login_cap.h revision 1.1
1/* $OpenBSD: login_cap.h,v 1.1 2000/08/20 18:37:20 millert Exp $ */ 2 3/*- 4 * Copyright (c) 1995,1997 Berkeley Software Design, Inc. All rights reserved. 5 * 6 * Redistribution and use in source and binary forms, with or without 7 * modification, are permitted provided that the following conditions 8 * are met: 9 * 1. Redistributions of source code must retain the above copyright 10 * notice, this list of conditions and the following disclaimer. 11 * 2. Redistributions in binary form must reproduce the above copyright 12 * notice, this list of conditions and the following disclaimer in the 13 * documentation and/or other materials provided with the distribution. 14 * 3. All advertising materials mentioning features or use of this software 15 * must display the following acknowledgement: 16 * This product includes software developed by Berkeley Software Design, 17 * Inc. 18 * 4. The name of Berkeley Software Design, Inc. may not be used to endorse 19 * or promote products derived from this software without specific prior 20 * written permission. 21 * 22 * THIS SOFTWARE IS PROVIDED BY BERKELEY SOFTWARE DESIGN, INC. ``AS IS'' AND 23 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 24 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 25 * ARE DISCLAIMED. IN NO EVENT SHALL BERKELEY SOFTWARE DESIGN, INC. BE LIABLE 26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 32 * SUCH DAMAGE. 33 * 34 * BSDI $From: login_cap.h,v 2.11 1999/09/08 18:11:57 prb Exp $ 35 */ 36 37#define LOGIN_DEFCLASS "default" 38#define LOGIN_DEFSTYLE "passwd" 39#define LOGIN_DEFSERVICE "login" 40#define LOGIN_DEFUMASK 022 41#define _PATH_LOGIN_CONF "/etc/login.conf" 42#define _PATH_AUTHPROG "/usr/libexec/auth/login_" 43 44#define LOGIN_SETGROUP 0x0001 /* Set group */ 45#define LOGIN_SETLOGIN 0x0002 /* Set login */ 46#define LOGIN_SETPATH 0x0004 /* Set path */ 47#define LOGIN_SETPRIORITY 0x0008 /* Set priority */ 48#define LOGIN_SETRESOURCES 0x0010 /* Set resource limits */ 49#define LOGIN_SETUMASK 0x0020 /* Set umask */ 50#define LOGIN_SETUSER 0x0040 /* Set user */ 51#define LOGIN_SETALL 0x007f /* Set all. */ 52 53#define BI_AUTH "authorize" /* Accepted authentication */ 54#define BI_REJECT "reject" /* Rejected authentication */ 55#define BI_CHALLENGE "reject challenge" /* Reject with a challenge */ 56#define BI_SILENT "reject silent" /* Reject silently */ 57#define BI_REMOVE "remove" /* remove file on error */ 58#define BI_ROOTOKAY "authorize root" /* root authenticated */ 59#define BI_SECURE "authorize secure" /* okay on non-secure line */ 60#define BI_SETENV "setenv" /* set environment variable */ 61#define BI_UNSETENV "unsetenv" /* unset environment variable */ 62#define BI_VALUE "value" /* set local variable */ 63#define BI_EXPIRED "reject expired" /* account expired */ 64#define BI_PWEXPIRED "reject pwexpired" /* password expired */ 65 66/* 67 * bits which can be returned by authenticate()/auth_scan() 68 */ 69#define AUTH_OKAY 0x01 /* user authentciated */ 70#define AUTH_ROOTOKAY 0x02 /* authenticated as root */ 71#define AUTH_SECURE 0x04 /* secure login */ 72#define AUTH_SILENT 0x08 /* silent rejection */ 73#define AUTH_CHALLENGE 0x10 /* a challenge was given */ 74#define AUTH_EXPIRED 0x20 /* account expired */ 75#define AUTH_PWEXPIRED 0x40 /* password expired */ 76 77#define AUTH_ALLOW (AUTH_OKAY | AUTH_ROOTOKAY | AUTH_SECURE) 78 79typedef struct { 80 char *lc_class; 81 char *lc_cap; 82 char *lc_style; 83} login_cap_t; 84 85#include <sys/cdefs.h> 86__BEGIN_DECLS 87struct passwd; 88 89login_cap_t *login_getclass __P((char *)); 90void login_close __P((login_cap_t *)); 91int login_getcapbool __P((login_cap_t *, char *, u_int)); 92quad_t login_getcapnum __P((login_cap_t *, char *, quad_t, quad_t)); 93quad_t login_getcapsize __P((login_cap_t *, char *, quad_t, quad_t)); 94char *login_getcapstr __P((login_cap_t *, char *, char *, char *)); 95quad_t login_getcaptime __P((login_cap_t *, char *, quad_t, quad_t)); 96char *login_getstyle __P((login_cap_t *, char *, char *)); 97 98int secure_path __P((char *)); 99int setclasscontext __P((char *, u_int)); 100int setusercontext __P((login_cap_t *, struct passwd *, uid_t, u_int)); 101 102/* 103 * Routines for authentication 104 * Most of these will be deprecated in a future release 105 */ 106int auth_approve __P((login_cap_t *, char *, char *)); 107int auth_cat __P((char *)); 108int auth_check __P((char *, char *, char *, char *, int *)); 109void auth_checknologin __P((login_cap_t *)); 110void auth_env __P((void)); 111char *auth_mkvalue __P((char *)); 112int auth_response __P((char *, char *, char *, char *, int *, char *, char *)); 113void auth_rmfiles __P((void)); 114int auth_scan __P((int)); 115int auth_script __P((char *, ...)); 116int auth_script_data __P((char *, int, char *, ...)); 117char *auth_value __P((char *)); 118int auth_setopt __P((char *, char *)); 119void auth_clropts __P((void)); 120__END_DECLS 121