FREEIF(password);
|
|
XP_FREEIF(copyOfPrompt);
|
|
return result;
|
|
}
|
|
|
|
PRIVATE XP_List * si_dormant_signon_list=0;
|
|
|
|
PUBLIC void
|
|
SI_AnonymizeSignons()
|
|
{
|
|
if (!si_anonymous) {
|
|
si_lock_signon_list();
|
|
si_dormant_signon_list = si_signon_list;
|
|
si_signon_list = XP_ListNew();
|
|
si_unlock_signon_list();
|
|
si_anonymous = TRUE;
|
|
}
|
|
}
|
|
|
|
PUBLIC void
|
|
SI_UnanonymizeSignons()
|
|
{
|
|
if (si_anonymous) {
|
|
SI_RemoveAllSignonData();
|
|
si_lock_signon_list();
|
|
si_signon_list = si_dormant_signon_list;
|
|
si_unlock_signon_list();
|
|
si_dormant_signon_list = 0;
|
|
si_anonymous = FALSE;
|
|
}
|
|
}
|
|
|
|
#ifdef HTMLDialogs
|
|
#include "htmldlgs.h"
|
|
#else
|
|
#define XP_DIALOG_CANCEL_BUTTON (1<<0)
|
|
#define XP_DIALOG_OK_BUTTON (1<<2)
|
|
#define XP_STRINGS_CHUNKSIZE 512
|
|
typedef struct _XPDialogState XPDialogState;
|
|
typedef struct _XPDialogInfo XPDialogInfo;
|
|
typedef struct _XPDialogStrings XPDialogStrings;
|
|
typedef PRBool (* XP_HTMLDialogHandler)(XPDialogState *state, char **argv,
|
|
int argc, unsigned int button);
|
|
struct _XPDialogState {
|
|
PRArenaPool *arena;
|
|
void *window;
|
|
void *proto_win;
|
|
XPDialogInfo *dialogInfo;
|
|
void *arg;
|
|
void (* deleteCallback)(void *arg);
|
|
void *cbarg;
|
|
PRBool deleted;
|
|
};
|
|
struct _XPDialogInfo {
|
|
unsigned int buttonFlags;
|
|
XP_HTMLDialogHandler handler;
|
|
int width;
|
|
int height;
|
|
};
|
|
struct _XPDialogStrings
|
|
{
|
|
PRArenaPool *arena;
|
|
int basestringnum;
|
|
int nargs;
|
|
char **args;
|
|
char *contents;
|
|
};
|
|
|
|
extern time_t CookieTime();
|
|
extern XPDialogState *
|
|
XP_MakeRawHTMLDialog(void *proto_win, XPDialogInfo *dialogInfo,
|
|
int titlenum, XPDialogStrings *strings,
|
|
int handlestring, void *arg);
|
|
extern XPDialogStrings *XP_GetDialogStrings(int stringnum);
|
|
extern void
|
|
XP_SetDialogString(XPDialogStrings *strings, int argNum, char *string);
|
|
extern char *
|
|
XP_FindValueInArgs(const char *name, char **av, int ac);
|
|
|
|
#endif
|
|
|
|
extern int XP_CERT_PAGE_STRINGS;
|
|
extern int SA_REMOVE_BUTTON_LABEL;
|
|
extern int MK_SIGNON_VIEW_SIGNONS;
|
|
extern int MK_SIGNON_VIEW_REJECTS;
|
|
|
|
#define BUFLEN 5000
|
|
|
|
#define FLUSH_BUFFER \
|
|
if (buffer) { \
|
|
StrAllocCat(buffer2, buffer); \
|
|
buffer[0] = '\0'; \
|
|
g = 0; \
|
|
}
|
|
|
|
/* return TRUE if "number" is in sequence of comma-separated numbers */
|
|
Bool si_InSequence(char* sequence, int number) {
|
|
char* ptr;
|
|
char* endptr;
|
|
char* undo = NULL;
|
|
Bool retval = FALSE;
|
|
int i;
|
|
|
|
/* not necessary -- routine will work even with null sequence */
|
|
if (!*sequence) {
|
|
return FALSE;
|
|
}
|
|
|
|
for (ptr = sequence ; ptr ; ptr = endptr) {
|
|
|
|
/* get to next comma */
|
|
endptr = PL_strchr(ptr, ',');
|
|
|
|
/* if comma found, process it */
|
|
if (endptr) {
|
|
|
|
/* restore last comma-to-null back to comma */
|
|
if (undo) {
|
|
*undo = ',';
|
|
}
|
|
|
|
/* set the comma to a null */
|
|
undo = endptr;
|
|
*endptr++ = '\0';
|
|
|
|
/* compare the number before the comma with "number" */
|
|
if (*ptr) {
|
|
i = atoi(ptr);
|
|
if (i == number) {
|
|
|
|
/* "number" was in the sequence so return TRUE */
|
|
retval = TRUE;
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
/* restore last comma-to-null back to comma */
|
|
if (undo) {
|
|
*undo = ',';
|
|
}
|
|
return retval;
|
|
}
|
|
|
|
PR_STATIC_CALLBACK(PRBool)
|
|
si_SignonInfoDialogDone(XPDialogState* state, char** argv, int argc,
|
|
unsigned int button)
|
|
{
|
|
XP_List *url_ptr;
|
|
XP_List *user_ptr;
|
|
XP_List *data_ptr;
|
|
XP_List *reject_ptr;
|
|
si_SignonURLStruct *url;
|
|
si_SignonURLStruct *URLToDelete = 0;
|
|
si_SignonUserStruct* user;
|
|
si_SignonUserStruct* userToDelete = 0;
|
|
si_SignonDataStruct* data;
|
|
si_Reject* reject;
|
|
si_Reject* rejectToDelete = 0;
|
|
|
|
char *buttonName;
|
|
int userNumber;
|
|
int rejectNumber;
|
|
char* gone;
|
|
|
|
buttonName = XP_FindValueInArgs("button", argv, argc);
|
|
if (button != XP_DIALOG_OK_BUTTON) {
|
|
/* OK button not pressed (must be cancel button that was pressed) */
|
|
return PR_FALSE;
|
|
}
|
|
|
|
/* OK was pressed, do the deletions */
|
|
|
|
/* get the comma-separated sequence of signons to be deleted */
|
|
gone = XP_FindValueInArgs("goneS", argv, argc);
|
|
XP_ASSERT(gone);
|
|
if (!gone) {
|
|
return PR_FALSE;
|
|
}
|
|
|
|
/*
|
|
* step through all users and delete those that are in the sequence
|
|
* Note: we can't delete user while "user_ptr" is pointing to it because
|
|
* that would destroy "user_ptr". So we do a lazy deletion
|
|
*/
|
|
userNumber = 0;
|
|
url_ptr = si_signon_list;
|
|
while ((url = (si_SignonURLStruct *) XP_ListNextObject(url_ptr))) {
|
|
user_ptr = url->signonUser_list;
|
|
while ((user = (si_SignonUserStruct *)
|
|
XP_ListNextObject(user_ptr))) {
|
|
if (si_InSequence(gone, userNumber)) {
|
|
if (userToDelete) {
|
|
|
|
/* get to first data item -- that's the user name */
|
|
data_ptr = userToDelete->signonData_list;
|
|
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
|
|
/* do the deletion */
|
|
SI_RemoveUser(URLToDelete->URLName, data->value, TRUE);
|
|
}
|
|
userToDelete = user;
|
|
URLToDelete = url;
|
|
}
|
|
userNumber++;
|
|
}
|
|
}
|
|
if (userToDelete) {
|
|
/* get to first data item -- that's the user name */
|
|
data_ptr = userToDelete->signonData_list;
|
|
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
|
|
|
|
/* do the deletion */
|
|
SI_RemoveUser(URLToDelete->URLName, data->value, TRUE);
|
|
si_signon_list_changed = TRUE;
|
|
si_SaveSignonDataLocked(NULL);
|
|
}
|
|
|
|
/* get the comma-separated sequence of rejections to be deleted */
|
|
gone = XP_FindValueInArgs("goneR", argv, argc);
|
|
XP_ASSERT(gone);
|
|
if (!gone) {
|
|
return PR_FALSE;
|
|
}
|
|
|
|
/* step through all rejects and delete those that are in the sequence
|
|
* Note: we can't delete reject while "reject_ptr" is pointing to it because
|
|
* that would destroy "reject_ptr". So we do a lazy deletion
|
|
*/
|
|
rejectNumber = 0;
|
|
si_lock_signon_list();
|
|
reject_ptr = si_reject_list;
|
|
while ((reject = (si_Reject *) XP_ListNextObject(reject_ptr))) {
|
|
if (si_InSequence(gone, rejectNumber)) {
|
|
if (rejectToDelete) {
|
|
si_FreeReject(rejectToDelete);
|
|
}
|
|
rejectToDelete = reject;
|
|
}
|
|
rejectNumber++;
|
|
}
|
|
if (rejectToDelete) {
|
|
si_FreeReject(rejectToDelete);
|
|
si_signon_list_changed = TRUE;
|
|
si_SaveSignonDataLocked(NULL);
|
|
}
|
|
si_unlock_signon_list();
|
|
return PR_FALSE;
|
|
}
|
|
|
|
typedef struct _SignonViewerDialog SignonViewerDialog;
|
|
|
|
struct _SignonViewerDialog {
|
|
void *window;
|
|
void *parent_window;
|
|
PRBool dialogUp;
|
|
XPDialogState *state;
|
|
};
|
|
|
|
PUBLIC void
|
|
SI_DisplaySignonInfoAsHTML(MWContext *context)
|
|
{
|
|
char *buffer = (char*)XP_ALLOC(BUFLEN);
|
|
char *buffer2 = 0;
|
|
int g = 0, signonNum, count;
|
|
XP_List *url_ptr;
|
|
XP_List *user_ptr;
|
|
XP_List *data_ptr;
|
|
XP_List *reject_ptr;
|
|
si_SignonURLStruct *url;
|
|
si_SignonUserStruct * user;
|
|
si_SignonDataStruct* data;
|
|
si_Reject *reject;
|
|
SignonViewerDialog *dlg;
|
|
int i;
|
|
char * view_signons = NULL;
|
|
char * view_rejects = NULL;
|
|
char * heading = NULL;
|
|
|
|
static XPDialogInfo dialogInfo = {
|
|
0,
|
|
si_SignonInfoDialogDone,
|
|
350,
|
|
400
|
|
};
|
|
|
|
XPDialogStrings* strings;
|
|
strings = XP_GetDialogStrings(XP_CERT_PAGE_STRINGS);
|
|
if (!strings) {
|
|
return;
|
|
}
|
|
|
|
#ifdef APPLE_KEYCHAIN
|
|
/* If the Keychain has been locked or an item deleted or updated,
|
|
we need to reload the signon data */
|
|
if (si_list_invalid)
|
|
{
|
|
/* set si_list_invalid to FALSE first because SI_RemoveAllSignonData
|
|
calls si_GetSignonRememberingPref */
|
|
si_list_invalid = FALSE;
|
|
SI_RemoveAllSignonData();
|
|
SI_LoadSignonData(NULL);
|
|
}
|
|
#endif
|
|
|
|
StrAllocCopy(buffer2, "");
|
|
StrAllocCopy (view_signons, XP_GetString(MK_SIGNON_VIEW_SIGNONS));
|
|
StrAllocCopy (view_rejects, XP_GetString(MK_SIGNON_VIEW_REJECTS));
|
|
|
|
/* generate initial section of html file */
|
|
g += PR_snprintf(buffer+g, BUFLEN-g,
|
|
"<HTML>\n"
|
|
"<HEAD>\n"
|
|
" <TITLE>Signons</TITLE>\n"
|
|
" <SCRIPT>\n"
|
|
" index_frame = 0;\n"
|
|
" title_frame = 1;\n"
|
|
" spacer1_frame = 2;\n"
|
|
" list_frame = 3;\n"
|
|
" spacer2_frame = 4;\n"
|
|
" button_frame = 5;\n"
|
|
"\n"
|
|
" var signon_mode;\n"
|
|
" var goneS;\n"
|
|
" var goneR;\n"
|
|
" deleted_signons = new Array (0"
|
|
);
|
|
FLUSH_BUFFER
|
|
|
|
|
|
/* force loading of the signons file */
|
|
si_RegisterSignonPrefCallbacks();
|
|
si_lock_signon_list();
|
|
|
|
/* fill in initial 0's for deleted_signons and deleted_rejects arrays */
|
|
url_ptr = si_signon_list;
|
|
i = 0;
|
|
while ( (url=(si_SignonURLStruct *) XP_ListNextObject(url_ptr)) ) {
|
|
user_ptr = url->signonUser_list;
|
|
while ( (user=(si_SignonUserStruct *) XP_ListNextObject(user_ptr)) ) {
|
|
/* this actually gives one 0 too many but that doesn't hurt */
|
|
g += PR_snprintf(buffer+g, BUFLEN-g,
|
|
",0"
|
|
);
|
|
if (((++i)%50) == 0) {
|
|
g += PR_snprintf(buffer+g, BUFLEN-g,
|
|
"\n "
|
|
);
|
|
}
|
|
}
|
|
}
|
|
|
|
g += PR_snprintf(buffer+g, BUFLEN-g,
|
|
");\n"
|
|
" deleted_rejects = new Array (0"
|
|
);
|
|
count = XP_ListCount(si_reject_list);
|
|
for (i=1; i<count; i++) {
|
|
g += PR_snprintf(buffer+g, BUFLEN-g,
|
|
",0"
|
|
);
|
|
if ((i%50) == 0) {
|
|
g += PR_snprintf(buffer+g, BUFLEN-g,
|
|
"\n "
|
|
);
|
|
}
|
|
}
|
|
FLUSH_BUFFER
|
|
|
|
StrAllocCopy (heading, XP_GetString(MK_SIGNON_YOUR_SIGNONS));
|
|
g += PR_snprintf(buffer+g, BUFLEN-g,
|
|
");\n"
|
|
"\n"
|
|
" function DeleteItemSelected() {\n"
|
|
" if (signon_mode) {\n"
|
|
" DeleteSignonSelected();\n"
|
|
" } else {\n"
|
|
" DeleteRejectSelected();\n"
|
|
" }\n"
|
|
" }\n"
|
|
"\n"
|
|
" function DeleteSignonSelected() {\n"
|
|
" selname = top.frames[list_frame].document.fSelectSignon.selname;\n"
|
|
" goneS = top.frames[button_frame].document.buttons.goneS;\n"
|
|
" var p;\n"
|
|
" var i;\n"
|
|
" for (i=selname.options.length; i>0; i--) {\n"
|
|
" if (selname.options[i-1].selected) {\n"
|
|
" selname.options[i-1].selected = 0;\n"
|
|
" goneS.value = goneS.value + selname.options[i-1].value + \",\";\n"
|
|
" deleted_signons[selname.options[i-1].value] = 1;\n"
|
|
" for (j=i ; j<selname.options.length ; j++) {\n"
|
|
" selname.options[j-1] = selname.options[j];\n"
|
|
" }\n"
|
|
" selname.options[selname.options.length-1] = null;\n"
|
|
" }\n"
|
|
" }\n"
|
|
" }\n"
|
|
"\n"
|
|
" function DeleteRejectSelected() {\n"
|
|
" selname = top.frames[list_frame].document.fSelectReject.selname;\n"
|
|
" goneR = top.frames[button_frame].document.buttons.goneR;\n"
|
|
" var p;\n"
|
|
" var i;\n"
|
|
" for (i=selname.options.length; i>0; i--) {\n"
|
|
" if (selname.options[i-1].selected) {\n"
|
|
" selname.options[i-1].selected = 0;\n"
|
|
" goneR.value = goneR.value + selname.options[i-1].value + \",\";\n"
|
|
" deleted_rejects[selname.options[i-1].value] = 1;\n"
|
|
" for (j=i; j < selname.options.length; j++) {\n"
|
|
" selname.options[j-1] = selname.options[j];\n"
|
|
" }\n"
|
|
" selname.options[selname.options.length-1] = null;\n"
|
|
" }\n"
|
|
" }\n"
|
|
" }\n"
|
|
"\n"
|
|
" function loadSignons(){\n"
|
|
" signon_mode = 1;\n"
|
|
" top.frames[index_frame].document.open();\n"
|
|
" top.frames[index_frame].document.write(\n"
|
|
" \"<BODY BGCOLOR=#C0C0C0>\" +\n"
|
|
" \"<TABLE BORDER=0 WIDTH=100%>\" +\n"
|
|
" \"<TR>\" +\n"
|
|
" \"<TD ALIGN=CENTER VALIGN=MIDDLE BGCOLOR=#FFFFFF>\" +\n"
|
|
" \"<FONT SIZE=2 COLOR=#666666>\" +\n"
|
|
" \"<B>%s</B>\" +\n"
|
|
" \"</FONT>\" +\n"
|
|
" \"</TD>\" +\n"
|
|
" \"<TD ALIGN=CENTER VALIGN=MIDDLE BGCOLOR=#C0C0C0>\" +\n"
|
|
" \"<A HREF=javascript:top.loadRejects();>\" +\n"
|
|
" \"<FONT SIZE=2>%s</FONT>\" +\n"
|
|
" \"</A>\" +\n"
|
|
" \"</TD>\" +\n"
|
|
" \"<TD> </TD>\" +\n"
|
|
" \"</TR>\" +\n"
|
|
" \"</TABLE>\" +\n"
|
|
" \"</BODY>\"\n"
|
|
" );\n"
|
|
" top.frames[index_frame].document.close();\n"
|
|
"\n"
|
|
" top.frames[title_frame].document.open();\n"
|
|
" top.frames[title_frame].document.write\n"
|
|
" (\" %s\");\n"
|
|
" top.frames[title_frame].document.close();\n"
|
|
"\n"
|
|
" top.frames[list_frame].document.open();\n"
|
|
" top.frames[list_frame].document.write(\n"
|
|
" \"<FORM name=fSelectSignon>\" +\n"
|
|
" \"<P>\" +\n"
|
|
" \"<TABLE BORDER=0 WIDTH=100% HEIGHT=95%>\" +\n"
|
|
" \"<TR>\" +\n"
|
|
" \"<TD WIDTH=100% VALIGN=TOP>\" +\n"
|
|
" \"<CENTER>\" +\n"
|
|
" \"<P>\" +\n"
|
|
" \"<SELECT NAME=selname SIZE=15 MULTIPLE> \"\n"
|
|
" );\n",
|
|
view_signons, view_rejects, heading);
|
|
FLUSH_BUFFER
|
|
PR_FREEIF(heading);
|
|
|
|
/* generate the html for the list of signons */
|
|
url_ptr = si_signon_list;
|
|
signonNum = 0;
|
|
while ( (url=(si_SignonURLStruct *) XP_ListNextObject(url_ptr)) ) {
|
|
user_ptr = url->signonUser_list;
|
|
while ( (user=(si_SignonUserStruct *) XP_ListNextObject(user_ptr)) ) {
|
|
/* first data item for user is the username */
|
|
data_ptr = user->signonData_list;
|
|
data = (si_SignonDataStruct *) XP_ListNextObject(data_ptr);
|
|
g += PR_snprintf(buffer+g, BUFLEN-g,
|
|
" if (!deleted_signons[%d]) {\n"
|
|
" top.frames[list_frame].document.write(\n"
|
|
" \"<OPTION value=%d>\" +\n"
|
|
" \"%s:%s\" +\n"
|
|
" \"</OPTION>\"\n"
|
|
" );\n"
|
|
" }\n",
|
|
signonNum, signonNum,
|
|
url->URLName,
|
|
data->value
|
|
);
|
|
FLUSH_BUFFER
|
|
signonNum++;
|
|
}
|
|
}
|
|
|
|
/* generate next section of html file */
|
|
StrAllocCopy (heading, XP_GetString(MK_SIGNON_YOUR_SIGNON_REJECTS));
|
|
g += PR_snprintf(buffer+g, BUFLEN-g,
|
|
" top.frames[list_frame].document.write(\n"
|
|
" \"</SELECT>\" +\n"
|
|
" \"</CENTER>\" +\n"
|
|
" \"</TD>\" +\n"
|
|
" \"</TR>\" +\n"
|
|
" \"</TABLE>\" +\n"
|
|
" \"</FORM>\"\n"
|
|
" );\n"
|
|
" top.frames[list_frame].document.close();\n"
|
|
" }\n"
|
|
"\n"
|
|
" function loadRejects(){\n"
|
|
" signon_mode = 0;\n"
|
|
" top.frames[index_frame].document.open();\n"
|
|
" top.frames[index_frame].document.write(\n"
|
|
" \"<BODY BGCOLOR=#C0C0C0>\" +\n"
|
|
" \"<TABLE BORDER=0 WIDTH=100%>\" +\n"
|
|
" \"<TR>\" +\n"
|
|
" \"<TD ALIGN=CENTER VALIGN=MIDDLE BGCOLOR=#C0C0C0>\" +\n"
|
|
" \"<A HREF=javascript:top.loadSignons();>\" +\n"
|
|
" \"<FONT SIZE=2>%s</FONT>\" +\n"
|
|
" \"</A>\" +\n"
|
|
" \"</TD>\" +\n"
|
|
" \"<TD ALIGN=CENTER VALIGN=MIDDLE BGCOLOR=#FFFFFF>\" +\n"
|
|
" \"<FONT SIZE=2 COLOR=#666666>\" +\n"
|
|
" \"<B>%s</B>\" +\n"
|
|
" \"</FONT>\" +\n"
|
|
" \"</TD>\" +\n"
|
|
" \"<TD> </TD>\" +\n"
|
|
" \"</TR>\" +\n"
|
|
" \"</TABLE>\" +\n"
|
|
" \"</BODY>\"\n"
|
|
" );\n"
|
|
" top.frames[index_frame].document.close();\n"
|
|
"\n"
|
|
" top.frames[title_frame].document.open();\n"
|
|
" top.frames[title_frame].document.write\n"
|
|
" (\" %s\");\n"
|
|
" top.frames[title_frame].document.close();\n"
|
|
"\n"
|
|
" top.frames[list_frame].document.open();\n"
|
|
" top.frames[list_frame].document.write(\n"
|
|
" \"<FORM name=fSelectReject>\" +\n"
|
|
" \"<P>\" +\n"
|
|
" \"<TABLE BORDER=0 WIDTH=100% HEIGHT=95%>\" +\n"
|
|
" \"<TR>\" +\n"
|
|
" \"<TD WIDTH=100% VALIGN=TOP>\" +\n"
|
|
" \"<CENTER>\" +\n"
|
|
" \"<P>\" +\n"
|
|
" \"<SELECT NAME=selname SIZE=15 MULTIPLE> \"\n"
|
|
" );\n",
|
|
view_signons, view_rejects, heading);
|
|
FLUSH_BUFFER
|
|
PR_FREEIF(heading);
|
|
|
|
/* generate the html for the list of rejects */
|
|
signonNum = 0;
|
|
reject_ptr=si_reject_list;
|
|
while ( (reject=(si_Reject *)
|
|
XP_ListNextObject(reject_ptr)) ) {
|
|
g += PR_snprintf(buffer+g, BUFLEN-g,
|
|
" if (!deleted_rejects[%d]) {\n"
|
|
" top.frames[list_frame].document.write(\n"
|
|
" \"<OPTION value=\" +\n"
|
|
" \"%d>\" +\n"
|
|
" \"%s: %s\" +\n"
|
|
" \"</OPTION>\"\n"
|
|
" );\n"
|
|
" }\n",
|
|
signonNum, signonNum,
|
|
reject->URLName,
|
|
reject->userName);
|
|
FLUSH_BUFFER
|
|
signonNum++;
|
|
}
|
|
|
|
/* generate next section of html file */
|
|
g += PR_snprintf(buffer+g, BUFLEN-g,
|
|
" top.frames[list_frame].document.write(\n"
|
|
" \"</SELECT>\" +\n"
|
|
" \"</CENTER>\" +\n"
|
|
" \"</TD>\" +\n"
|
|
" \"</TR>\" +\n"
|
|
" \"</TABLE>\" +\n"
|
|
" \"</FORM>\"\n"
|
|
" );\n"
|
|
" top.frames[list_frame].document.close();\n"
|
|
" }\n"
|
|
"\n"
|
|
" function loadButtons(){\n"
|
|
" top.frames[button_frame].document.open();\n"
|
|
" top.frames[button_frame].document.write(\n"
|
|
" \"<FORM name=buttons action=internal-dialog-handler method=post>\" +\n"
|
|
" \"<BR>\" +\n"
|
|
" \" \" +\n"
|
|
" \"<INPUT type=BUTTON \" +\n"
|
|
" \"value=Remove \" +\n"
|
|
" \"onclick=top.DeleteItemSelected();>\" +\n"
|
|
" \"<DIV align=right>\" +\n"
|
|
" \"<INPUT type=BUTTON value=OK width=80 onclick=parent.clicker(this,window.parent)>\" +\n"
|
|
" \" \" +\n"
|
|
" \"<INPUT type=BUTTON value=Cancel width=80 onclick=parent.clicker(this,window.parent)>\" +\n"
|
|
" \"</DIV>\" +\n"
|
|
" \"<INPUT type=HIDDEN name=xxxbuttonxxx>\" +\n"
|
|
" \"<INPUT type=HIDDEN name=handle value="
|
|
);
|
|
FLUSH_BUFFER
|
|
|
|
/* transfer what we have so far into strings->args[0] */
|
|
if (buffer2) {
|
|
XP_SetDialogString(strings, 0, buffer2);
|
|
buffer2 = NULL;
|
|
}
|
|
|
|
/* Note: strings->args[1] will later be filled in with value of handle */
|
|
|
|
/* generate remainder of html, it will go into strings->arg[2] */
|
|
g += PR_snprintf(buffer+g, BUFLEN-g,
|
|
">\" +\n"
|
|
" \"<INPUT TYPE=HIDDEN NAME=goneS SIZE=-1>\" +\n"
|
|
" \"<INPUT TYPE=HIDDEN NAME=goneR SIZE=-1>\" +\n"
|
|
" \"</FORM>\"\n"
|
|
" );\n"
|
|
" top.frames[button_frame].document.close();\n"
|
|
" }\n"
|
|
"\n"
|
|
" function loadFrames(){\n"
|
|
" loadSignons();\n"
|
|
" loadButtons();\n"
|
|
" }\n"
|
|
"\n"
|
|
" function clicker(but,win){\n"
|
|
#ifndef HTMLDialogs
|
|
" var goneS = top.frames[button_frame].document.buttons.goneS;\n"
|
|
" var goneR = top.frames[button_frame].document.buttons.goneR;\n"
|
|
" var expires = new Date();\n"
|
|
" expires.setTime(expires.getTime() + 1000*60*60*24*365);\n"
|
|
" document.cookie = \"htmldlgs=|\" + but.value +\n"
|
|
" \"|goneS|\" + goneS.value + \"|goneR|\" + goneR.value + \"|\" +\n"
|
|
" \"; expires=\" + expires.toGMTString();\n"
|
|
#endif
|
|
" top.frames[button_frame].document.buttons.xxxbuttonxxx.value = but.value;\n"
|
|
" top.frames[button_frame].document.buttons.xxxbuttonxxx.name = 'button';\n"
|
|
" top.frames[button_frame].document.buttons.submit();\n"
|
|
" }\n"
|
|
"\n"
|
|
" </SCRIPT>\n"
|
|
"</HEAD>\n"
|
|
"<FRAMESET ROWS = 25,25,*,75\n"
|
|
" BORDER=0\n"
|
|
" FRAMESPACING=0\n"
|
|
" onLoad=loadFrames()>\n"
|
|
" <FRAME SRC=about:blank\n"
|
|
" NAME=index_frame\n"
|
|
" SCROLLING=NO\n"
|
|
" MARGINWIDTH=1\n"
|
|
" MARGINHEIGHT=1\n"
|
|
" NORESIZE>\n"
|
|
" <FRAME SRC=about:blank\n"
|
|
" NAME=title_frame\n"
|
|
" SCROLLING=NO\n"
|
|
" MARGINWIDTH=1\n"
|
|
" MARGINHEIGHT=1\n"
|
|
" NORESIZE>\n"
|
|
" <FRAMESET COLS=5,*,5\n"
|
|
" BORDER=0\n"
|
|
" FRAMESPACING=0>\n"
|
|
" <FRAME SRC=about:blank\n"
|
|
" NAME=spacer1_frame\n"
|
|
" SCROLLING=AUTO\n"
|
|
" MARGINWIDTH=0\n"
|
|
" MARGINHEIGHT=0\n"
|
|
" NORESIZE>\n"
|
|
" <FRAME SRC=about:blank\n"
|
|
" NAME=list_frame\n"
|
|
" SCROLLING=AUTO\n"
|
|
" MARGINWIDTH=0\n"
|
|
" MARGINHEIGHT=0\n"
|
|
" NORESIZE>\n"
|
|
" <FRAME SRC=about:blank\n"
|
|
" NAME=spacer2_frame\n"
|
|
" SCROLLING=AUTO\n"
|
|
" MARGINWIDTH=0\n"
|
|
" MARGINHEIGHT=0\n"
|
|
" NORESIZE>\n"
|
|
" </FRAMESET>\n"
|
|
" <FRAME SRC=about:blank\n"
|
|
" NAME=button_frame\n"
|
|
" SCROLLING=NO\n"
|
|
" MARGINWIDTH=1\n"
|
|
" MARGINHEIGHT=1\n"
|
|
" NORESIZE>\n"
|
|
"</FRAMESET>\n"
|
|
"\n"
|
|
"<NOFRAMES>\n"
|
|
" <BODY> <P> </BODY>\n"
|
|
"</NOFRAMES>\n"
|
|
"</HTML>\n"
|
|
);
|
|
FLUSH_BUFFER
|
|
|
|
si_unlock_signon_list();
|
|
|
|
/* free some strings that are no longer needed */
|
|
PR_FREEIF(view_signons);
|
|
PR_FREEIF(view_rejects);
|
|
PR_FREEIF(buffer);
|
|
|
|
/* put html just generated into strings->arg[2] and invoke HTML dialog */
|
|
if (buffer2) {
|
|
XP_SetDialogString(strings, 2, buffer2);
|
|
buffer2 = NULL;
|
|
}
|
|
dlg = PORT_ZAlloc(sizeof(SignonViewerDialog));
|
|
if ( dlg == NULL ) {
|
|
return;
|
|
}
|
|
dlg->parent_window = (void *)context;
|
|
dlg->dialogUp = PR_TRUE;
|
|
dlg->state =XP_MakeRawHTMLDialog(context, &dialogInfo, MK_SIGNON_YOUR_SIGNONS,
|
|
strings, 1, (void *)dlg);
|
|
|
|
return;
|
|
}
|
|
#endif
|