Sākums Izpētīt Palīdzība
Pierakstīties
cloudflare
/
cfssl
spogulis no https://github.com/cloudflare/cfssl
Vērot 1
Pievienot zvaigznīti 0
Atdalīts 0
Faili Problēmas
Atzars: master
Atzari Tagi
cfssl
/
vendor
/
github.com
/
mattn
/
go-sqlite3
/
sqlite3_opt_userauth_omit.go

sqlite3_opt_userauth_omit.go 4.4 KB
Patstāvīgā saite Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159 
  1. // Copyright (C) 2018 G.J.R. Timmer <gjr.timmer@gmail.com>.
    2. 

  2. //
    3. 

  3. // Use of this source code is governed by an MIT-style
    4. 

  4. // license that can be found in the LICENSE file.
    5. 

  5. 

  6. //go:build !sqlite_userauth
    7. 

  7. // +build !sqlite_userauth
    8. 

  8. 

  9. package sqlite3
    10. 

  10. 

  11. import (
    12. 

  12. 	"C"
    13. 

  13. )
    14. 

  14. 

  15. // Authenticate will perform an authentication of the provided username
    16. 

  16. // and password against the database.
    17. 

  17. //
    18. 

  18. // If a database contains the SQLITE_USER table, then the
    19. 

  19. // call to Authenticate must be invoked with an
    20. 

  20. // appropriate username and password prior to enable read and write
    21. 

  21. // access to the database.
    22. 

  22. //
    23. 

  23. // Return SQLITE_OK on success or SQLITE_ERROR if the username/password
    24. 

  24. // combination is incorrect or unknown.
    25. 

  25. //
    26. 

  26. // If the SQLITE_USER table is not present in the database file, then
    27. 

  27. // this interface is a harmless no-op returnning SQLITE_OK.
    28. 

  28. func (c *SQLiteConn) Authenticate(username, password string) error {
    29. 

  29. 	// NOOP
    30. 

  30. 	return nil
    31. 

  31. }
    32. 

  32. 

  33. // authenticate provides the actual authentication to SQLite.
    34. 

  34. // This is not exported for usage in Go.
    35. 

  35. // It is however exported for usage within SQL by the user.
    36. 

  36. //
    37. 

  37. // Returns:
    38. 

  38. //
    39. 

  39. //		C.SQLITE_OK (0)
    40. 

  40. //		C.SQLITE_ERROR (1)
    41. 

  41. //	 C.SQLITE_AUTH (23)
    42. 

  42. func (c *SQLiteConn) authenticate(username, password string) int {
    43. 

  43. 	// NOOP
    44. 

  44. 	return 0
    45. 

  45. }
    46. 

  46. 

  47. // AuthUserAdd can be used (by an admin user only)
    48. 

  48. // to create a new user.  When called on a no-authentication-required
    49. 

  49. // database, this routine converts the database into an authentication-
    50. 

  50. // required database, automatically makes the added user an
    51. 

  51. // administrator, and logs in the current connection as that user.
    52. 

  52. // The AuthUserAdd only works for the "main" database, not
    53. 

  53. // for any ATTACH-ed databases. Any call to AuthUserAdd by a
    54. 

  54. // non-admin user results in an error.
    55. 

  55. func (c *SQLiteConn) AuthUserAdd(username, password string, admin bool) error {
    56. 

  56. 	// NOOP
    57. 

  57. 	return nil
    58. 

  58. }
    59. 

  59. 

  60. // authUserAdd enables the User Authentication if not enabled.
    61. 

  61. // Otherwise it will add a user.
    62. 

  62. //
    63. 

  63. // When user authentication is already enabled then this function
    64. 

  64. // can only be called by an admin.
    65. 

  65. //
    66. 

  66. // This is not exported for usage in Go.
    67. 

  67. // It is however exported for usage within SQL by the user.
    68. 

  68. //
    69. 

  69. // Returns:
    70. 

  70. //
    71. 

  71. //		C.SQLITE_OK (0)
    72. 

  72. //		C.SQLITE_ERROR (1)
    73. 

  73. //	 C.SQLITE_AUTH (23)
    74. 

  74. func (c *SQLiteConn) authUserAdd(username, password string, admin int) int {
    75. 

  75. 	// NOOP
    76. 

  76. 	return 0
    77. 

  77. }
    78. 

  78. 

  79. // AuthUserChange can be used to change a users
    80. 

  80. // login credentials or admin privilege.  Any user can change their own
    81. 

  81. // login credentials.  Only an admin user can change another users login
    82. 

  82. // credentials or admin privilege setting.  No user may change their own
    83. 

  83. // admin privilege setting.
    84. 

  84. func (c *SQLiteConn) AuthUserChange(username, password string, admin bool) error {
    85. 

  85. 	// NOOP
    86. 

  86. 	return nil
    87. 

  87. }
    88. 

  88. 

  89. // authUserChange allows to modify a user.
    90. 

  90. // Users can change their own password.
    91. 

  91. //
    92. 

  92. // Only admins can change passwords for other users
    93. 

  93. // and modify the admin flag.
    94. 

  94. //
    95. 

  95. // The admin flag of the current logged in user cannot be changed.
    96. 

  96. // THis ensures that their is always an admin.
    97. 

  97. //
    98. 

  98. // This is not exported for usage in Go.
    99. 

  99. // It is however exported for usage within SQL by the user.
    100. 

  100. //
    101. 

  101. // Returns:
    102. 

  102. //
    103. 

  103. //		C.SQLITE_OK (0)
    104. 

  104. //		C.SQLITE_ERROR (1)
    105. 

  105. //	 C.SQLITE_AUTH (23)
    106. 

  106. func (c *SQLiteConn) authUserChange(username, password string, admin int) int {
    107. 

  107. 	// NOOP
    108. 

  108. 	return 0
    109. 

  109. }
    110. 

  110. 

  111. // AuthUserDelete can be used (by an admin user only)
    112. 

  112. // to delete a user.  The currently logged-in user cannot be deleted,
    113. 

  113. // which guarantees that there is always an admin user and hence that
    114. 

  114. // the database cannot be converted into a no-authentication-required
    115. 

  115. // database.
    116. 

  116. func (c *SQLiteConn) AuthUserDelete(username string) error {
    117. 

  117. 	// NOOP
    118. 

  118. 	return nil
    119. 

  119. }
    120. 

  120. 

  121. // authUserDelete can be used to delete a user.
    122. 

  122. //
    123. 

  123. // This function can only be executed by an admin.
    124. 

  124. //
    125. 

  125. // This is not exported for usage in Go.
    126. 

  126. // It is however exported for usage within SQL by the user.
    127. 

  127. //
    128. 

  128. // Returns:
    129. 

  129. //
    130. 

  130. //		C.SQLITE_OK (0)
    131. 

  131. //		C.SQLITE_ERROR (1)
    132. 

  132. //	 C.SQLITE_AUTH (23)
    133. 

  133. func (c *SQLiteConn) authUserDelete(username string) int {
    134. 

  134. 	// NOOP
    135. 

  135. 	return 0
    136. 

  136. }
    137. 

  137. 

  138. // AuthEnabled checks if the database is protected by user authentication
    139. 

  139. func (c *SQLiteConn) AuthEnabled() (exists bool) {
    140. 

  140. 	// NOOP
    141. 

  141. 	return false
    142. 

  142. }
    143. 

  143. 

  144. // authEnabled perform the actual check for user authentication.
    145. 

  145. //
    146. 

  146. // This is not exported for usage in Go.
    147. 

  147. // It is however exported for usage within SQL by the user.
    148. 

  148. //
    149. 

  149. // Returns:
    150. 

  150. //
    151. 

  151. //		0 - Disabled
    152. 

  152. //	 1 - Enabled
    153. 

  153. func (c *SQLiteConn) authEnabled() int {
    154. 

  154. 	// NOOP
    155. 

  155. 	return 0
    156. 

  156. }
    157. 

  157. 

  158. // EOF
    159. 

  159.